Most Helpful Review
Removes the need to strike a security-productivity balance, while finding numerous risks that competitors miss
We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
It's just a single agent that has everything in it... With the EDR solutions, you have to install it, then you have another service history installed, and you have behavioral analytics, etc. With this, everything is in a single small "box," a small agent that has pretty much got everything.
It has the lowest false-positive ratio that I have come across. I have only had one which was a legitimate file that I had to whitelist. It was for one of the applications I was trying to install and integrate. But the false positive ratio is very low.
Instead of having features like rollback and after-event actionable stuff, the whole premise and the context of the solution is to actually prevent these malicious attacks from happening to begin with.... The ability to prevent threats is the most appealing aspect. It absolutely, 100 percent helps with real-time prevention of unknown malware. That's the strength of the product.
It has a very low false-positive ratio. That is important because it means we're not wasting time... We're able to run that entire 20,000-endpoint base with just a handful of engineers.
The most valuable features are the static/dynamic analyses. Deep Instinct's predictive model has very high accuracy and provides threat information for unknown malware, such as malware classification, static analysis information, and sandbox information.
Deep Instinct complements the solutions we already have. You don't need to rip and replace any antivirus or endpoint that you have. It's easy to use and it's easy to have it side-by-side with other solutions. That makes it really easy to have an additional level of protection, rather than to hassle with doing solution migration.
The CPU consumption is low compared to what I have been using in my current environment, which is Sophos. The footprint is a lot smaller, about a quarter of Sophos. It is very small.
Its false positives are very low, because the behavior analysis engine double checks them.
It has the ability to rollback a ransomware infection instantly and with minimal disruption to the user & provides robust reporting.
The solution offers very rich details surrounding threats or attacks.
We have a preference for their receptor. It's good at finding many EFC files. EFC files could have a virus.
The most valuable feature of this solution is the user-friendly interface.
All of the features are valuable. The way that it integrates into management with fault correction capabilities over is especially valuable. Any of the full gamut of the features that it provides are useful to us.
I have found the activity timeline and threat analysis to be particularly useful.
In the past, we were not able to identify a few viruses, but now we are able to identify them because of the machine learning feature.
It has good visibility features and it's straightforward.
If they can bring some additional, complementary solutions, like network scanning and the like, that will help. If they had some sort of a firewall which could help detect DDoS attacks and other things, it would be an improvement
It would be nice if there were options where, if I have to do SIEM integration, I could do so from the UI: Just pick and choose what SIEM solutions the customers use and have options to have out-of-the-box connection facility.
I would love to see a really exceptional, outstanding level of reporting. I know that's like asking for a unicorn to leap out of the sky with any of these products... When everything works, clients began to wonder: "Everything's fine. Why do we need you?" That's where the reporting capabilities would allow us to really demonstrate: "Hey, here's what's actually going on, Mr. Customer."
The Management Console is not localized.
I would like to see improvement in the user interface so that the user has more control. For example, it would be good if a user could change their grouping if they want to be part of another group. Or if I want to right-click and scan a specific file that I just imported, that would be helpful. Sometimes you just want to do an extra scan to make sure you're safe.
I am looking forward to them adding Linux in Q1 or Q2 of 2019, as this is often requested by my partners and customers. Currently, Deep Instinct only has Windows, Mac, Android, and iOS.
Set up is very labor-intensive.
The solution needs better reporting on new threats and malware. The reporting is present, but I can't find the information easily.
It's fine. It's correcting all the EFC files with a virus. All the achievements, maximum EFC files. Many EFC files will be flagged as a virus. Some virus databases need to be updated. The model is good at finding many EFC files. The trouble is it needs to be updated.
This solution would be more attractive to customers if the price were lower.
In terms of improvement, I would like to see better alerting to let us know if there is anything wrong with SentinelOne working on the endpoint of the computer.
I would like to see something a little more sophisticated than simply being able to mark a false positive as safe or there's usually just one or two options in certain areas and they're a little rudimentary at this stage.
The reporting needs improvement and I would like to see a more granular level of administrative privileges.
There is not much flexibility in terms of policy fine-tuning. We can turn it off or turn it on, but, there's nothing much else to do. Everything is predefined. It's good in a way, but you don't get much flexibility if you want to do something particular.
Pricing and Cost Advice
Pricing and licensing are very straightforward. It's two SKUs, one is for the console and the other is for the client.
One thing about their licensing program that I like is that just one covers the server as well as on the endpoint as well as mobile devices. There is no complexity in calculating how many SKUs I need for mobile, for laptop, for desktop, and for servers. It's very simple and that makes it much easier to budget.
In comparison to the other products out there, it's exceptionally competitively priced. When you consider the lower administrative overhead that it facilitates, it's an absolute value.
The pricing is a little bit expensive but we are satisfied with DI's performance.
If I include the false positive rate and the detection rate in the comparison, Deep Instinct is worth its price.
The per-seat cost is low, but you have to commit to a certain number of licenses for a year.
out of 58 in Endpoint Protection for Business
Average Words per Review
out of 58 in Endpoint Protection for Business
Average Words per Review
Compared 56% of the time.
Compared 14% of the time.
Compared 6% of the time.
Compared 18% of the time.
Compared 13% of the time.
Compared 11% of the time.
Also Known As
Deep Instinct provides comprehensive defense that is designed to protect against the most evasive unknown malware in real- time, across an organization’s endpoints, servers, and mobile devices. Leveraging deep learning’s capabilities of identifying malware from any data source results in total protection: Any threat. Anywhere. Any time.
SentinelOne Endpoint Protection Platform (EPP) unifies prevention, detection and response in a single platform driven by sophisticated machine learning and intelligent automation. It enables you to prevent and detect attacks across all major vectors, rapidly eliminate threats with fully automated, policy-driven response capabilities, and gain complete visibility into your endpoint environment with full-context, real-time forensics.
SentinelOne also offers Ransomware Cyber Guarantee, which is an opt-in program that provides SentinelOne Endpoint Protection Platform (EPP) customers with financial support against demanded ransoms in the event an organization is infected with ransomware and EPP is unable to successfully block or remediate its effects.
Learn more about Deep Instinct
Learn more about SentinelOne
Information Not Available
|BOX, VISA, RKON, LCRA|
Writing And Editing Position24%
Software R&D Company21%
Financial Services Firm6%
Software R&D Company25%
Comms Service Provider8%