The SentinelOne and Phantom Integration
The partnership enables customers to easily integrate autonomous endpoint protection into existing security architectures. The joint solution empowers enterprise Security Operations Centers (SOC) to anticipate and automatically block attacks on endpoints from a single view in conjunction with their other tools. SentinelOne provides more than 200 APIs – the most of any endpoint company – enabling customers to integrate and unify security assets within their environment.
The Phantom platform integrates existing security technologies, providing a layer of connective tissue between them, automating repetitive tasks and orchestrating multiple concurrent workflows. SentinelOne uses artificial intelligence to deliver autonomous endpoint protection and automatically eliminates threats in real time. The joint solution helps customers rapidly manage the security lifecycle to stop damaging cyber attacks.
In addition to the robust number of APIs, the SentinelOne Phantom app provides support for ten proactive actions that security teams can use to protect endpoints through Phantom. These actions go far beyond simply providing information and actually allows admins to do everything from scanning endpoints for dormant threats and blocking hashes to quarantining endpoints and mitigating threats.