Case Study: CedarCrestone achieves real-time operational & security intelligence, $200K+ SIEM savings, and reduced downtime with Splunk

Managing Operational Risk for Maximum Reward

CedarCrestone, an Atlanta-based consulting and managed services firm, supports over 700 Oracle/PeopleSoft ERP environments across multiple clients, domains and software versions. That diversity made traditional SIEMs ineffective—CedarCrestone couldn’t reliably ingest, parse or correlate PeopleSoft/Oracle logs, lacked contextual insight, and faced high cost and inflexibility from appliance-based SIEM solutions.

After evaluating options, CedarCrestone deployed Splunk Enterprise with the Splunk App for Enterprise Security to collect and index heterogeneous logs, run custom correlation searches, perform asset discovery (with the Asset Discovery app and Nmap), and build real-time alerts and compliance dashboards. The solution converged security and operational data, reduced downtime and response time, and delivered measurable savings—more than $200,000 in SIEM consulting/connector costs avoided and over $20,000 in vulnerability-management licensing saved.

CedarCrestone

Dan Frye

Associate Vice President, Corporate Security