After introducing the first generative AI (genAI) platform for cybersecurity, SentinelOne has launched PurpleAI. This AI security analyst can unlock the full potential of security teams by empowering them to save time and money by simplifying and accelerating threat hunting, investigations, and response.
Ric Smith, SentinelOne’s Chief Product and Technology Officer, said in a press note that an average enterprise security team receives over 1,000 investigative-worthy alerts daily. In addition to reviewing these alerts, every team has to proactively hunt for threats that evade detection.
“They are overworked and understaffed and need help keeping pace. Purple AI helps detect threats earlier, respond faster, and stay ahead of attacks in a scalable and efficient way,” said Smith.
The early adopters report that Purple AI helps execute hunts 80 per cent faster. Richard Bailey, SVP IT, PruittHealth Connect Inc., said in a note, “PurpleAI assists in identifying weaknesses and vulnerabilities, thus bolstering PruittHealth’s overall security. Additionally, it enhances accuracy and reduces human error in data queries, allowing more time for other tasks.”
The AI tool simplifies threat hunting and investigations by translating natural language into structured queries, automatically querying native and partner data, intelligently summarizing results, suggesting follow-on queries in natural language, and saving investigations in collaborative notebooks.
The tool helps teams simplify complex queries and streamline investigations with natural language translations. It supports the Open Cybersecurity Schema Framework, allowing analysts to have a normalised view of native and partner data. The pre-populated Purple AI Threat Hunting Quick helps find and mitigate hidden risks across their environment, all within a single click.
It helps drive down mean time to respond and investigate according to suggested next queries, along with intelligent summarised results in natural language. It also helps easily collaborate with shared, exportable investigation notebooks, and auto-generated emails.
