Privileged Investigator - Administrator Guide - Cortex XDR - Cortex - Security Operations

Cortex XDR Documentation

Product
Cortex XDR
Creation date
2024-03-06
Last date published
2024-12-02
Category
Administrator Guide
Abstract

Learn more about the Cortex XDR predefined user role called Privileged Investigator.

The Privileged Investigator role is used to view and triage alerts, incidents, and rules, view endpoint profiles and policies, and Analytics management screens.