The Observo.ai Blog

Your SIEM is Bleeding You Dry: The Hidden 80% Tax You're Paying for Low-Value Security Data

This is the first post in our three-part series exploring AI-powered security data pipelines. We'll examine why these solutions have become essential (Part 1), what key features to evaluate when selecting a solution (Part 2), and how to implement for maximum ROI and business impact (Part 3).

April 23, 2025

Data First, Tools Second: Rethinking Modern SOC Architecture

For years, the industry pushed vendor consolidation as the answer – promising streamlined operations, simplified management, and enhanced visibility through unified platforms. But this approach has delivered more headaches than solutions for many organizations. Best-in-breed solutions for each function of the SOC remain a preferred choice for most companies.

March 26, 2025

Solving the Getting Data In Problem: Ingesting and Normalizing Heterogeneous Data at Scale

Integrating observability pipelines in the modern infrastructure is complex, and engineering teams often face several challenges when onboarding data into their observability pipelines. Read more to learn how to overcome these challenges.

April 23, 2024

Archival & Hydration at Enterprise Scale: Maximizing Data Value While Minimizing Costs

In today's data-driven world, organizations face a critical challenge: balancing the need for comprehensive log data with the escalating costs of data storage and processing. Observo AI's Archival and Hydration features provide a powerful solution that helps organizations optimize their data management costs while maintaining full control over their data.

March 21, 2024

Observo AI + AWS Security Lake: Smarter, Cost-Efficient Security Data

Security data is doubling every 2-3 years. To solve this challenge, Observo AI has partnered with AWS Security Lake to help organizations optimize, route, and store security data in a structured and cost-effective manner.

March 19, 2025

Observo AI Achieves Amazon Security Lake Ready Specialization

Observo AI has achieved the Amazon Security Lake Ready Specialization, a significant milestone in our mission to help organizations optimize their security data management while dramatically reducing costs. Learn more about this significant milestone.

March 18, 2025

Introducing Observo Orion: Your AI Data Engineer for Security and DevOps

I’m thrilled to announce the general availability of Observo Orion, the industry’s first Agentic AI Data Engineer. This launch represents more than just a new product — it’s a fundamental shift in how organizations will manage their security and observability data pipelines.

February 26, 2025

Role-based Access Control: Scaling Access Control for Enterprise Needs

In this blog, we will dive deep into how RBAC is implemented at Observo and how it can scale to meet the access control needs of large enterprises.

February 10, 2025

How Storytelling Led Me to Observo AI

Joining Observo AI as the founding director of product marketing 15 months ago was an exciting opportunity to build something from the ground up again. It allowed me to combine my deep understanding of telemetry data pipelines with the AI expertise I gained from Pinecone and EDB. The potential for AI to revolutionize data optimization fascinated me, and I saw Observo AI as an ideal application of this technology.

February 6, 2025

Partnering for Success: Why a Strong Partner Ecosystem is Critical in Enterprise Security

No single vendor can provide all the answers. Organizations face unprecedented challenges in managing vast amounts of security data while maintaining operational efficiency, predicting, detecting, and remediating threats all while dealing with budget constraints. This is why I believe a comprehensive partner ecosystem isn't just beneficial – it's mission-critical for any enterprise B2B software company, especially those of us in the cybersecurity space.

February 5, 2025

Why I’m Betting on Observo AI

It's a unique opportunity. Observo AI sits squarely at the intersection of urgent market needs and exceptional talent. The technical vision of co-founders Gurjeet Arora and Ricky Arora, combined with the strategic guidance of our board and investors, Guru Chahal and Nnamdi Iregbulem from Lightspeed Venture Partners, Jake Storm and Nancy Wang from Felicis Ventures, creates an unstoppable force.

February 4, 2025

Better Together: Splunk ES & Observo AI Data Pipelines

Security data collection is key to Splunk ES, but high costs, poor performance, and delayed threat detection pose challenges. Observo AI pipelines automate optimization, reducing security events by 80%+.

February 3, 2025

From Whiteboard to $15M: The Observo AI Story

Today, we’re incredibly excited to share a major milestone in Observo AI's journey: we've raised $15 million in seed funding, led by two of the most respected venture capital firms in the tech world – Felicis and Lightspeed Venture Partners.

January 30, 2025

The Rise of AI in Telemetry

The future of telemetry lies in agentic systems that combine LLMs with a suite of tools to autonomously detect, diagnose, and fix issues—giving engineers more time to innovate and less time to troubleshoot.

