SentinelOne has announced plans to acquire Observo AI, a specialist in data streaming and AI-native telemetry pipeline management.
The acquisition aims to strengthen SentinelOne’s AI SIEM and data offerings, one of the firm’s fastest-growing solution areas.
The company said the deal will act as a catalyst for its expansion in intelligent and autonomous security operations, enabling security operations centre (SOC) teams to manage data more effectively across complex environments. A deal value has not been disclosed.
SentinelOne delivers endpoint protection, extended detection and response (XDR), and AI-driven security operations through its Singularity Platform. Its focus is on enabling autonomous cybersecurity at scale. Observo AI, meanwhile, has built a category-defining, AI-native telemetry pipeline that processes, enriches and routes security and observability data in real time, giving enterprises flexibility and efficiency in managing vast data volumes.
The acquisition comes as security operations teams are overwhelmed by the cost and complexity of handling ever-increasing data volumes. Legacy SIEM and pipeline models were not designed for today’s threat landscape, leaving organisations with visibility gaps, high storage costs, and slower response times. By integrating Observo AI, SentinelOne intends to offer a modern, policy-driven and adaptive data pipeline for its AI SIEM, XDR, and data customers, breaking down silos and reducing costs.
Customers stand to benefit from Observo AI’s ability to cut data volume by up to 80%, enrich and filter telemetry at the source, and rehydrate full-fidelity logs on demand. The solution supports open formats such as OCSF, JSON, OTLP and Parquet, ensuring interoperability across SIEMs, data lakes, cloud platforms, and security tools without vendor lock-in.
Additional features include fleet-scale data governance, PII masking, anomaly detection and natural language querying, offering enterprises both compliance and advanced detection capabilities. The platform has been designed to power both human analysts and AI agents, reinforcing SentinelOne’s ambition to enable agentic AI-driven security workflows.
SentinelOne CEO and co-founder Tomer Weingarten said, “Security is, at its heart, a data problem, and legacy, rules-based data pipeline platforms simply weren’t built for today’s ever-growing attack surface and data rich security operations. Observo AI is miles ahead of its rivals and will uniquely benefit customers with an AI-native data architecture — one that is open by design, intelligent by default, and built for the scale and speed needed for autonomous security operations. As a result, we can deliver significant new customer and partner value – and customer and partner choice – by allowing for fast and seamless data routing into our AI SIEM, or any other destination.”
Observo AI co-founder and CEO Gurjeet Arora added, “Observo AI was born in the AI and cloud era to help security and DevOps teams tackle previously unimaginable data problems as a means of defending an ever growing attack surface. Bringing together Observo’s AI-native data pipeline with the world’s best AI-native cybersecurity platform is a huge win for customers and an opportunity for our team to work with an unprecedented network of partners, sellers and fellow innovators. As part of SentinelOne, we have a rare opportunity to define the future of autonomous security and solve the data problems that make that possible.”
Weingarten concluded, “This acquisition marks the next phase in SentinelOne’s vision to build the most autonomous, open, AI-powered security platform in the industry.”
For more, find on RegTech Analyst.
Keep up with all the latest FinTech news here
Copyright © 2025 FinTech Global
