See a dynamic overview of the current status of your tenant and your security operations processes on the XSIAM Command Center.
The XSIAM Command Center dashboard provides a dynamic overview of your security operations processes, and supports drilldowns to additional dashboards and dedicated pages. The dashboard gives a visualization of the current status of your tenant and its activity during the selected time frame. Click on any element to drill down to dashboards or pages displaying data that is filtered by your selection.
In addition, click on Cortex Agentic Assistant to open a dashboard detailing how Cortex XSIAM uses AI Agentic technology in your environment. For more information, see Cortex Agentic Assistant.
The XSIAM Command Center includes incoming data, cases, and issues, and key performance indicators. The following table describes each of these sections:
Section | Details |
|---|---|
Incoming data |
Click on any of these items to explore your Data Inventory. Breakdowns of data ingestion by data source, including ingestion rates, trends, and prevented events, are displayed. |
Cases and issues |
Click on any of the case metrics to open the Cases Overview , showing a breakdown of your cases. You can also click on the concentric circle to see a live feed of Cortex XSIAM activity on the Dynamic View. |
Key performance indicators |
Click on the key performance indicators to drill down to dedicated pages for further investigation. You can also click Start Investigation to open the Cortex Agentic Assistant with useful prompts to aid you in the investigation process. The trend percentages for the key performance indicators are calculated by comparing the totals from the current time frame with the totals of the previous time frame. An arrow indicates whether the rates are rising or falling in comparison to the previous time frame's total. |
From the XSIAM Command Center, you can drill down to the following dashboards: