The cybersecurity seller conducts a big boost with partners this year about Siem, which works with artificial intelligence materials, as well as the safety of the cloud and data.
Sentinelone is doubled in cooperation with this year's partners about growth opportunities such as the Acting Siem, with cloud security pushing it also accelerated using a “completely different approach” of competitors.
One year ago, since Lanigan joined the company, Sentinelone is well ongoing in expanding its platform beyond the security point security show, and has now published tools on a large scale in the security of the cloud and data as well as in safety operations.
(Related: 2025 Channels: The 50 most influential)
In particular, he said in an interview with him recently, Sentinelone brings a distinctive approach to SIEM (security and events management), on which many security teams depend to respond to electronic threats. Linigan said that the Sentinelone's “AI Siem” show will be a large hub for the company this year, as well as the main focus on increasing efforts with service providers and service partners.
“The approach based on the rules in today's world does not work,” he said. “Using artificial intelligence, in addition to the structure of the original cloud data, is really important to consider how safety accidents are resolved there.”
“The move to SIM” opens huge opportunities for our partners, “especially at the time of change in this sector due to monotheism, such as acquiring CISCO to acquire Splung and Palo Alto Networks for IBM SAAS.
For Sentinelone, the goal of SIEM is not necessarily “tearing Splink or exiting Qradar”, he indicated. “But there are cases of use we can help solve it.”
The company said that the growth in the latest Sentenelone's business is already a large range. Sentinelone revealed in October that its cloud security work has exceeded $ 100 million of repeated annual revenues (ARR), while its data works – which include SIEM – amounted to $ 70 million in ARR.
Lenigan, the first vice president of the global ecosystem in Centelone, spent earlier in his career a decade in Splink, including as the Vice -President of the Group in its integrated system and MSP business. Before joining the Sentinelone in March 2024, he had spent two years as head of the channel at the Lacework, who has been obtained since then by Fortinet.
The following is an edited part of an CRN interview with Lanigan.
If we look back in the past year, what do you refer to as the biggest change you raised in the partner program?
At a total level, he was putting driving on every (sector). After that, one of our biggest investments was the technical resources that were allocated to the partner community. Because when you pass with this basic system's approach, they will build solutions. They need help in building these solutions with our pile. Thus we put an international partner institution (sales engineer) in place, with people who have deep experience in each of these areas, in every theater in the world. Then we really focus on the strategy – (especially about) from Easter, and about the hyper excess of the ecosystem. Due to our size, we were able to reach a fairly important partnership opportunity with Easter. But how can you maximize this to push a strong pipeline for your ecosystem, and the Sentinelone pipeline in parallel? Therefore (we focused on) the technical resources and superior investment that brought the value of the point to the rest of the ecosystem.
What are the main topics for the next year?
After our sales are launched, we will start with a series of regional summits of partners – where we collect our focus partners in each region, and offer our strategy for this year. What they will hear about is that we now have a very comprehensive and unified partner program that allows them to participate in multiple ways to work with us. Do they build services and ability with us? great. Our value you can interact with. It is clear that you will sell with us. Will you build solutions and offers at the head of the guard? Great, there is a path for these. You don't have to subscribe to multiple different programs. We will give you a way to completely interact with us and get multiple benefits along the way.
Including, we focus (we will focus) on our capabilities – and what we can solve – in the scene of data and cloud. These will achieve some of the important benefits of the program and some profitability of the partners. We do not want to be a service company by design. We want to enable these partners to build service practices. This is not only MSPS, GSIS – Optimum, Optivs, CDWS and Shis also have important service practices. So how do we help their profit with the guard, and even increase privacy? Then only, how do we focus together to build profitable works together? We have a very investment approach where we will invest in these partners who invest with us.
Will you recruit new partners this year?
We have a lot of partners, and we love working with all our partners. I would like to say that employment will focus on the partners who will help us to solve either certain slices of the market or will open new purchase centers within customers. While we follow the cloud security space, there is a series of partners who just rose (at the forefront). Or, as you go after going to the market with Google, there are companies that share very well with Google – Reseler, Integrator, etc.
With regard to cloud security and data security, how much are these opportunities for partners at the present time?
If you look at the area of ​​the cloud, especially the cloud safety market, it is a completely new market. I really came out of the traditional Siem solutions that could not solve cloud safety. They have not been determined to deal with the type of change that occurs in the cloud, and how you secure this environment. Not all the usual suspects have been designed for this type of architecture. This led to a new series of companies – ORCA, Wiz, Lacework before (its acquisition by) Fortinet.
If you are thinking about what is happening with the end point – you have agents coming out at the end point, and this agent also holds with the burden of cloud work. We solve the agent based on the agent for the equation with the cloud solution part of the CNAPP (Cloud-native application Platform). What we need to complete is the side of managing the cloud security situation. So we bought (Pingsafe) and fully merged it on the platform. Now we will market the competition fully in the CNAPP space, a huge market opportunity for partners – who are still fully frankly, learn about the scene of this partner ecosystem. Because everyone claims to do this, but do they really follow it? We won well on the market with our partners. We are a 100 percent partner. We do not go alone. Proof of that victory, this will open a wonderful new revenue flow for them.
What do you see as major allocations for Sentinelone on artificial intelligence at this stage?
From the beginning, Sentinelone had artificial intelligence built at the heart of the platform. Therefore, we replace the autonomy (security operations center) – this is something we were thinking about during the past decade and built in the portfolio. We have launched AI Purple at the top of the entire platform to solve these security problems already – via the end point, through the cloud, through the data scene – by obtaining less eyes on the glass. (With Sentinelone), you can do more of this automatic task by artificial intelligence, while practitioners really do deep diving on accidents that need a solution. It was incredibly good in the market, and this really distinguishes us from the latest CNAPP players. There are only a few of us and in the largest cybersecurity space that has been implementing Amnesty International for a long time.
Returning to your SIEM offer, what do you want the partners to know about how to approach this market?
You will hear more and more about us in the market this year in the AI ​​Siem space. The Siem Market is witnessing a very big change at the present time – with the inclusion of Splung to Cisco, Exabeam and Logrhythm, QRADAR is now moving to Palo (Alto Networks). Palo in the second round of what they will do for Sim. There is a lot of disturbance in this space.
(Our interest is) We built an original cloud data structure. And 70 percent of the SIEM data is the end point data. How do we help our customers – by taking this artificial intelligence – and solving this security information and managing events in a completely different way? You will see a lot about us in the market in this, which opens huge opportunities for our partners looking for solutions that will help their customers solve them. So not, “Go to Splink or go to Qradar.” But there are cases of use we can help solve.
The rules -based approach in today's world does not work. So the use of artificial intelligence, in addition to the structure of the original cloud data, is really important to consider how safety accidents are resolved there. Each base you create will be outdated immediately if you are not working at the speed at which attackers are located. This is where the value of artificial intelligence plays. Our approach is completely different from traditional SIEMS.
