Hello From Steve

A lot has happened since you were last here. Most importantly, management decided we need a new Security Information and Event Management (SIEM) solution. Something was said about a ‘different feature set’ and ‘license costs’. Steve is about to go on PTO and his team is bogged down in too many projects, so he requested your help to manage the migration of existing data into the new SIEM.

note

To: REDACTED

Hello, again-

We recently finished a proof of concept with Exabeam and they showcased some pretty promising workflows. We would like to jumpstart our deployment by moving all of our data into Exabeam, but we don’t have time to export it from our current SIEM. If you have some cycles to spare, can you look into this please?

Thanks,

Steve Director of IT

Luckily, Cribl, the Data Engine for IT and Security, empowers organizations to transform their data strategy. AND we prepared for this scenario with our original work making an S3 archival data Route! It should be a pretty straightforward configuration: set up S3 as a Collector Source, configure the new SIEM as a Destination, and start the collection job. Easy peasy lemon squeezy.

Shall we?