SentinelOne vs Crowdstrike
Their are many layers to security and I’m sure Palo Alto and Sentinel One have advantages in some.
I would argue, as Rafe did over a year ago, Crowstrike will continue to win market share because of how they are using all of the aggregated data with a learning model to provide a better product. A simple lightweight install gives you coverage powered by their entire threat detection network and the response to new threats is super fast compared to the old model where you’d have to wait for a software update to make your local agent smarter. If a distributed attack is launched, the old model could provide protection for the next time it happens but with Crowdstrike you can be protected during the current attack because who ever in the network gets hit first would provide information for the rest of the network right away. The added intelligence means an even faster, potentially automatic, even potentially predictive/preventative, response. …at least that is my understanding. I’m not a security expert.
Regarding all the excellent analysis on the board, regarding SentinelOne, thanks. Since I would only consider selling Crowdstrike to gather the money to buy SentinelOne, keep this in mind when reading the following.
Assuming the current trend in the SentinelOne numbers maybe as fleeting as were the change in Lightspeed numbers this quarter. For me, I’m not investing in SentinelOne over Crowdstrike when SentinelOne GMs are relatively low and Operating margin just three quarters ago went the wrong way and so could easily go the wrong way again. Crowdstrike has vastly ramped their profit generation while they’ve recently steadily slowed Rev growth some. I see predictability in Crowdstrike.
When I read the SentinelOne CC, their describing Crowdstrike as just endpoint protection just smelled bad. Yes, SentinelOne utilizing their AI installed on the end point is differentiating; however, I see use of AI this way as potentially increasing false positives and preventing SentinelOne from scaling, as was pointed out in the CRWD CC. I definitely don’t see a large agent as advantageous with endpoints that may not support any agent (eg Workloads). Crowdstrike Horizon requires no agent.
Pure speculation here, if SentinelOne does get that 70% POC win rate that they claim, perhaps it’s due to their superior dashboard. Unlike others here, I don’t give IT department heads high marks for their technical chops.
I’m banking on Crowdstrike, under the hood, being far superior (see Crowdrike’s industry wins) and the slickness of the Crowdstrike dashboard will improve now all the pieces are in place for their platform.
I invest in Cloud Category Crushers. I believe, that for Crowdstrike, with Federal just getting started, their expanding their product line and partnerships more with XDR, Identity Protection and Humio now moving the revenue growth needle, and soon the same with Data Protection, CrowdStrike will continue their efficient execution towards their vision of becoming The Security Cloud.