SentinelOne Acquires Observo AI to Enhance AI-Native Security Operations and Data Management

SentinelOne plans to acquire Observo AI to advance AI-native security operations and strengthen its AI SIEM and data offerings. The deal will help deliver open, intelligent, and autonomous security operations, enabling SOC teams to process security data faster and improve detection. Observo AI's platform reduces data volumes by up to 80% while maintaining full-fidelity logs on demand, enhancing SentinelOne's Singularity Platform with a policy-driven, real-time data pipeline.

SentinelOne, a leading endpoint security company, has announced its intention to acquire Observo AI, a data pipeline startup, for $225 million. The acquisition aims to bolster SentinelOne's AI-native security operations and strengthen its AI SIEM and data offerings. Observo AI's platform is designed to reduce data volumes by up to 80% while maintaining full-fidelity logs on demand, enhancing SentinelOne's Singularity Platform with a policy-driven, real-time data pipeline.

The acquisition is expected to close by the end of October 2025. Observo AI, founded in 2022, employs 42 people and has closed a $15 million seed funding round led by Felicis and Lightspeed Venture Partners. The company's platform supports open standards, flexible deployment models, and advanced real-time detection capabilities, which align with SentinelOne's vision of delivering open, intelligent, and autonomous security operations.

SentinelOne's Chief Business Officer, Eran Ashkenazi, highlighted the need for a modern data pipeline that can handle real-time data ingestion and enrichment. He noted that Observo AI's technology stands out due to its support for open standards like JSON and CSF, as well as its ability to perform real-time anomaly graph-level detections.

By integrating Observo AI's data pipeline, SentinelOne aims to provide customers with the ability to decouple the ingestion layer from the analytics and correlation layer, enabling cost-efficient data processing. This will allow security teams to ingest more relevant data without being bound by expensive licensing models.

The acquisition comes just a month after SentinelOne agreed to spend $180 million to buy Prompt Security, which helps organizations manage and monitor how employees use generative AI tools like ChatGPT or internal LLMs. Future integrations between Prompt Security and Observo AI's pipeline could potentially enforce policies before data even hits the SIEM.

SentinelOne's stock was down $0.21 on Monday, September 8, 2025, following the announcement. The acquisition is part of SentinelOne's broader strategy to modernize IT environments and support the migration of data from legacy systems to scalable, real-time-enabling technologies.

References:
[1] https://www.govinfosecurity.com/sentinelone-buys-observo-ai-for-225m-to-fuel-data-ingestion-a-29392
[2] https://www.sentinelone.com/blog/observo-ai-and-the-future-of-the-autonomous-soc/