CrowdStrike Outage Updates , Endpoint Protection Platforms (EPP) , Endpoint Security

Weingarten on What Makes SentinelOne's Defense Different

SentinelOne's CEO Talks Architectural Differences to CrowdStrike, Why It Matters
Tomer Weingarten, co-founder and CEO, SentinelOne

The global IT outage in July caused by a faulty CrowdStrike software update has prompted many security practitioners to take a closer look at the practices of their security vendors. SentinelOne's minimal reliance on the kernel, reduced dependency on cloud connectivity and use of behavioral AI for threat detection offer a security edge over CrowdStrike, said CEO Tomer Weingarten.

See Also: OnDemand | Stay Ready So You Don't Need to Get Ready: Strategies To Get Ahead of Threats & Drive a Proactive Posture

The Silicon Valley-based firm's reduced reliance on kernel operations and cloud connectivity minimize the risk of system disruptions and enhance security by limiting the attack surface, Weingarten said. In addition, SentinelOne's use of behavioral AI embedded in the endpoint allows for efficient threat detection without frequent updates, which Weingarten contrasted with competitors such as CrowdStrike (see: CrowdStrike Debuts Safeguards, Seeks to Blunt Outage Impact)

"What we do in the kernel is basically passive monitoring plus anti-tempering capabilities," Weingarten said. "Everything else is actually happening outside the kernel. And the reason for that is quite simple. Every small mistake that's happening at the kernel level results in a blue screen of death. It results in significant disruption to the machine. So, obviously, you would want to minimize the amount of operation that happens at that level of compute."

In this video interview with Information Security Media Group, Weingarten also discussed:

  • The introduction of Purple AI and benefits for threat hunting;
  • The acquisition of PingSafe and its impact on cloud security;
  • The purchase of advisory and consulting services firm Krebs Stamos.

Prior to founding SentinelOne in January 2013, Weingarten served as vice president of products at Toluna Holdings, which delivers real-time customer insights. Weingarten previously co-founded Carambola Media, a publisher-focused platform that creates new ad revenue streams through content formats. He also spent two years at Mckit Systems, a provider of information and knowledge management systems.


About the Author

Michael Novinson

Michael Novinson

Managing Editor, Business, ISMG

Novinson is responsible for covering the vendor and technology landscape. Prior to joining ISMG, he spent four and a half years covering all the major cybersecurity vendors at CRN, with a focus on their programs and offerings for IT service providers. He was recognized for his breaking news coverage of the August 2019 coordinated ransomware attack against local governments in Texas as well as for his continued reporting around the SolarWinds hack in late 2020 and early 2021.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use of cookies.