See a breakdown of your cases on the Cases Overview.
The Cases Overview provides a breakdown of your cases, including MITRE ATT&CK tactic details, automation suggestions, and top resolving assignees. You can click different elements on the dashboard to link to dedicated pages for further investigation.
You can access the Cases Overview from the XSIAM Command Center by clicking on any of the case metrics. The Cases Overview displays the following information:
Section | Details |
|---|---|
Automation suggestions | Displays the number of cases that could have been automated, and the number of playbook recommendations. |
Resolved cases | Displays the number of resolved cases in the time frame, and provides a breakdown of top resolving assignees. |
Open cases | Displays a breakdown of open cases by severity, and details of the MITRE ATT&CK tactics identified in the cases. |
Key performance indicators | Displays information about data ingested during the time frame, and the number of assets affected by the cases. The ingestion rate trend percentage is calculated by comparing the ingestion total of the current time frame with the ingestion total of the previous time frame. An arrow indicates whether the rates are rising or falling in comparison to the previous time frame's total. |