Although Security Analytics has five pre-configured roles, you can add custom roles. For example, in addition to the pre-configured Analysts role you can add custom roles for AnalystsEurope and AnalystsAsia.
|Administrators||Full system access|
|Operators||Access to configurations but not to data|
|Analysts||Access to data but not to configurations|
|SOC_Managers||Same access as Analysts plus additional permission to handle incidents|
|Malware_Analysts||Access to malware events only|
Depending on the user role, you can set the following access permissions to access the Warehouse Analytics module:
- Define Jobs
- Delete Jobs
- Manage Jobs
- View Jobs
Note: You must enable all of these permissions for a user role to be able to define, delete, manage and view jobs.
For a detailed list of permissions see Role Permissions in System Security and User Management Guide.
For adding roles and assigning permissions, you must use the Roles tab. To navigate to the Roles tab, do the following:
- In the Security Analytics menu, select Administration > Security.
The Administration Security view is displayed.
- Click the Roles tab.
The Roles tab is displayed, as shown below:
- In the Roles tab, click in the toolbar.
The Add Role screen is displayed, as shown below:
- In the Role Info section, enter the following information for the role:
- (Optional) Description
- In the Permissions section, do the following:
i. Select the Reports module that the role will access.
ii.Select each permission the role will have.
- Repeat the step 4 until you select all the permissions that must be assigned to the role.
- Click Save.
You can now assign the new role to users.