How Trellix Cut Log Parsing Time from Days to Minutes with LangGraph

Trellix, a global cybersecurity firm serving 40,000+ enterprise customers, built Sidekick — an internal agentic platform powered by LangGraph and LangSmith — to automate log parsing and security integration development. What previously took engineers 2–3 days per request now takes minutes, and plugin development that spanned multiple days now completes in a single afternoon.

Outcomes

Days → minutesLog parsing time
Multiple days → ~1 afternoonPlugin development time

Tools & Technologies

1L
LangSmith
Observability and evaluation platform for LLM applications, enabling tracing, debugging, and performance benchmarking.
2L
LangGraph
Graph-based orchestration framework for building stateful, multi-step AI agent workflows with human-in-the-loop support.

AI Categories

Challenge

Trellix engineers spent 2–3 days per customer request manually parsing unfamiliar log formats and developing cybersecurity integrations, creating significant backlogs and slowing resolution times across the support organization.

Solution

Trellix built Sidekick, an internal agentic platform using LangGraph for modular workflow orchestration with human-in-the-loop controls, and LangSmith for observability and systematic agent performance evaluation before production deployment.

Full Story

Trellix protects more than 40,000 organizations worldwide with AI-native threat detection and extended detection and response (XDR) capabilities. Behind those customer-facing capabilities, Trellix's own engineering teams faced a growing operational burden: thousands of incoming customer requests for cybersecurity integrations and log parsing services, each requiring an engineer to manually interpret log formats, write parsing code, and manage back-and-forth communications. Each request consumed 2–3 days of engineering time and built a backlog that frustrated both customers and internal teams.

Access 451+ AI use cases, 424+ tools, and adoption signal rankings.

Similar Cases

1K
How Klarna’s AI Assistant Resolves 80% of Queries in Under 2 Minutes
Klarna
80%Reduction in average customer query resolution time
2CR
How C.H. Robinson Automates 5,500 Shipments Daily with LangChain AI Agents
C.H. Robinson
~5,500Orders automated daily
3C
How CACI's DarkBlue Uses Elasticsearch and Claude to Accelerate Dark Web Criminal Investigations
CACI
Seconds per query regardless of data age or volumeCriminal investigation acceleration
4B
How BigID Uses Elasticsearch to Accelerate Data Queries 120x at Scale
BigID
120xQuery speed improvement
5C
How Cogent Resolves Security Threats 97% Faster with Claude AI Agents
Cogent
97% fasterVulnerability Resolution Speed
6M
How monday Service Uses LangSmith and LangGraph to Build Reliable AI Service Agents
monday.com
8.7x fasterEvaluation speed improvement
7E
How ECI Uses Elastic to Protect 130 Financial Services Clients Against Cyber Threats
ECI
130 in 18 monthsClients onboarded on SIEM platform
8B
How Bubble Doubled User Activation and Lifted AI Satisfaction 30% with Claude
Bubble
2xFirst-week user activation rate
9S
How Stairwell Uses Claude to Simplify Cybersecurity Threat Analysis
Stairwell
40,000+ charactersSecurity data processed per Claude request
10A
How Artemis Cuts Security Incident Resolution Time by 96% with Claude
Artemis
96%Reduction in mean time to resolution
See all use cases →