I am trying to perform some predictive analysis for store requirements given the daily ingress and number of devices.

In my previous SIEM, I was able to generate a report that gave me avg data per device, and I was able to multiply that by the number of additional hosts to calculate my storage needs.

If there anything in EventLog Analyzer that can provide that data? If not, what tables could I pull to collect that data. Or would I just write a powershell to filter files in the installation folder for yesterday's date, sum them, and then divide by the number of files?

What options do I have to understand my daily growth? Not on a per device level, but of the entire environment.