You are investigating a series of incidents that occurred in the OT network over past 24 hours in FortiSIEM. Which three FortiSIEM options can you use to investigate these incidents? (Choose three.)
The INCIDENT tab provides five views for incident data:
Overview: This view provides a top-down view of the various types of incidents and impacted hosts. List: This view enables the user to search incidents and take actions. Risk: This view organizes impacted entities (hosts, users) by risk, based on the triggered incidents. Explorer: This view helps users to correlate an actor's IP, host, and user across multiple incidents, without creating multiple reports in separate tabs. Attacks: This view classifies security events detected by FortiSIEM into MITRE ATT&CK categories.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
azjlmpang
2 months, 2 weeks agoSpippolo
10 months, 2 weeks agoJbeaulieu
1 year, 1 month ago