ANNOUNCEMENT - The community will be down for maintenace this Thursday August 13 from 12:00 AM PT to 02:00 AM PT. As a precaution save your work.
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel

Cognitive Release Note, July 2020: Cognitive Alert Fusion Early Access: User Experience Enhancements

449
Views
0
Helpful
1
Comments
Cisco Employee

User Experience Enhancements 

Screenshot 2020-07-29 at 12.14.50.png

As part of the Cisco Common User Experience program, we are working towards a more uniform user experience and terminology alignment across all Cisco security products. 

 

 

Cognitive Alert Fusion Early Access: new features added!

As part of our ongoing process to include new features that improve your user experience, we are introducing today three new aspects that you can use from our new web interface, enabling Alert Fusion Early Access.

Alert count view

You will be able to see at a glance the count of active alerts per risk tier. Only active alerts will be visible here, these are alerts with state equal to “New/Triage”, “Investigating” or “Remediating”.

Screenshot 2020-07-29 at 13.08.26.png

 

Alert filter by state

In the alerts tab, you will be able to filter alerts by state. You can choose one or more states, or all of them if you want to. Only alerts that have associated states will be displayed.

filter.png

 

Contextual anomalies

The anomalies view now contains additional information. Apart from the anomalies purely related with the threat at hand, now you can click on “Show contextual anomalies”. A menu will display with all the anomalies that have been found for that asset. 

Those extra indicators can help you piece a more complete view of the security posture of the asset, showing additional patterns or unusual behaviors detected for that asset.Screenshot 2020-07-29 at 12.27.33.pngClicking on “Hide contextual anomalies” will collapse that menu, and the additional anomalies will be hidden from view.Screenshot 2020-07-29 at 12.27.53.png

 

Enjoy our new capabilities and share your observations using the feedback button located in the lower-left side of the GUI.feedback.png

You can also give us feedback and debate with other customers and experts in the discussion forum that we have prepared for early access to Cognitive Alert Fusion.


Leveraging Cognitive Intelligence

Cognitive Intelligence capabilities are available to AMP customers with a compatible web proxy such as the Cisco Web Security Appliance, and all Stealthwatch Enterprise customers. Reach out to your account executive to learn how to turbocharge your existing cybersecurity investment with Cognitive.

1 Comment
Cisco Employee

I am looking forward to seeing this integrated into SecureX! It just seems to be the right place for any incident response work...