The OVERVIEW tab provides an initial view into the recent and most important user or network entity activities in the environment. Each panel shows either prioritized incidents for investigation or consolidated metrics reflecting potential risks to the enterprise.
*You can complete the tasks here.
- Begin an Investigation of High-Risk User Or Network Entity
- Investigate Top Alerts
- Filter Alerts
- Manage Top Alerts
To access this view, go to Investigate >OVERVIEW.
The Overview tab consists of the following panels:
|1||Top Risky User or Network entities panel|
|2||Top Alerts panel|
|3||Alerts Severity panel|
Top Risky User or Network Entity Panel
The High Risk User or Network entities panel lists the top ten high-risk user or network entity along with the user or network entity score.
In this example, the following table describes the high risk users panel elements.
Top Alerts Panel
The Top Alerts panel displays a list of alerts for the associated user or network entity, severity, alert creation date, and number of indicators. The list consists of the top ten alerts in the Last 24 Hours, Last 7 days, Last 1 Month and Last 3 Months.
The following table describes the top alerts panel elements.
Alerts Severity Panel
The Alert Severity panel graphically displays the number of alerts.
The following table describes alert severity panel elements.