Unexpected spikes in log volume left Yale New Haven Health, Connecticut's largest healthcare system, struggling with soaring SIEM costs and operational inefficiencies. In this session, hear how the team used Cribl to cut log volume by 40%, centralize data telemetry from 30k+ endpoints, and accelerate migration to Microsoft Sentinel in just two weeks. Learn how to control costs, streamline operations, and strengthen security posture with a modern telemetry data management strategy.
talk-data.com
R
Speaker
Robert Arbuckle
1
talks
Rob Arbuckle is a Security Analyst III at Yale New Haven Health System (YNHHS), where he leads security modernization initiatives leveraging Microsoft Sentinel, Microsoft ADX, and Cribl after a system migration from Splunk. With over 13 years of healthcare IT and cybersecurity experience, and a background as a paramedic, Rob brings unique insight into safeguarding patient care systems. His expertise spans SIEM architecture, incident response, vulnerability management, and infrastructure monitoring. Drawing on frontline clinical experience, Rob optimizes security pipelines to reduce operational overhead and improve detection accuracy in compliance-driven environments.
Bio from: Microsoft Ignite 2025
Filtering by:
Microsoft Ignite 2025
×
Filter by Event / Source
Talks & appearances
Showing 1 of 1 activities