IT Brief US - Technology news for CIOs & IT decision-makers
United States

Guides

#
artificial intelligence
#
digital transformation
#
disaster recovery
#
hybrid & remote work
#
internet of things

Search

Ai driven cloud servers data analytics security cost reduction network
#
Storage
#
Data Analytics
#
SIEM

Exabeam & Cribl expand AI security partnership to cut costs

Today
Author image
By Melvin Hipolito, Editor

Exabeam and Cribl have announced an expanded partnership designed to help organisations balance security visibility with cost by integrating Exabeam's AI-powered threat detection and analytics with Cribl's data routing and management platform.

The collaboration builds on an existing partnership between the two companies and brings together the Exabeam New-Scale Security Operations Platform with Cribl Stream. The integration is intended to enable organisations to ingest and prioritise strategic data, optimise long-term storage expenses, and retain the capability to search historical data on demand without increasing storage and compute outlays.

Focus on effective data usage

Central to this partnership are two Exabeam offerings: Outcomes Navigator and the Exabeam Nova Advisor Agent. These tools are designed to help organisations identify which data sources are most critical for driving effective security outcomes. Once identified, Cribl's routing technology ensures this data is directed to the Exabeam platform for processing, where it is used for AI-based threat identification and the generation of investigative timelines.

Lower value data can be diverted to more cost-effective storage options, yet remains searchable if required for forensic or compliance investigations. Each log ingested through this workflow is aligned to business-critical use cases and MITRE ATT&CK coverage, a framework commonly used to describe the behaviours and tactics of cyber attackers.

Threat detection and analytics context

Exabeam's platform is utilised for its behavioural analytics capability, which the company states assists security teams in identifying threats often missed by traditional security information and event management (SIEM) tools. These include insider threats, a category of risk that can arise from employees or those with authorised system access. By combining Exabeam's advanced Threat Detection, Investigation, and Response (TDIR) tools with Cribl's data management, security teams gain workflow efficiencies and improved investigative outcomes.

"One of the differentiated strengths of the New-Scale Platform is the AI we provide powered through the data we ingest. Working with Exabeam, Cribl helps our customers achieve two important goals, delivering the data to support strategic security outcomes, and controlling cost. This partnership gives security teams the clarity, control, and confidence to detect real threats faster and outpace adversaries with precision."

This statement was provided by Steve Wilson, Chief AI and Product Officer at Exabeam.

Partnership features

According to both companies, the Exabeam–Cribl partnership offers several operational benefits for security teams. These include targeted data ingestion focusing only on high-fidelity data relevant for key security cases, a reduction in platform adoption hurdles and minimisation of downtime during migration, and flexible data routing that does not require new agents or extra infrastructure to operate.

Other stated features include optimisation for long-term data storage, with the ability for customers to use their own storage systems or low-cost cloud-based solutions. This aims to help organisations reduce ongoing storage expenditure while still being able to access archived data for compliance audits or investigative purposes. The integration also filters out low-value or redundant data, which can enhance SIEM performance and support workloads for security analysts.

Industry perspective

"An effective threat detection, investigation, and response strategy starts with clean, high-value, AI-ready data because better data leads to better decisions, faster investigations, and stronger defences. By combining Cribl's flexible data routing and shaping capabilities with behavioural analytics and automation from Exabeam, we're enabling customers to streamline SIEM data ingestion, achieve their security goals more efficiently, and fuel their AI-powered SIEM. It's a smarter, more sustainable path to cyber resilience."

This was said by Vlad Melnik, Vice President, Global Alliances at Cribl.

Strategic data approach

Together, Exabeam and Cribl state that their combined offering aims to decouple security outcomes from sheer data volume. Rather than collect and process all available telemetry, the approach emphasises building a data strategy focused on outcomes - ensuring security teams receive relevant information for threat detection and incident response, while controlling the associated costs of data ingestion and storage.

This partnership is aimed at addressing industry challenges faced by organisations increasingly required to store and analyse data for regulatory and business reasons, whilst trying to manage costs and operational efficiency. The companies expect this to appeal to teams looking for more strategic and scalable security solutions.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
Calabrio launches AI-driven workforce solution for contact centres
Global marketers embrace GenAI, reporting ROI & deeper value
CrowdStrike partners with tech giants to secure enterprise AI
CrowdStrike & Meta unveil open benchmarks for AI in cyber defence
CrowdStrike partners can earn up to USD $7 in services for each USD $1 spent

Top stories

Akamai & Seraphic partner to deliver unified Zero Trust browser security
Applied Systems acquires Cytora to boost AI in insurance sector
Sphere launches GEO platform to manage AI-driven online profiles
Affinda launches agentic AI platform for any document workflow
Celonis debuts at No.3 on 2025 Fortune Future 50 for AI focus