Unlock the power of AI SIEM

This session will cover AI SIEM principles, best practices, and an overview of using this product in the Singularity Console.

• Provide an understanding of the AI SIEM toolset and its capabilities
• Understand different methods of log ingestion
• Have experience with the SentinelOne Collector
• Understanding parsing principles at a basic level
• Learn best practices
• Harness the power of Purple AI to assist you

Secure your identity layer with confidence.

This live session explores the Identity product suite, with a focus on protecting endpoints and Active Directory. You’ll also learn how to integrate with common Identity Providers to strengthen access control and reduce risk.

• Build a strong foundation in Identity administration and analysis for both analysts and system admins.
• Learn best practices, hints and tricks to administer the Identity Platform
• Strengthen your AD security with Identity Posture Management
• Understand how to integrate Identity with Identity Providers (IdPs)

Protect your AWS cloud with SentinelOne CNS.

In this session, you’ll learn how to integrate, configure, and manage security for AWS using the Cloud Native Security platform. Topics include onboarding accounts, agentless scanning, S3 threat detection, and cloud asset visibility.

In this workshop, you’ll learn how to:

• Satisfy AWS Prerequisites for Integration with the Cloud Native Security (CNS) Console.
• Onboard AWS Cloud Organizations and Accounts In CNS.
• Configure Exclave Scanners for Agentless Scanning (AWS Side Scanning).
• Integrate CNS with the AI-SIEM.
• Deploy Threat Detection for Amazon S3.
• Ensure cloud assets are correctly reporting in CNS.

Put cloud security into action.

This session focuses on using SentinelOne’s Cloud Security platform for real-time threat detection and response in AWS. You’ll explore Cloud Detection & Response (CDR), CSPM, External Attack Surface Management, DevSecOps practices, and Graph Explorer for effective cloud incident response

In this workshop, you’ll learn how to:

• Day-to-day use of the SentinelOne Cloud tools
• Detection and response in the cloud
• Attack surface management

Strengthen your endpoint defenses.

This session covers practical strategies for protecting endpoints, including how to use Exclusions and Dynamic Groups effectively. You’ll also learn how to manage incidents with Purple AI for faster, smarter responses.

In this workshop, you’ll learn how to:

• Create tag-based exclusions
• Group your IT assets dynamically
• Manage incidents
• Use Purple AI to improve speed

Automate and accelerate your security operations.

Learn how to build custom workflows with Hyperautomation to speed up threat response, reduce manual effort, and improve overall efficiency across your security environment.

In this workshop, you’ll learn how to:

• Define Hyperautomation and how it’s different
• Explore SentinelOne’s Hyperautomation architecture
• Build custom workflows for faster response
• Apply best practices to streamline operations
• Review real-world use cases and examples

Join this Capture The Flag event and compete to find malware, lateral movement, and other IoCs on endpoints. Answer the most questions correctly and win prizes.

This challenge will hone your skills in:

• Investigating common and advanced persistent threats
• Hunting for real malware
• Using the SentinelOne Console to find and remediate APTs

Use Purple AI to hunt for threats in this Capture the Flag event. Compete with your peers to find IoCs, answer questions and win prizes.

This challenge will hone your skills in:

• Investigating common and advanced persistent threats
• Using Purple AI for efficient threat hunting
• Making natural language threat hunting queries

Use Singularity Cloud to detect vulnerabilities and attacks with our CNAPP and cloud workload protection solutions in this Capture the Flag event. Compete to find IoCs in a cloud environment, answer questions, and win prizes.

This challenge will hone your skills in:

• Discovering cloud vulnerabilities
• Detecting and preventing cloud credential leakage
• Identifying misconfigurations and ensuring compliance
• Detecting and remediating complex threats at the VM and K8s pod level without human intervention