SentinelOne integrates with ServiceNow to unify IT and security

SentinelOne, an autonomous cybersecurity platform company, has announced the SentinelOne App for ServiceNow Security Incident Response (SIR). The integration unites security and IT teams for more effective incident response.

With SentinelOne integrated directly into ServiceNow®, joint customers can use the ServiceNow platform to triage threats. The integration helps security and IT teams accelerate a coordinated, comprehensive, and automated incident response plan across endpoint and cloud environments. The app is available via the SentinelOne Singularity Marketplace and the ServiceNow® Store.

 

“The industry is under constant attack every day, as organisations grapple with vulnerabilities like log4j. Having enterprise-wide visibility and protection from SentinelOne Singularity helps our team understand the potential impact in just a few clicks. We use ServiceNow as our incident management and workflow automation platform – together our team has a single pane of glass for incident collaboration to mitigate threats in real-time.” – Identity and Endpoint Security Architect, Global Manufacturer

 

As ransomware and other forms of malware become increasingly prevalent, both IT and security teams need to operate in lockstep to prevent attacks. Unfortunately, many enterprises rely on numerous unconnected tools to operate cybersecurity programmes. The resulting inefficiency and alert fatigue lead to unnecessary cyber incidents posing enterprise risk. XDR solutions change the paradigm, reframing cybersecurity as a data and workflow problem in need of automation.

 

The SentinelOne App for ServiceNow® Security Incident Response instantly syncs threats from SentinelOne into the ServiceNow Incident Response module for a unified security programme. Within ServiceNow®, an incident responder can view all relevant incident details around the threat, including incident status and threat notes, as well as any additional context or notes created within either platform. When the incident responder determines that corrective action needs to occur, ServiceNow® can trigger automated response actions in SentinelOne to kill, quarantine, remediate or even roll back any potential effects from the threat.

 

“Streamlining threat investigation, response, and remediation workflows leads to significant risk reduction,” said David Baldwin, Product Director, Ecosystem, SentinelOne. “Combining SentinelOne with ServiceNow gives defenders and incident responders the workflows they need to improve remediation across security and IT domains.”

Zscaler's new report unveils the latest ransomware trends, highlighting an increase in extortion...
GCX appoints Luca Simonelli to enhance global partnerships and lead operations in Italy, amid...
SolarWinds report suggests IT leaders underestimate the impact of broken processes and limited...
Leostream introduces a secure solution for external stakeholders, ensuring safe and efficient...
BOXX Insurance is set to join Zurich Insurance Group, continuing its mission in cyber insurance and...
Palo Alto Networks enhances its AI security portfolio by acquiring Protect AI, aiming to secure the...
Orange Cyberdefense strengthens its presence in Switzerland by acquiring Zurich-based cybersecurity...
Commvault plans to acquire Satori Cyber Ltd to bolster its data security and AI governance...