SentinelOne expands on-prem security for air-gapped sites

SentinelOne has expanded its on-premise security products to cover self-hosted and air-gapped environments, targeting organisations that need to keep security data within their own systems.

The broader portfolio extends its existing on-premise endpoint security offering to servers, private clouds, data pipelines and AI applications. It is aimed at government bodies, critical infrastructure operators, financial institutions and healthcare groups facing strict data residency, privacy and sovereignty requirements.

The launch reflects a broader shift in cyber security buying among regulated sectors, where concerns about where data is stored and processed have grown as organisations adopt AI tools. Air-gapped systems, isolated from the public internet, have also drawn more attention as geopolitical tensions and operational risks push some operators to reduce dependence on external connectivity.

SentinelOne's on-premise and self-hosted products process customer data within the customer's own environment rather than sending telemetry to a cloud service. The products are already deployed across millions of on-premise endpoints, including tens of millions used by critical infrastructure operators.

Under the expanded offering, customers use a single agent across different parts of their infrastructure, including endpoints, servers and private cloud systems. This is intended to help security teams standardise threat monitoring and response across environments that are often separated for operational or regulatory reasons.

Local processing

The server and cloud protection products are designed to operate within a customer's network and continue working without a persistent internet connection. The system uses multiple on-device detection engines and can integrate with local storage platforms including NetApp and Dell to scan files and quarantine malware as it enters the environment.

That local inspection model is central to SentinelOne's pitch. By keeping detection and remediation inside the secure boundary, customers can run threat hunting and investigations without moving sensitive information off site.

SentinelOne is also adding an on-premise version of Prompt Security, its AI security product. The software is designed for disconnected environments and can identify unauthorised AI use, redact sensitive information in real time, and block threats such as prompt injection attacks and data leakage across internal and external AI tools.

Data controls

Another part of the rollout is an AI Data Pipeline for on-premises deployments. The system filters and enriches telemetry locally, allowing security teams to reduce unnecessary alerts and manage infrastructure costs by processing only selected data. It also sanitises information as it moves between sources and destinations, including generative AI models, while keeping that data on the premises.

SentinelOne has previously built public sector credentials through FedRAMP and GovRAMP-authorised offerings in the United States. The latest expansion extends that approach to customers seeking similar protections in environments where cloud connectivity is limited, prohibited or deliberately removed.

Ana Pinczuk, President of Product and Technology at SentinelOne, said the company was responding to a longstanding conflict between AI adoption and strict data control requirements. "Empowering global organisations with the certainty that their data stays in their control is more urgent than ever given the need to adopt AI without compromising privacy. For too long, organisations in highly regulated sectors have faced a trade-off between the speed of AI security and total data sovereignty, privacy and control - especially for air-gapped networks," she said.

Pinczuk said the aim was to remove that constraint for customers operating sensitive systems. "At SentinelOne, we are committed to breaking that trade-off. By delivering our most advanced autonomous engines and AI protections directly into the customer's own hardware environment, we are giving them the freedom to innovate securely," she said.