[DigitalToday reporter Chi-gyu Hwang (황치규)] SentinelOne has made Purple AI’s autonomous threat investigation feature, “Purple AI Agentic Investigation,” available to all customers.

On June 17 local time, SiliconANGLE reported that the feature is offered as a free trial on the Singularity platform.

The feature activates automatically when a detected threat exceeds thresholds set by the customer, without an analyst having to start an investigation. Purple AI identifies and assesses the threat, then carries out a response based on the results.

Analysts can watch progress and step in when needed. SentinelOne described this as a “zero-click” method.

SentinelOne’s position is that security operations centre bottlenecks are in the investigation stage, not detection.

As security tools have grown and the attack surface has expanded, the number of detections has increased, but final verdicts still depend on available analyst staffing and working hours. SentinelOne sees gaps widening at night, on weekends and during spikes in alerts, and believes AI-based attacks could widen the gap further.

Chief Product Officer Chris Cord said, “Security teams are facing critical alerts at a level that is difficult to handle with staffing alone,” adding, “Purple AI’s autonomous investigation feature supports investigations being carried out automatically, without interruption, and immediately.”