How Trellix Cut Log Parsing Time from Days to Minutes with LangGraph
Trellix, a global cybersecurity firm serving 40,000+ enterprise customers, built Sidekick — an internal agentic platform powered by LangGraph and LangSmith — to automate log parsing and security integration development. What previously took engineers 2–3 days per request now takes minutes, and plugin development that spanned multiple days now completes in a single afternoon.
Tools & Technologies
1AI Categories
Challenge
Trellix engineers spent 2–3 days per customer request manually parsing unfamiliar log formats and developing cybersecurity integrations, creating significant backlogs and slowing resolution times across the support organization.
Solution
Trellix built Sidekick, an internal agentic platform using LangGraph for modular workflow orchestration with human-in-the-loop controls, and LangSmith for observability and systematic agent performance evaluation before production deployment.
Full Story
Trellix protects more than 40,000 organizations worldwide with AI-native threat detection and extended detection and response (XDR) capabilities. Behind those customer-facing capabilities, Trellix's own engineering teams faced a growing operational burden: thousands of incoming customer requests for cybersecurity integrations and log parsing services, each requiring an engineer to manually interpret log formats, write parsing code, and manage back-and-forth communications. Each request consumed 2–3 days of engineering time and built a backlog that frustrated both customers and internal teams.
Access 451+ AI use cases, 424+ tools, and adoption signal rankings.