Kibana Security Alerts - Automatic User Assignment #183891

willem-dhaese · 2024-05-21T08:02:10Z

See https://discuss.elastic.co/t/alert-triage-enhancement-ideas

It would be awesome if Kibana could automatically assign an alert to a user once they acknowledge or close it. This would streamline our process and save a lot of time. Currently too many click are needed. Select the alerts (multiple times if more then 100...., see #183889), Assign the alert, Acknowledge the alerts, ...

This feature could really save our SOC analists a lot of time.

@yctercero
@Kseniiaign

"Team:Detection Engine"
"Team:Detections and Resp"

elasticmachine · 2024-05-21T08:03:45Z

Pinging @elastic/security-detection-engine (Team:Detection Engine)

elasticmachine · 2024-05-21T08:52:11Z

Pinging @elastic/security-detections-response (Team:Detections and Resp)

botelastic bot added the needs-team Issues missing a team label label May 21, 2024

approksiu added the Team:Detection Engine Security Solution Detection Engine Area label May 21, 2024

botelastic bot removed the needs-team Issues missing a team label label May 21, 2024

approksiu assigned yctercero and approksiu May 21, 2024

approksiu added the Team:Detections and Resp Security Detection Response Team label May 21, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Kibana Security Alerts - Automatic User Assignment #183891

Kibana Security Alerts - Automatic User Assignment #183891

willem-dhaese commented May 21, 2024

elasticmachine commented May 21, 2024

elasticmachine commented May 21, 2024

Kibana Security Alerts - Automatic User Assignment #183891

Kibana Security Alerts - Automatic User Assignment #183891

Comments

willem-dhaese commented May 21, 2024

elasticmachine commented May 21, 2024

elasticmachine commented May 21, 2024