Security Incident Management dashboard

  • 릴리스 버전: Australia
  • 업데이트 날짜 2026년 03월 12일
  • 소요 시간: 4분

    • With this dashboard, security managers can easily track the volume, performance and progress of security incidents from initial analysis/detection to containment, eradication, and recovery.

    그림 1. Overview tab
    Open security incidents and basic security indicators on the Security Incident Management dashboard
    그림 2. Open security incidents tab
    Security Incident Management tab that shows open incidents
    그림 3. New security incident tab
    Tab showing new security incidents
    그림 4. Closed security incidents tab
    Tab showing number of closed incidents and average resolution time
    그림 5. Security Incidents Daily tab
    Daily view of security incidents. Same format as 7-day and 28-day.

    The 7d Running and 28d Running tabs follow the format of the Daily tab.

    End users and roles

    End user and goal Required role Benefits
    Security Response Manager: Needs clear visibility into the overall state and volume of security incidents associated with applications and services. sn_si.manager Can review the overall security posture with the ability to adjust the members of assignment groups.
    Security Response Administrator: Needs to pinpoint areas of concern quickly and have full control over all Security Incident Response data while administering territories and skills, as needed. sn_si.admin Can adjust risk calculation parameters to ensure vulnerable items that are most pertinent to the organization are being addressed first.
    Security Response Analysts: Need to quickly prioritize which vulnerabilities to focus on based upon criticality to the organization. sn_si.analyst Tier 1 and 2 security analysts work on security incidents. They can create and update security incidents, requests, and tasks, as well as problems, changes, and outages related to their incidents.

    Security Incident Management indicators

    The Security Incident Management dashboard presents the following key performance indicators:
    New Security Incidents
    A chart of the number of new security incidents.
    Open Security Incidents
    A chart where you can compare the number of open security incidents, the number of open security incidents not updated in the last 30 days, and the number of open security incidents not updated in the last 5 days.
    Basic Security Indicators
    The last 6 days of scores of the number of new security incidents, the number of closed security incidents, the security incident backlog growth, and Number of open security incidents indicators.
    New Security Incidents by Priority
    The number of new security incidents broken down by priority.

    Breakdowns

    The following breakdowns apply to the indicators on the dashboard:
    • Security Group
    • Security Incident Age
    • Security Incident Category
    • Security Incident Priority
    • Security Incident State