Just Published! Threat Report: Exposing Malware in Linux-Based Multi-Cloud Environments | Download Now

Managed Detection: Will the Managed Detection Team Still Review an Alert if it has been Dismissed?

Managed Detection: Will the Managed Detection Team Still Review an Alert if it has been Dismissed?

Environment

  • CBC Web Console: All Versions
  • Managed Detection: Optional Add-on Subscription

Question

Will the Managed Detection team still review an alert if it has been dismissed from the Alerts page?

Answer

Regardless of the alert Severity, if the alert has been dismissed within two hours of it entering the Managed Detection console then it will not be reviewed nor triaged by the Managed Detection team.  It is assumed that the customer in question has already reviewed the alert at that point and will take action.

Additional Notes

If an alert has a Severity that is less than 8 then the alert may be reviewed and triaged some time after the two hours depending on alert volume within the console.

Related Content


Was this article helpful? Yes No
No ratings
Article Information
Author:
Creation Date:
‎09-09-2020
Views:
364
Contributors