Case Study: Knauf achieves a modern, scalable cloud SIEM and faster threat detection with Sumo Logic

From legacy onprem to a modern cloud SIEM

Knauf, a global construction materials manufacturer founded in 1932, was hampered by a sprawling legacy on‑prem IT estate with decentralized SCADA and regional sites. Their McAfee ESM SIEM proved unreliable and slow—queries could take hours—leaving the SOC unable to scale with the business and respond quickly to incidents.

After evaluating ten vendors, Knauf chose Sumo Logic Cloud SIEM, a cloud‑native platform that delivered central visibility across the extended environment, more than 600 out‑of‑the‑box rules, and a sub‑two‑hour onboarding. The result: faster, more effective threat detection and investigations (including during a severe cyberattack), reduced operational overhead, and a scalable foundation for automation, proactive threat hunting, and cyber fusion initiatives.

Knauf

Dawid Krochmal

SOC Manager