About

Hi, I’m Colin Blackman — I work in corporate cybersecurity at Dell Technologies, where I lead engineering efforts for our security platform teams.

Over the years I’ve spent a lot of time on the operational side of enterprise security: building scalable detection and response platforms, automating controls coverage, and aligning engineering outcomes with risk reduction.

This blog is my personal space to document what I’m learning as I dig deeper into Cribl and Elastic — two platforms that are transforming how we move, enrich, and analyze security and observability data.

Here you’ll find:

• Hands-on experiments and notes from building Cribl Stream and Edge pipelines
• Explorations of Elastic Stack tuning, dashboards, and search design
• Reflections on bridging platform engineering and security operations at scale

It’s equal parts learning log, reference library, and sandbox for ideas.
If you’re on a similar path, I hope these notes spark something useful for you too.