Exabeam, a global leader in intelligence and automation powering security operations, and Cribl, the Data Engine for IT and Security, have announced a major evolution of their strategic partnership, aimed at eliminating the traditional trade-off between cost and visibility in security operations. Building on their collaboration in 2023, the integration now combines the Exabeam New-Scale Security Operations Platform with Cribl Stream, enabling organizations to ingest and prioritize critical data, optimize long-term storage costs, and retain on-demand access to historical logs.
At the heart of this enhanced partnership are Exabeam Outcomes Navigator and the Exabeam Nova Advisor Agent. These tools help organizations identify the data sources that deliver the most significant security outcomes. Cribl then channels this high-fidelity data into the Exabeam New-Scale Platform, where it is transformed into AI-driven detections and threat timelines to power investigations. The collaboration ensures that every ingested log supports business-critical use cases and MITRE ATT&CK® coverage, while lower-value data can be moved to cost-efficient storage without losing searchability or historical replay capabilities.
Also Read: Veza & CrowdStrike Partner to Secure Access and Identity
Unlike conventional SIEM solutions, Exabeam offers behavioral context that helps detect threats often missed by other tools, including insider threats. By combining Exabeam’s advanced threat detection, investigation, and response (TDIR) capabilities with Cribl’s flexible data pipeline management, security teams can achieve greater efficiency and drive strategic outcomes.
“One of the differentiated strengths of the New-Scale Platform is the AI we provide powered through the data we ingest,” said Steve Wilson, Chief AI and Product Officer at Exabeam. “Working with Exabeam, Cribl helps our customers achieve two important goals, delivering the data to support strategic security outcomes, and controlling cost. This partnership gives security teams the clarity, control, and confidence to detect real threats faster and outpace adversaries with precision.”
Key Benefits of the Exabeam–Cribl Partnership:
-
Targeted Data Ingestion: Ensures only high-value, strategic data is ingested to power the most critical security use cases.
-
Accelerated Platform Adoption: Reduces downtime and simplifies data migration during transition to the New-Scale Platform.
-
Flexible Data Routing: Enables data movement to and from any security tool without requiring new agents or infrastructure.
-
Long-Term Storage Optimization: Supports BYO storage or cost-effective cloud storage options, maintaining compliance and searchability while lowering costs.
-
Historical Search and Replay: Facilitates forensic investigations and compliance audits across months or years of archived data at significantly reduced cost.
-
Data Filtering: Eliminates low-value or noisy logs, improving SIEM performance, reducing costs, and freeing analyst resources.
“An effective threat detection, investigation, and response strategy starts with clean, high-value, AI-ready data, because better data leads to better decisions, faster investigations, and stronger defenses,” said Vlad Melnik, Vice President, Global Alliances at Cribl. “By combining Cribl’s flexible data routing and shaping capabilities with behavioral analytics and automation from Exabeam, we’re enabling customers to streamline SIEM data ingestion, achieve their security goals more efficiently, and fuel their AI-powered SIEM. It’s a smarter, more sustainable path to cyber resilience.”