Cribl Supercharges Incident Response in Amazon Security Hub with Open Cybersecurity Schema Framework (OCSF) Support - Yahoo Finance

This is a paid press release. Contact the press release distributor directly with any inquiries. Cribl Supercharges Incident Response in Amazon Security Hub with Open Cybersecurity Schema Framework (OCSF) Support Cribl December 2, 2025 3 min read Cribl Enhanced capability in Cribl Stream transforms disparate security findings into a standardized format, accelerating threat correlation and resolution SAN FRANCISCO, Dec. 02, 2025 (GLOBE NEWSWIRE) -- Cribl, the Data Engine for IT and Security, today announced Cribl is a launch partner for the new AWS Security Hub that prioritizes critical security issues and helps companies respond at scale. Cribl Stream is introducing an enhanced capability in the dedicated extension for AWS Security Hub.This will make it easier for security operators (SecOps) to collect security findings, transform them into Open Cybersecurity Schema Framework (OCSF), and seamlessly send them to Cribl Lake for long-term retention and future incident response and query. One of the key features of this integration is the ability to view AWS Security Hub events directly within Cribl Search. This means you can leverage Cribl's powerful search and analytics capabilities to analyze Security Hub events alongside all your other security data. This centralized view will significantly reduce the time spent switching between different tools and improve your ability to correlate security incidents across your entire environment. This includes viewing the Security Hub findings using EventBridge. This enables the observation of Security Hub findings and the real-time outcomes of AWS logs, such as CloudTrail events. Additionally, Cribl can receive the AWS Security Hub findings and store them in Cribl Lake or other destinations. Cribl Search enables you to query events for more effective security investigations. "The ultimate goal for every security team is fast, precise incident response. But you can't get there when your data is spread across multiple tools and does not give you real-time views into these events,"said Abby Strong, Chief Market and Customer Officer at Cribl. "By allowing users to query data stored in Cribl Lake, other object stores, and the Security Hub findings, security professionals can quickly correlate past incidents with real-time events." The Power of OCSF for Amazon Security Hub The AWS Security Hub simplifies and unifies security operations through centralized management to protect cloud environments. This enhances the OCSF format by incorporating AWS-specific resource details, including Amazon Resource Names, tags, and configuration attributes, while maintaining universal OCSF compliance. This extensibility mechanism ensures standardized data interchange while accommodating specialized implementation requirements. Story Continues View Comments Terms and Privacy Policy Privacy Dashboard