Elastic Case Study
Crest Data developed Elastic integrations for Security, Observability, and Enterprise Search use cases that help the user bring, analyze and correlate their logs across multiple platforms.
Home > Case Studies > Elastic Case Study
Executive Summary
Crest Data developed Elastic Security, Observability, and Enterprise Search third-party integrations using Elastic framework and standards to ingest the data into the Elastic platform.
This data includes logs/feeds for Security integrations, metrics for Observability integrations, and documents in case of Enterprise Search integrations.
Elasticsearch is a distributed, free and open search and analytics engine for all types of data, including textual, numerical, geospatial, structured, and unstructured. Elasticsearch which is built on Apache Lucene is now known as Elastic and is widely known for its scalability, extensibility, simple REST APIs, and speed. Elastic addresses three major use cases under a single hood which are Security Analytics, Observability and Monitoring, and Enterprise Search.
Business Challenge
Elastic being a widely used analytics platform, bringing in the right amount of logs and parsing them is an absolute necessity. Given the fact that each data source whether it be Security, Observability, or Enterprise Search, will be data represented in different formats, normalizing it prior to ingestion becomes essential. To increase the challenge, as the number of new data sources to be integrated is large, there's a need for a well-defined integration development outline that standardizes the process of data collection, normalizations and building custom dashboards on top of them.
Customer Solution
Crest Data developed Elastic integrations for Security, Observability, and Enterprise Search use cases that help the user analyze and correlate their logs across multiple platforms. With this solution, the user can leverage Elastic to monitor their environment for any irregularities and perform textual searches on their documents laid over their entire organization. As part of the integrations development process, the following actions were implemented:
Analyzed the third-party data sources to identify what type of logs/metrics to bring to Elastic
Implemented robust data collectors to ingest and transform those logs
Developed analytics and detections to provide out of the box customized dashboards and security use cases
Developed 15+ open source Elastic integrations
The Crest Difference
With this new solution by Crest Data, we helped:
Standardize the Enterprise Search connectors and increase the team’s productivity by making content from various sources like SharePoint, Network Drives, Microsoft Teams easily accessible and searchable from the Elastic Workplace Search.
The organization to bring in the security feeds from various sources and provide custom enriched dashboards for analytics.
The organization to get an unified view of their entire infrastructure and monitor any abnormalities in their system.