Cribl helped Yale New Haven Health manage data from over 30,000 endpoints, reducing their SIEM license spend by 40% through efficient filtering and stripping of unnecessary fields from Palo Alto firewall logs. This optimization kept log volumes under control without losing important data. Cribl also facilitated a smooth two-week transition from Splunk to Microsoft Sentinel by simply redirecting data outputs. Centralizing syslog and UDP traffic with Cribl improved normalization, filtering, and security visibility, supporting easier compliance and faster security operations. This foundation allows Yale New Haven to expand log ingestion and enhance privacy with data masking for sensitive information.

Join for free to read