SentinelOne has recently unveiled a series of innovative artificial intelligence security products, enhancing its capabilities in AI protection, automated investigations, and data management. This launch is timely, given the accelerated integration of AI tools in various business operations, highlighting the increasing importance of security measures.
The new offerings comprise Prompt AI Agent Security, Prompt AI Red Teaming, general availability for Purple AI Auto Investigation, and AI data pipeline functionalities within the Singularity AI SIEM platform. Collectively, these tools are designed to secure AI systems while leveraging AI to enhance security operations.
As organizations rapidly adopt AI solutions in their workflows, the security landscape is becoming more complex. Security teams now face a broader attack surface, creating a heightened demand for tools that can monitor AI agents, identify vulnerabilities in AI applications, and automate incident response processes.
Agent Controls
Prompt AI Agent Security serves as a control layer for AI agents and their workflows. This tool aims to provide organizations with insights into AI agent activities, assess associated risks, and enforce policies across the environments where these agents function.
The solution features real-time monitoring of agent interactions and is engineered to thwart unauthorized actions before they happen. Upcoming features are expected to allow customers to manage the security posture of AI agents and automatically react to risky behaviors, such as an agent transmitting sensitive data externally or escalating access privileges within corporate systems.
In tandem with this, Prompt AI Red Teaming assists security and product teams in assessing their AI applications. This tool is designed to identify AI-specific threats that traditional application security methods might overlook.
It can simulate various attacks, including prompt injection, jailbreaking, privilege escalation, and data poisoning. This offering is also tailored to facilitate the continuous evaluation of AI systems as models evolve and new threats arise.
Investigation Tool
SentinelOne has also launched Purple AI Auto Investigation, now generally available and integrated into the Singularity platform. This innovative tool enables analysts to initiate a comprehensive investigation with a single click.
The system aggregates evidence from various data sources, constructs attack timelines, and provides verdicts that can prompt remediation through SentinelOne’s automation capabilities. The entire investigation process remains under the careful oversight of analysts.
Purple AI has been a focal point of the company’s security strategy for some time. In its fourth-quarter earnings call for fiscal 2026, SentinelOne disclosed that Purple AI was included in over half of all licenses sold that quarter, marking a record attach rate.
This statistic indicates that Purple AI is increasingly becoming integral to SentinelOne’s commercial approach, as the company aims to deepen AI-driven analysis within customer security operations. The latest release of the auto-investigation tool is designed to significantly reduce investigation times, transforming lengthy processes that once took hours or days into mere minutes or even seconds.
Existing customers of Purple AI Analyst can access the Purple AI Auto Investigation without any need for additional deployment or setup.
Data Pipeline
An additional component of this launch targets data processing in security information and event management systems. Following its acquisition of Observo AI, SentinelOne is incorporating AI-native data pipeline functions into its Singularity AI SIEM platform.
This integrated setup features pre-ingestion analytics, flexible data collection, filtering, enrichment, and normalization before data reaches the broader system. According to SentinelOne, this process can reduce data noise by as much as 80% before data ingestion, with the goal of lowering infrastructure costs and enhancing analysis across third-party data sources.
This initiative aligns with a larger trend in cybersecurity, where vendors are striving to decrease the cost and complexity of managing growing volumes of machine-generated security data. Early-stage data handling has become a critical differentiator in the SIEM market, especially as AI-driven analysis depends on well-prepared, extensive datasets.
Market forecasts referenced by SentinelOne indicate a rapid increase in spending on AI-related cybersecurity over the coming years. The company cited Gartner projections showing AI cybersecurity as one of the fastest-growing segments in the realm of AI investment, with expenditures expected to soar at a compound annual growth rate of 73.9% from 2024 to 2029.
This landscape is reshaping competition among cybersecurity firms, which now face the dual challenge of protecting AI tools and utilizing AI to manage increasingly complex security operations. SentinelOne’s latest offerings are designed to address both challenges, focusing on governance for autonomous agents and automated investigations, as well as early-stage data filtering.
“Since our inception, SentinelOne has championed AI and automation to equip defenders with a crucial operational edge,” stated Tomer Weingarten, Co-Founder and CEO of SentinelOne. “Many of the largest and most vital organizations worldwide rely on SentinelOne’s AI Security portfolio to safeguard AI implementations and empower human defenders. With these new innovations, they can now seamlessly ingest and cleanse security source data directly into the Singularity Platform, while overseeing fully human-guided agent investigations to elevate their security operations to machine speed—today. These latest advancements build on our robust, production-grade foundation, ensuring that our customers can confidently harness the immense potential of AI, secure in the knowledge that their initiatives are well-protected and resilient against future threats.”
