Best-in-class, AI-native data pipeline platform will build on SentinelOne’s AI advantage by turbo charging ingestion, enriching telemetry, and automatically adapting to evolving threats

MOUNTAIN VIEW, Calif.--(BUSINESS WIRE)--Sep. 8, 2025-- SentinelOne (NYSE: S), the leader in AI-native security, today announced its intent to acquire Observo AI, the category-defining data streaming platform for AI-native telemetry pipeline management. The deal will serve as an immediate complement and catalyst to SentinelOne’s AI SIEM and data offerings, which are already amongst the company’s fastest growing solutions, delivering a record contribution to quarterly bookings in Q2 FY26. It will also help SentinelOne usher in a new era of open, intelligent, and autonomous security operations—reimagining how SOC teams collect, enrich, and act on data across their entire security ecosystem.

The announcement comes as security operations teams struggle with costs, complexity and delays created by ever increasing security data volumes – forcing compromises that reduce visibility, limit protection and slow response. These challenges are compounded by data platforms built before the AI-enabled SOC, modern security stack, and today’s increasingly fast and sophisticated attacks.

Observo delivers an AI-native, real-time telemetry pipeline that ingests, enriches, summarizes, and routes data across the enterprise—before it ever reaches a SIEM or data lake. This empowers customers to dramatically reduce costs, improve detection, and act faster.

“Security is, at its heart, a data problem, and legacy, rules-based data pipeline platforms simply weren’t built for today’s ever-growing attack surface and data rich security operations,” said Tomer Weingarten, CEO and Co-founder of SentinelOne. “Observo AI is miles ahead of its rivals and will uniquely benefit customers with an AI-native data architecture — one that is open by design, intelligent by default, and built for the scale and speed needed for autonomous security operations. As a result, we can deliver significant new customer and partner value – and customer and partner choice – by allowing for fast and seamless data routing into our AI SIEM, or any other destination.”

A New Chapter in Security Data: Open. AI-Native. Autonomous.

Today’s enterprises are generating unprecedented volumes of security and observability data—across endpoints, cloud workloads, identity systems, GenAI applications, and beyond. But for too long, telemetry has been trapped in rigid pipelines, burdened by high storage costs, siloed by proprietary formats, and limited by legacy ingestion models built for a different age.

Legacy SIEM models were built in an era of rigid ingestion, high storage costs, and manual operations. With Observo AI, SentinelOne will give its AI SIEM, XDR and standalone data customers a modern alternative to breaking down silos and unlocking the value of all security data – redefining the pipeline as policy-driven, adaptive, and optimized for the Autonomous SOC.

For customers, that means SOC teams can resolve threats faster, cut data costs dramatically, and simplify operations across the entire environment. These capabilities will be delivered at the edge, in stream, and at hyperscale, and will include:

• Freedom to Integrate Anything, Anywhere - Observo AI supports open formats like OCSF, JSON, OTLP, and Parquet—allowing enterprises to easily ingest, route, enrich, and forward telemetry to any destination, including SIEMs, data lakes, security tools, and cloud platforms. No lock-in. No compromise. Just data where it’s needed, how it’s needed.
• AI-Driven Enrichment and Filtering at the Source - Before data is stored or analyzed, it’s already working for you. Observo AI performs classification, masking, correlation, and summarization in real time using AI models—ensuring that only the most relevant, enriched, and context-rich telemetry flows downstream. That means faster detection, sharper response, and dramatically lower costs.
• Efficiency Without Sacrifice - With intelligent reduction of data volume by up to 80 percent, and the ability to rehydrate full-fidelity logs on demand, Observo AI redefines cost-efficiency. Enterprises gain the best of both worlds: lean, real-time operational pipelines—and deep historical context available when needed.
• Fleet-Scale Security, Data Governance and Observability - Designed for enterprises with thousands of data sources, Observo AI includes centralized fleet management, zero-touch updates, PII masking, and automated discovery of new data types—ensuring data integrity, compliance, and security posture across every corner of your environment.
• Built for Human and Machine Intelligence - With natural language querying, threat enrichment, and context-aware anomaly detection, Observo AI empowers both human analysts and AI agents to act faster and smarter—fueling an ecosystem where people and machines operate in concert, not conflict.

