Analyst Console

The Analyst Console is the main SIEM interface available to all eligible subscriptions. Tailored for security analysts, threat hunters, and incident responders, It provides access to your entire array of security event data and features a variety of dashboards and visualizations.

To access the console, navigate to https://console.threatdefence.io and log in with your email and password.

Here are some examples of the information available via the Analyst Console:

• Real-Time Threat Monitoring: Observe live data streams of security events across your network, enabling immediate identification and investigation of suspicious activities.

• Incident Management: Track and manage security alerts and incidents from detection through resolution. This includes the ability to assign incidents, document response actions, and close incidents upon resolution.

• Advanced Analytics: Utilize sophisticated analytics tools to dissect and analyze security events. This can help identify trends, patterns, and anomalies within your security data, facilitating proactive threat hunting.

• Dashboards: Access dashboards that provide a detailed insights into your security events and posture. These dashboards can be tailored to highlight key metrics and data points relevant to your specific security concerns.

• Search and Investigation Tools: Employ powerful search capabilities and investigation tools to delve into historical security data. This enabled in-depth analysis of historical events and helps uncover the root cause of security breaches.