SentinelOne has announced its plans to acquire Observo AI, a data streaming platform focused on AI-native telemetry pipeline management.
The acquisition aims to enhance SentinelOne’s security information and event management (SIEM) capabilities and broaden its data offerings, further advancing the company’s mission to deliver autonomous security operations.
The deal comes at a time when security teams face increasing costs and operational strain from rising data volumes. Legacy systems often create bottlenecks, leaving firms with reduced visibility, slower responses, and higher risks. SentinelOne said integrating Observo AI’s technology will allow it to reimagine how security operations centres (SOCs) manage data, moving towards a more open, intelligent, and autonomous approach.
SentinelOne specialises in AI-powered endpoint protection, extended detection and response (XDR), and AI-native SIEM solutions. Its Singularity Platform has become a key driver of growth, with data services among its fastest-expanding segments. Observo AI, by contrast, delivers a real-time telemetry pipeline that enriches, filters, and routes data before it reaches storage systems or SIEMs, enabling cost reductions and faster detection.
The acquisition will strengthen SentinelOne’s foundation in hyperscale data infrastructure. Observo AI will add an intelligent, policy-driven pipeline designed for real-time enrichment and routing, supporting open formats like OCSF, JSON, OTLP, and Parquet. This will allow enterprises to integrate data freely across SIEMs, cloud platforms, and security tools without vendor lock-in.
For customers, the integration promises faster threat resolution, reduced costs, and more efficient operations. Capabilities will extend across edge, in-stream, and hyperscale environments. Benefits also include up to 80% data volume reduction with full rehydration of logs on demand, enhanced data governance, and advanced observability tools for enterprises managing thousands of data sources.
Tomer Weingarten, SentinelOne CEO and co-founder, said, “Security is, at its heart, a data problem, and legacy, rules-based data pipeline platforms simply weren’t built for today’s ever-growing attack surface and data rich security operations. Observo AI is miles ahead of its rivals and will uniquely benefit customers with an AI-native data architecture — one that is open by design, intelligent by default, and built for the scale and speed needed for autonomous security operations. As a result, we can deliver significant new customer and partner value – and customer and partner choice – by allowing for fast and seamless data routing into our AI SIEM, or any other destination.”
Observo AI co-founder and CEO Gurjeet Arora added, “Observo AI was born in the AI and cloud era to help security and DevOps teams tackle previously unimaginable data problems as a means of defending an ever growing attack surface. Bringing together Observo’s AI-native data pipeline with the world’s best AI-native cybersecurity platform is a huge win for customers and an opportunity for our team to work with an unprecedented network of partners, sellers and fellow innovators. As part of SentinelOne, we have a rare opportunity to define the future of autonomous security and solve the data problems that make that possible.”
Weingarten concluded, “This acquisition marks the next phase in SentinelOne’s vision to build the most autonomous, open, AI-powered security platform in the industry.”
Keep up with all the latest RegTech news here
Copyright © 2025 RegTech Analyst
Copyright © 2018 RegTech Analyst
