Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

For this release, we are focused on new improvement functionalities as well as features in Security Operations.

New filtering options are added to the triage page to help user functionality when selecting multiple priorities to focus on, as well as performing bulk changes to alerts. We are excited about some of these changes as they not only improve the overall interaction that users have with SecOps but also improve the effectiveness of how it performs.

More improvements are planned in future releases to help improve workflows while enabling analysts with the right capabilities to action events.  

Impact calculation

The configuration of the impact is displayed in the Settings window and can be enabled or disabled to improve the overall performance:

Learn more here

Multiple priority selection

This function enables you to select two or more priorities at the same time to filter the alerts:

Learn more here

Bulk changes in alert status 

The general idea is to enable you to change the status of a given alert group which includes the Add to Investigation as well as Change Status actions. It is also to change to any other given status changes available from the drop-down menu of the alert type. 

Learn more here

Deletion of SightingDB

Sighting DB is designed to scale writing and reading a count of attributes, tracking when it was first and last seen. Given the limited usage of this particular enrichment, it has been deprecated and is no longer shown in settings. 

  • No labels