CHICAGO, IL SEPTEMBER 28-30, 2026

Built something smart? Share it!

criblcon 26 call for papers

The submission countdown is on!

Are you modernizing your data strategy? Whether you’re optimizing telemetry pipelines with Stream, managing collection at scale with Edge, searching across disparate data stores with Search, or building a tiered data strategy with Lake, we want to hear your story.

We want your authentic stories about how you're using Cribl in the real world. Show us how you've tackled massive data growth, prepared for AI, or empowered your IT and Security teams with greater choice, control, and flexibility.

Submit your papers no later than May 22, 2026

  • Turning “too much telemetry” into “exactly the right data” for the right tools.
  • Reducing ingest volumes while improving dashboard and alert quality.
  • Building better pipelines: from messy logs to clean metrics and traces.
  • Getting application teams on board with standardized logging practices. 


  • Better security from better insights: closing blind spots with enriched, routed data.
  • Meeting compliance mandates and long-term retention needs with tiered storage instead of tiered panic. 
  • Using Cribl Search with your SIEM or data lake to speed investigations.


  • Migrating SIEMs, observability stacks, or clouds without breaking workflows or losing historical context.
  • Cleaning up legacy syslog and agent sprawl with a vendor-agnostic pipeline.
  • Real-world patterns for hybrid, multi-cloud, or cross-cloud architectures. (AWS, Azure, GCP, on-prem, you name it).


Why share your story


CriblCon is where the community comes together to learn from real-world successes—not canned demos. Your wins (and yes, even your “it hurt but we learned a ton” moments) are invaluable to peers who are facing the same data chaos you’ve already navigated.


By speaking, you:

  • Showcase innovation: Highlight how you’re using Cribl to solve concrete IT and security challenges.
  • Build your personal brand: Position yourself as a thought leader in observability, security, and data strategy.
  • Influence the roadmap: Put your use cases in front of Cribl product and leadership teams.
  • Pay it forward in the community: Help others to be successful in their data endeavors!
  • Extend your reach: Selected stories may be featured in user groups, IRL events, webinars, and other programs across our global ecosystem.
  • Turning “too much telemetry” into “exactly the right data” for the right tools.
  • Reducing ingest volumes while improving dashboard and alert quality.
  • Building better pipelines: from messy logs to clean metrics and traces.
  • Getting application teams on board with standardized logging practices. 


  • Better security from better insights: closing blind spots with enriched, routed data.
  • Meeting compliance mandates and long-term retention needs with tiered storage instead of tiered panic. 
  • Using Cribl Search with your SIEM or data lake to speed investigations.


  • Migrating SIEMs, observability stacks, or clouds without breaking workflows or losing historical context.
  • Cleaning up legacy syslog and agent sprawl with a vendor-agnostic pipeline.
  • Real-world patterns for hybrid, multi-cloud, or cross-cloud architectures. (AWS, Azure, GCP, on-prem, you name it).


Not sure what to present?

Not sure what a good topic looks like? Here are some themes and examples to spark ideas (feel free to rename, remix, or combine):

Observability & IT Operations

  • Turning “too much telemetry” into “exactly the right data” for the right tools.
  • Reducing ingest volumes while improving dashboard and alert quality.
  • Building better pipelines: from messy logs to clean metrics and traces.
  • Getting application teams on board with standardized logging practices.


Security & Compliance

  • Better security from better insights: closing blind spots with enriched, routed data.
  • Meeting compliance mandates and long-term retention needs with tiered storage instead of tiered panic. 
  • Using Cribl Search with your SIEM or data lake to speed investigations. 


Modernization & Migrations

  • Migrating SIEMs, observability stacks, or clouds without breaking workflows or losing historical context.
  • Cleaning up legacy syslog and agent sprawl with a vendor-agnostic pipeline.
  • Real-world patterns for hybrid, multi-cloud, or cross-cloud architectures. (AWS, Azure, GCP, on-prem, you name it). 


Data Strategy & Cost Optimization

  • “What’s the best home for your data?”—how you decide what stays hot, what moves warm/cold, and how you manage recall. 
  • Sending metrics here, logs there, and everything else to low-cost, open storage—without losing access when it matters.
  • Query Everything Without Paying for Everything: Data Tiering for Agentic AI


AI & Agentic Telemetry

  • Making telemetry AI-ready: adding context, structure, and governance so AI/agent workflows actually work.
  • From Index-First to AI-First: Designing Telemetry That Agents Can Actually Use
    Human Tools vs. Agentic Telemetry: What We Changed in Our Stack for AI
  • Using Cribl Copilot or your own agents to multiply the productivity of your IT and Security teams.


Past CriblCons

Looking to see what was presented last year?

Take a look at the full library from previous years’ CriblCon:



Don't have your idea fully worked through yet? No worries, let us know what you’re thinking through the submission process and we’ll work with you to craft the story. You can also find us in the Cribl Community Slack (#criblcon).

See you at CriblCon 26.

Any questions? Reach out to criblcon@cribl.io!