A major North American energy company, which develops and operates critical energy infrastructure across Canada, the United States, and Mexico. Focused on three primary business areas: natural gas pipelines, liquid pipelines, and power generation.

The company sought a vendor to help it strengthen its security posture and regulatory compliance while reducing SIEM costs. Responsible for critical global pipeline systems and power facilities, it faced a growing challenge. It needed to capture and analyze highfidelity DNS telemetry across a wide network of Windows servers as efficiently as possible.

The company handles large volumes of Windows DNS Analytical logs generated via Event Tracing for Windows (ETW). So, it needed a scalable solution to extract meaningful security signals, filter out noise, and feed actionable data into Palo Alto Cortex XSIAM. All while maintaining compliance and operational integrity.

Learn how NXLog helped to create a unified, real-time view of DNS communications, optimize SIEM usage and enabled advanced threat detection using previously inaccessible DNS data.