Channel partners, Content, Endpoint/Device Security, Security Operations

New SentinelOne Singularity Integrations: IBM Security, Swimlane and Intezer Surface

Credit: SentinelOne

SentinelOne has added IBM Security, Swimlane and Intezer integrations to its Singularity Marketplace. The new integrations provide organizations with access to security information and event management (SIEM), security orchestration, automation and response (SOAR) and malware analysis capabilities.

Deeper details include:

  • Organizations can use SentinelOne Singularity XDR with IBM's QRadar SIEM to filter threat detections for correlation, triage and investigation, the companies said. If QRADAR SIEM finds a security incident warrants a response, it escalates the incident to QRadar SOAR to ensure that security analysts can remediate it.
  • SentinelOne's integration with Swimlane increases visibility and triage accuracy, reduces alert fatigue and accelerates mean-time-to-respond to security incidents, the companies stated. It uses SentinelOne Singularity XDR APIs to trigger Swimlane low-code automation security playbooks, case management processes and dashboards or reports.
  • With SentinelOne and Intezer, organizations can automatically triage security incidents and analyze malware, the companies indicated. Organizations can use SentinelOne technologies to detect malicious activity, share alert data with Intezer for analysis and gain insights into cyber threats.

Previously, SentinelOne in January 2022 announced Singularity Marketplace integrations with Remediant, Blue Hexagon, Keysight and Automox. The Singularity Marketplace lets organizations use various security products in conjunction with SentinelOne XDR for threat detection, response and prevention. It is backed by at least 25 partners.

SentinelOne: Additional Cloud, Software and MSP Partner Moves

SentinelOne has been busy on the partner front. For instance, MSPs now generate about 20% of SentinelOne's revenue, the company said during a June 2022 earnings call. Key MSP software partners include N-able, which has 1 million endpoints under management with SentinelOne. More recently, ConnectWise has promoted MDR services that integrate with SentinelOne's EDR software.

On the cloud front, SentinelOne in June 2022 announced an Amazon Web Services (AWS) Security Hub integration. SentinelOne customers can use the integration to aggregate, organize and prioritize security alerts from SentinelOne agents and investigate security incidents in AWS Security Hub, the company said. They also can normalize incidents to the AWS Security Finding Format (ASFF), which eliminates the need to convert or parse through security data from SentinelOne agents.

Dan Kobialka

Dan Kobialka is senior contributing editor, MSSP Alert and ChannelE2E. He covers IT security, IT service provider business strategies and partner programs. Dan holds a M.A. in Print and Multimedia Journalism from Emerson College and a B.A. in English from Bridgewater State University. In his free time, Dan enjoys jogging, traveling, playing sports, touring breweries and watching football.

You can skip this ad in 5 seconds