Flexible Data Ingestion, Quick Scaling
Expo 2020 Dubai is expected to generate approximately one terabyte of data every day across a vast environment that includes over 8,000 access points, more than 100 security devices and multiple clouds.
With such a diverse environment and high volume of data, Expo needed a data platform that was up to the task. “Splunk proved to be a SIEM technology that is flexible, efficient and effective enough to handle the evolving demands of Expo’s cybersecurity environment,” says Eman Al Awadhi, Expo’s vice president of cybersecurity and resilience.
As Splunk seamlessly ingested data from a wide variety of sources, including bespoke technology solutions dedicated to Expo operations, the platform demonstrated its ability to handle both a high volume and demanding, constantly evolving environment. In addition, Splunk enabled the team to rapidly expand the scope of monitoring within a challenging timeframe.
“Splunk’s flexibility meant that we could easily resize the deployment to accommodate Expo’s changing needs during the pandemic, especially in terms of adapting to the one-year postponement of the event.” says Al Awadhi.