In the fast-paced world of cybersecurity, Exabeam is leveraging ClickHouse Cloud to enhance its security operations platform, focusing on reducing the mean time to detection (MTTD) of threats. By utilizing AI and machine learning, Exabeam's platform is built on four key pillars—ingestion, threat detection, investigation, and response—aiming to streamline the process from data collection to actionable insights. At ClickHouse's Open House user conference in May 2025, Exabeam's engineering team detailed how they optimized their system to handle 1.2 million events per second across 10 global regions, managing over 1 trillion events and using strategies like compute-compute separation and schema consolidation to improve efficiency. This architecture supports real-time analytics, enabling rapid detection and response to threats while keeping compute costs under control. By optimizing their ingestion pipeline and adjusting their indexing approach, Exabeam has successfully decreased latency and memory usage, making their analytics engine both fast and scalable, ultimately aiding security teams in quickly addressing potential threats.