January 28, 2025

Using Observo AI as a Security Data Fabric

In this blog, we will look at the most common features of security data fabrics and show how Observo AI’s telemetry pipeline for security data can handle all of these. Using the unique capabilities of the AI-powered telemetry pipeline for security data can be a great alternative for organizations looking to implement a security data fabric.

October 8, 2024

Advanced Metrics Optimization: Filter, Reduce, and Aggregate with Observo AI

Observo AI helps DevOps and Engineering teams optimize metrics usage. This article covers three use cases demonstrating how Observo AI reduces metrics volumes and custom metric counts, enabling comprehensive data analysis without straining budgets. This optimization also improves query performance and highlights key areas for improvement.

October 3, 2024

Observo AI is now available on Azure Marketplace

We're excited to announce that Observo AI has partnered with Microsoft and is now available on Azure Marketplace! Azure customers can now easily adopt our AI-powered Security and Observability Pipeline to manage data sprawl, boost productivity, and resolve incidents faster—using their existing Microsoft Azure Consumption Commitment (MACC) for seamless purchasing

September 26, 2024

Without AI, Your Telemetry Data Pipeline Sucks

AI and ML excel at analyzing patterns and optimizing data far beyond human capabilities. Relying solely on human-defined rules in your telemetry pipeline means missing out on significant opportunities for optimization.

August 1, 2024

Mastering Fortinet FortiGate Firewall Logs - Part 2 Optimization

Here in Part 2, we'll explore how Observo AI optimizes FortiGate logs for cost efficiency and enhanced performance while maintaining their analytical value. Typically, customers who use Observo experience an 80%+ reduction in overall log volume for Fortinet logs.

July 9, 2024

Mastering Fortinet FortiGate Firewall Logs - Part 1 Overview

Fortinet FortiGate firewalls are network security devices that monitor and control incoming and outgoing network traffic based on predetermined security rules. FortiGate firewall logs contain valuable information about network and security events, essential for security and infrastructure monitoring in enterprises.

June 28, 2024

Observo AI Joins the AWS Marketplace

Observo AI is excited to announce that we have partnered with AWS and our solution is now available on the AWS Marketplace. This will make it easier for AWS customers to quickly adopt the AI-Powered Security and Observability Pipeline to help control costs, manage data sprawl, boost productivity, and identify and resolve critical incidents faster.

July 18, 2024

Unleashing the Power of Data: Announcing the Official Partnership Between Observo AI and Splunk

Splunk Enterprise with Observo AI's observability and security data pipeline enhances the capabilities of security and DevOps teams even further.

June 5, 2024

Mastering CloudTrail Logs, Part 2

In part 1 of this series, we took a look at what CloudTrail logs are, the value addition that CloudTrail logs serve and some of the problems involved in processing and storing these logs. In part two of this series, we will look at how Observo helps organizations process CloudTrail logs at scale and derive value from them.

May 16, 2024

Why an Observability Pipeline is a Must Have for Security

SIEMs and other security tools face the challenge of rapidly growing data volumes which can bury meaningful insights and slow down SecOps teams. This blog will explore why an Observability Pipeline is essential for maintaining enterprise security effectively.

May 3, 2024

The Modern SOC Platform

Francis Odum recently released his research report titled, “The Evolution of the Modern Security Data Platform”. In this article, we will highlight some of the findings of this report and share how Observo.ai is addressing some of the biggest trends in security with our AI-Powered Telemetry Pipeline.

April 30, 2024

Mastering OpenTelemetry - Part 1

Delve into the history of OpenTelemetry, its current capabilities, how it stacks up against other leading observability platforms, and its connection with the Cloud Native Computing Foundation (CNCF).

April 16, 2024

Mastering CloudTrail Logs, Part 1

CloudTrail logs serve a vital role in security, governance and operational visibility. In this blog, we will cover their most common use cases, dive into the contents of CloudTrail Logs and study the challenges of working with them.

April 12, 2024

Enhancing Security with Fine-Grained RBAC: The Observo AI Approach to Data Access and Auditability

Implementing fine-grained role-based access control (RBAC) offers an effective solution to the challenges complex organizations face with respect to access to secure data. By providing granular control over who can access specific data and at what level, Observo AI's RBAC ensures that only authorized personnel can view, modify, or share sensitive information.

