RSAC is always a major week for the security industry and this year was no exception. We started the week by announcing a new partnership with Palo Alto Networks. This brings Cribl’s telemetry management technologies together with Cortex XSIAM to help customers gain full control of their data and move faster toward AI-powered security operations.
This partnership is a big step forward for teams that need to simplify their data pipelines, reduce alert fatigue, and scale with precision. More importantly, it reflects how Cribl supports customers no matter what their environment looks like. Whether you are using legacy tools, cloud-native stacks, or best-in-class solutions from multiple vendors, Cribl helps you get the right data to the right tools without overwhelming your team or your budget.
Showing the Power of Partnership in Action
Throughout the week, we connected with some of the most forward-thinking teams in security. Our TAP partners took the stage to show how Cribl fits into real-world security architectures and helps solve complex problems.
CrowdStrike shared how security teams are staying ahead of modern adversaries with an AI-native SOC. Palo Alto Networks highlighted how organizations can unify their operations and gain better visibility using Cribl with Cortex XSIAM. Microsoft showed how customers are unlocking siloed data and accelerating cloud modernization with Cribl on Azure. SentinelOne shared how simplified ingest helps teams act faster. From Wiz’s cloud-native telemetry use cases to Gigamon’s compliance-first workflows, every session showed how curated telemetry data drives better outcomes.
Customers Are Facing Data Sprawl and Cost Pressures
Every conversation at the booth pointed to the same challenge. Telemetry data is growing faster than most teams can manage. It is becoming harder to investigate threats, keep costs under control, and maintain visibility. Cribl gives teams control by allowing them to collect, route, and enrich data on their terms. Whether you are trying to scale your SIEM, optimize your SOC, or prepare for AI, the foundation starts with better data.
Partner Momentum and Real-World Wins
The pace of innovation and consolidation in the security space is fueling strong momentum across the Cribl partner ecosystem. Our go-to-market partners are building services that help customers unlock more value from their existing investments and tools. At RSAC, we met with dozens of partners who are using Cribl to power everything from SOC modernization to compliance programs to custom managed services.
CrowdStrike highlighted several joint customer successes that show the impact of this work in the field. A global shipping and logistics company completed a rapid SIEM migration using Cribl and CrowdStrike’s Falcon® platform, cutting costs, improving scale, and speeding up operations. A global travel company used Cribl to ingest 13 different data sources in under an hour, dramatically accelerating onboarding and time to value.
Solution Providers, Systems Integrators, and Managed Service Providers are building on Cribl to deliver these kinds of transformational outcomes. As vendors continue to innovate, partners are stepping up as trusted data advisors, helping customers manage complexity and get more from their data every day.
Agentic AI and the Shift Toward the Modern SOC
Another major theme throughout the week was agentic AI. Microsoft’s keynote from Vasu Jakkal called out the growing role of autonomous AI agents in cybersecurity. Nearly every session included some element of AI, and the message was consistent. Data quality and accessibility are now mission critical.
There is a tectonic shift happening across the industry. The modern optimized SOC is no longer a vision. It is the goal teams are building toward. Cribl sits at the foundation of that shift, giving teams the ability to deliver clean, enriched, and actionable data to the tools and platforms that power decision-making. AI agents can operate with accuracy, move faster, and adapt to new threats in real time.
As organizations bring AI deeper into the SOC, Cribl and its partner ecosystem are enabling that transformation. Together, we are helping teams move past data sprawl and build a future where speed, clarity, and automation are not just possible but expected.
The Work Ahead
We left RSAC energized by the conversations, the momentum, and the direction of the industry. Security teams are modernizing, scaling for the future, and demanding better visibility across every environment. Cribl is proud to be the foundation helping them get there.
If we missed you in San Francisco, we would still love to connect. Let’s talk about how Cribl can help you take control of your telemetry and build a security strategy that scales with you.
