Case Study: Fortune 20 Health Insurance Provider improves security and reduces MTTR with Cribl Stream

Cribl Stream Improves the Efficacy of Fortune 20 Health Insurance Provider by Providing More Structured, Relevant Data

The Fortune 20 Health Insurance Provider needed to manage massive volumes of log and security data while controlling Splunk costs, improving monitoring, and reducing MTTR. To help, they adopted Cribl Stream to better handle data flowing through their organization and support their security and IT teams.

With Cribl Stream, the company reduced AWS CloudTrail data flowing into Splunk by 30–40% and cleared a backlog of about 40 million AWS messages to zero in 24 hours. Cribl also helped normalize and structure data for threat detection, reduce reliance on heavy forwarders, and create a more efficient, scalable data pipeline with better headroom for additional sources and improved security operations.