How Corelight identified a years-old network issue in 30 minutes

A global cruise line operating across maritime and resort environments was struggling with inconsistent detections, alert overload, and limited visibility from its existing NDR platform.

In this customer story, Jay Miller from Corelight walks through how the organization evaluated its network visibility strategy, identified long-standing gaps in detection coverage, and improved investigation workflows across a complex environment with intermittent connectivity at sea.

The discussion covers:
➡️ Network visibility challenges in maritime environments
➡️ Alert fatigue and inconsistent detections
➡️ Identifying hidden network issues during testing
➡️ Reducing SIEM storage pressure
➡️ Retaining network evidence during satellite outages
➡️ Investigation efficiency and operational workflows

For security teams operating distributed or bandwidth-constrained environments, this conversation highlights the operational value of network evidence and visibility during real-world investigations.

#NDR #NetworkSecurity #ThreatDetection #ThreatHunting #SOC #Cybersecurity