HealthcareSecurity Operations

How Doctolib Built an In-House SOC with Elastic Security, Cutting False Positives by 50%

Doctolib, Europe’s leading e-health platform connecting 90 million patients with 400,000 healthcare professionals, replaced an outsourced OpenSearch-based SOC with an in-house security operations center built on Elastic Security. The migration cut false positives by 50%, extended data retention from one month to one year, and enabled Doctolib to manage 12 times more log data while reducing cost per terabyte by 83%.

Outcomes

50%Reduction in false positives
12xIncrease in data managed
1 month to 1 yearData retention period extended
83%Reduction in cost per terabyte

Tools & Technologies

1ES
Elastic Security
SIEM and security analytics platform for threat detection, investigation, and response at scale.

AI Categories

Challenge

Doctolib’s outsourced SOC on OpenSearch generated frequent false positives, limited data retention to one month, and couldn’t scale cost-effectively with the platform’s growth—leaving a 90-million-patient e-health platform underprotected and analysts overloaded with noise.

Solution

Elastic Security was deployed as Doctolib’s in-house SIEM, centralizing log collection across all data sources, applying machine learning for automated threat detection, and running on AWS to enable elastic scaling of both data volume and retention period.

Full Story

Doctolib operates as the dominant digital health platform in Europe, serving 90 million patients and 400,000 healthcare professionals across France, Germany, Italy, and the Netherlands. As a platform handling sensitive patient data under strict healthcare regulations, the security demands are acute—and the consequences of a breach extend beyond financial loss into patient safety.

Access 451+ AI use cases, 424+ tools, and adoption signal rankings.

Source

Similar Cases

1ES
How Epic Systems Uses Claude Code to Bring AI Development Beyond Engineering
Epic Systems
Over 50%Claude Code usage from non-developers
2I
How InpharmD Uses Pinecone & RAG to Boost Clinical Query Accuracy by 70%
InpharmD
80%Data Storage Cost Savings
3H
How Humana Uses IBM Watson to Handle 7,000+ Voice Calls Daily at One-Third the Cost
Humana
~66% (1/3 cost)Cost Reduction
4A
How AstraZeneca Accelerates Drug Discovery with GitHub Copilot and Actions
AstraZeneca
40%Developer velocity increase with GitHub Copilot
5A
How ArisGlobal Improved Life Sciences App Reliability with Datadog
ArisGlobal
Diagnostic file collection time reduced from 45–60 minutes to near-instant
6M
How Mediq Scaled Automation Across Europe with a UiPath Center of Excellence
Mediq
55Active automations in production
7IH
How Intermountain Health Reduces Clinician Burnout 27% with Microsoft Dragon Copilot
Intermountain Health
27% per appointmentNote Time Reduction
8CH
How Carta Healthcare Uses Claude to Automate Clinical Data Abstraction
Carta Healthcare
66%Reduction in clinical data abstraction time
9AH
How AGS Health Routes Healthcare Documents Within 24 Hours Using UiPath Agentic Automation
AGS Health
within 24 hoursDocument routing time
10BL
How Bank Leumi Cuts Security Detection Time 60% with Elastic
Bank Leumi
-60%Log detection and analysis time
See all use cases →