February 27, 2024

Advantages of an AI-Powered Observability Pipeline

An AI-powered observability pipeline, like Observo.ai, addresses the challenges of escalating data volumes and infrastructure costs making it a pivotal tool for security and DevOps teams seeking efficient telemetry data solutions.

March 26, 2024

Case Study: SaaS Co. Boosts Developer Productivity and Saves 45% on Datadog Costs

In this success story, learn how a major SaaS Software provider dramatically improved their software release schedule by resolving incidents faster and also saved 45% on Datadog costs for infrastructure.

March 6, 2024

Strengthening Digital Operations Resilience for the Financial Industry with Observo AI

Observo AI’s Smart Pipeline helps financial institutions meet new regulatory mandates by optimizing security data flows, improving threat detection, and ensuring compliance with evolving regulations like DORA and ISO 27001—without adding complexity or cost.

November 30, 2023

Observo.ai Achieves SOC 2 Type 2 Certification

We are thrilled to announce that Observo.ai has successfully attained SOC 2 Type 2 certification, a testament to our unwavering commitment to data security and privacy.

February 12, 2024

6 Benefits of an AI-Powered Observability Pipeline

An AI-powered Observability Pipeline like Observo.ai adds machine learning and artificial intelligence to elevate pipelines to become always on, ever learning and improving. They optimize telemetry, route it to the right tools, and dynamically improve security, relevant alerting, cost control, and compliance.

February 5, 2024

Why I Joined Observo AI - Brendan Dalpe

It's official! I'm excited to announce that I have joined Observo AI as the founding sales engineer. This is an amazing new opportunity for me to build a sales engineering organization from the ground up.

December 5, 2024

Large Enterprise Cuts Elasticsearch and SIEM Costs by 40% with Observo.ai

Explore how a leading AI software company slashed Elasticsearch observability costs, improved incident response, and bolstered security and compliance with Observo.ai.

November 24, 2023

Optimizing VPC Flow Logs - Part 1

In this blog, we will review common use cases and problems associated with storing and processing VPC Flow Logs.

November 21, 2023

Major Hospital System Cuts Azure Sentinel Costs by Over 50% with Observo.ai

Explore how Observo.ai helps leading hospital system cuts Azure Senitinel costs by more than half by reducing infrastructure and data storage by more than 80%.

January 30, 2024

Observo.ai Enables Enriched Data, Reduced Infrastructure Costs and Faster Incident Resolution for E-Commerce Giant on Splunk

Discover how a Global 1000 company achieved significant savings and enhanced operational efficiency with observo.ai.

November 17, 2023

Mastering Firewall Logs - Part 1

In this blog, we will review common use cases and problems associated with storing and processing firewall logs. In Part 2, we will explore how firewall log data can be optimized without losing any of their analytical value.

November 17, 2023

Mastering Firewall Logs - Part 2

In this blog, Part 2 in the series, we will explore how firewall log data can be optimized without losing any of their analytical value. In Part 1, we reviewed common use cases and problems associated with storing and processing firewall logs.

February 1, 2024

Breaking Through the Observability Wall: Scaling Your Telemetry Architecture

Introducing an intelligent observability pipeline, designed to classify data, making existing telemetry infrastructure and tooling scalable and efficient.

October 17, 2023

Out of Control: Managing log data costs in an economic downturn

Log management costs are growing, and it's a concern for companies, users, and developers trying to scale their organizations.

September 17, 2023

Optimizing VPC Flow Logs - Part 2

In this blog, we will show how Observo.ai can optimize the storing and processing VPC Flow Logs with our AI-Powered Observability Pipeline

February 1, 2023

Observability 101

Welcome to Observability 101 by Observo AI—a comprehensive 46-chapter guide covering observability, security, and DevOps. Got questions? This series is your go-to resource, answering everything you need to know.

January 2, 2024

Announcement: New Partnership With Panther Labs SIEM

Observo.ai is excited to share our new partnership with Panther Labs, a modern SIEM built for the cloud. This enables Panther users to leverage Observo.ai’s powerful telemetry data pipeline features to get data from almost any source, on-prem or cloud into Panther's SIEM.

May 7, 2024

Observability 101: What is an Observability Pipeline?

Observability pipelines parse and shape data into the right format, route it to the right SIEM and Observability tools, optimize it by reducing low-value data and enriching it with more context, and empower these teams to make optimal choices while dramatically reducing costs.

January 3, 2024