Security Insights
- Juan Tomás Alonso Nieto (Unlicensed)
Security Insights is a Devo vertical application designed to query and present IT security data in a way that supports threat detection, alert investigation, and network monitoring. The application is fed by data stored in firewall, IDS, Active Directory, proxy, and web server data tables. You only need firewall server data to set up and activate this application, but you will get the most out of the application if your Devo domain also collects data from the other types of data sources.
Getting started
Security Insights was designed not only to provide a detailed network security dashboard but also to detect threat conditions and trigger alerts. The three main steps required for Installing Security Insights include setting up the security-related alerts in Devo, activating the application in your domain, and granting access to the application to your domain users.
You can tune and customize the application either during installation or after you've been using it for a while. Read about how you can adapt it in Configuring Security Insights.
Using Security Insights
The application is full of online help, but you can also learn more about the contents of the application's tabs in Navigating Security Insights.