SentinelOne Strengthens AI Security with New Offerings at RSAC 2026
SentinelOne has unveiled a comprehensive suite of AI security solutions aimed at empowering cybersecurity defenders. These innovations, showcased at the RSAC 2026 conference, address both the security of AI systems and the utilization of AI to enhance security operations. The offerings are designed to provide organizations with a significant edge in an increasingly complex threat landscape.
As businesses rapidly adopt AI technologies to drive innovation and improve operational efficiency, the risks associated with AI have escalated. Gartner has identified AI cybersecurity—encompassing both the protection of AI systems and the enhancement of security through AI—as one of the fastest-growing segments within the cybersecurity market. Their January 2026 report forecasts a remarkable 73.9% compound annual growth rate (CAGR) for AI cybersecurity spending from 2024 to 2029, significantly outpacing overall AI expenditure.
New Prompt AI Agent Security
SentinelOne’s Prompt AI Agent Security introduces a real-time discovery and governance control plane for AI agents and workflows. This solution leverages Autonomous Security Intelligence, which underpins SentinelOne’s capabilities across endpoints, cloud environments, and identity management. By extending AI and automation into the agentic layer, it enables real-time monitoring and policy enforcement on agent interactions. This approach ensures comprehensive visibility and risk assessment across all managed servers within a customer’s environment.
Additionally, the platform allows organizations to oversee the behavior of AI agents and workflows, enabling automatic remediation of unauthorized actions. For instance, it can prevent incidents where an OpenClaw agent might inadvertently transmit sensitive corporate data to an external endpoint or where a Claude Cowork agent could escalate privileges through unauthorized actions.
New Prompt AI Red Teaming
The Prompt AI Red Teaming initiative equips security and product teams with innovative tools to assess and strengthen their proprietary AI applications. As organizations increasingly integrate AI agents into their operational frameworks, traditional security testing methods fall short in addressing unique AI-related vulnerabilities. This new capability allows businesses to simulate real-world AI attacks—such as prompt injections and data poisoning—before deploying applications. Continuous risk evaluation helps organizations adapt to evolving threats, ensuring that their AI applications remain robust against potential exploits.
New Purple AI Auto Investigation Now GA
At RSAC 2026, SentinelOne announced the general availability of its one-click Auto Investigation feature, integrated into the Singularity Platform. This capability enables security analysts to initiate comprehensive investigations with a single click, moving beyond traditional, rigid playbooks. Purple AI autonomously gathers evidence, synthesizes threat data, and constructs attack timelines in real time, providing clear verdicts that trigger automated remediation processes.
This agentic framework enhances the speed and efficiency of security operations, allowing teams to focus on strategic initiatives while benefiting from human-in-the-loop automation. Since its introduction at RSAC 2023, Purple AI has been extensively tested in real-world security operations centers (SOCs), achieving a notable attach rate, with over 50% of licenses sold in Q4 FY26 including this feature.
AI Data Pipelines in Singularity AI SIEM
Following its acquisition of Observo AI, SentinelOne is integrating AI-native data pipeline capabilities into its Singularity AI SIEM. This integration represents a significant advancement in the market, offering pre-ingestion analytics and flexible data collection within a single platform. The AI data pipeline includes intelligent filtering and normalization processes that operate upstream, effectively reducing data noise by up to 80% before it enters the Singularity Platform. This capability not only lowers infrastructure costs but also enhances AI-driven detection and response across third-party data at scale.
Tomer Weingarten, co-founder and CEO of SentinelOne, emphasized the company’s commitment to leveraging AI and automation to provide defenders with a competitive advantage. He noted that many of the world’s largest organizations rely on SentinelOne’s AI security portfolio to protect their AI initiatives and empower human defenders. The new innovations allow for real-time data ingestion and sanitization, facilitating human-supervised investigations that enhance operational efficiency.
According to publicly available securitymea.com reporting, these advancements are designed to ensure that organizations can confidently harness the full potential of AI while maintaining robust security measures against future threats.
For the latest cybersecurity developments, threat intelligence and breaking updates from across the Middle East: Middle East