Building on SentinelOne’s AI-Native and Data Foundation

This acquisition builds on years of investment in hyperscale data infrastructure already at the core of SentinelOne’s Singularity Platform.

Observo AI will enhance that foundation with an intelligent, policy-driven data pipeline optimized for real-time enrichment, filtering, and routing, before data ever reaches storage or analytics layers.

The result is an end-to-end architecture that ingests data from anywhere, makes it smarter in transit, and stores it with full fidelity, delivering faster insights, lower costs, and greater control across the entire security data lifecycle. This foundation also unlocks the next frontier of security: agentic AI workflows, where autonomous agents leverage enriched, real-time data to detect, decide, and respond with human-level reasoning at machine speed.

“Observo AI was born in the AI and cloud era to help security and DevOps teams tackle previously unimaginable data problems as a means of defending an ever growing attack surface,” said Gurjeet Arora, co-founder and CEO of Observo AI. “Bringing together Observo’s AI-native data pipeline with the world’s best AI-native cybersecurity platform is a huge win for customers and an opportunity for our team to work with an unprecedented network of partners, sellers and fellow innovators. As part of SentinelOne, we have a rare opportunity to define the future of autonomous security and solve the data problems that make that possible.”

“This acquisition marks the next phase in SentinelOne’s vision to build the most autonomous, open, AI-powered security platform in the industry,” continued Weingarten.

Transaction Details

SentinelOne will acquire Observo AI for a combination of cash and stock. The transaction is expected to close in SentinelOne’s third quarter of fiscal year 2026, subject to any applicable regulatory approvals and customary closing conditions.

Forward-Looking Statements

This release relates to a pending acquisition of Observo AI (“Observo”) by SentinelOne, Inc. (“SentinelOne,” “our,” “we,” or “us”). This release contains forward-looking statements that involve risks and uncertainties, including statements regarding the anticipated benefits of the acquisition and the timing and closing of the acquisition. The forward-looking statements contained in this release are subject to known and unknown risks, uncertainties, assumptions, and other factors that may cause actual results or outcomes to be materially different from any future results or outcomes expressed or implied by the forward-looking statements. These risks, uncertainties, assumptions, and other factors include, but are not limited to: the effect of the announcement of the acquisition on the ability of Observo to retain key personnel or maintain relationships with customers, vendors and other business partners; risks that the acquisition disrupts current plans and operations; the ability of the parties to consummate the acquisition on a timely basis or at all; the satisfaction of the conditions precedent to consummation of the acquisition; our ability to successfully integrate Observo’s operations; our and Observo’s ability to execute on our business strategies relating to the acquisition and realize expected benefits and synergies; our ability to compete effectively, including in response to actions our competitors may take following announcement of the acquisition; and the effects of broader macro conditions.

Forward-looking statements reflect management's current expectations and information available as of the date hereof, and are inherently uncertain. Actual results could differ materially for a variety of reasons. Please refer to the documents we file from time to time with the SEC, in particular, our Annual Report on Form 10-K and our Quarterly Reports on Form 10-Q as these documents contain and identify important risk factors and other information that may cause our actual results to differ materially from those contained in our forward-looking statements. Except to the extent required by law, SentinelOne and Observo undertake no obligation to update the forward-looking statements to reflect new information or future events.

About SentinelOne

SentinelOne is a leading AI-powered cybersecurity platform. Built on the first unified Data Lake, SentinelOne empowers the world to run securely by creating intelligent, data-driven systems that think for themselves, stay ahead of complexity and risk, and evolve on their own. Leading organizations—including Fortune 10, Fortune 500, and Global 2000 companies, as well as prominent governments—trust SentinelOne to Secure Tomorrow™. Learn more at sentinelone.com.

Category: Investors

View source version on businesswire.com: https://www.businesswire.com/news/home/20250908185380/en/

Investor Contact:
Saad Nazir
investors@sentinelone.com

Media Contact:
Craig VerColen
press@sentinelone.com

Source: SentinelOne