Tech Disruptors

SentinelOne Pivots to LLMs in Endpoint Security

Jan 27, 2025

Ric Smith, Chief Product and Technology Officer at SentinelOne, dives into the integration of large language models in endpoint security. He highlights how automation enhances triage and remediation processes. The discussion also explores the competitive landscape, comparing SentinelOne's unique offerings against CrowdStrike, Palo Alto Networks, and Microsoft. Smith emphasizes the role of generative AI in malware detection and the evolution toward agentless security solutions. Additionally, he addresses the changing talent needs in cybersecurity due to AI advancements.

31:55

Episode guests

Ric Smith

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

SentinelOne distinguishes itself in the security-software landscape by integrating large language models to enhance automation in issue triage and remediation.

The shift towards zero trust principles in endpoint security reflects the growing need for continuous verification and dynamic access control in remote and multi-cloud environments.

Deep dives

Impact of the CrowdStrike Outage

The July CrowdStrike outage significantly influenced the endpoint security market, prompting companies to reevaluate their deployment methodologies. A lapse in practical engineering practices led to a broader discussion among customers regarding assessment and review before rolling out solutions. Organizations began to favor application-level operations over kernel-level operations to limit the impact of potential issues. Consequently, many are adopting a dual vendor strategy to reduce dependency on a single provider, allowing for better risk management across their endpoint security landscape.

Intro

4min

Endpoint Security in a Dual Vendor Landscape

18min

Leveraging Generative AI for Enhanced Cybersecurity

2min

The Future of Agent versus Agentless Security Solutions

2min

Adapting Cybersecurity Talent for AI

4min

Exploring Operational Strategies and Market Perception

2min

What separates SentinelOne from other security-software providers is that you’ll find large language models “in a lot of our automation capabilities that help you go through and deal with triage, investigation and ultimately the remediation of issues,” Chief Product Officer Ric Smith says. In this episode of the Tech Disruptors podcast, Smith talks with Bloomberg Intelligence senior analyst Mandeep Singh about the use of foundational large language models and agent vs. agentless security. Smith also discusses SentinelOne’s product differentiation vs. peer CrowdStrike and bundled endpoint offerings from Palo Alto Networks and Microsoft.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Get the app

Tech Disruptors

SentinelOne Pivots to LLMs in Endpoint Security

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Impact of the CrowdStrike Outage

The Shift Towards Zero Trust and Cloud Security

Leveraging AI in Cybersecurity

Remember Everything You Learn from Podcasts