SecOps Use CasesΒΆ

Select a use case to learn more:

Customer Need

Use Case

Workflows

Continuously monitor critical services for anomalous usage

Service behavior monitoring

Detecting anomalies and deviations

Monitor network activity to identify malware-infected hosts

General malware detection

Alerting on malware activity

Drill into numerous data points to examine device behavior and pinpoint Indicators of Attack (IoAs)

Threat hunting
Using host index to identify malicious IPs
Reviewing Alarm Monitor alerts for suspicious hosts
Investigating off-hour network activity
Identifying exfiltration outside business hours

Monitor network activity to detect lateral movement behavior

Lateral movement detection
Investigating lateral movement alerts
Uncovering data exfiltration

Enhance incident response procedures through added visibility and UI-driven workflows

Incident response
Responding to Alarm Monitor security alerts
Scrutinizing an infected host