I need to understand how the event management flow works in order

1. All Events
2. Event rule
3. Event field mapping
4. Alert correlation
5. All Alerts
6. Alert Management rule
7. Incident

My understanding is 

all event > event rule > event field mapping > alert correlation > all alerts > alert management rule > Incident.

Because in my instance alert execution takes minimum 2mins to maximum 4mins to create a INC. I am in use case of why delay in alert executions

Event Created Time :

Due to requirement SLA is attached

Alert Execution takes 3 minutes delay

Thanks in Advance

Regards

Mohan