Updated on 2024-11-06 GMT+08:00

Security Response Screen

Scenarios

There are always such scenarios as presentation, reporting, or real-time monitoring where you need to present the analysis results of SecMaster on big screens to achieve better demonstration effect. It is not ideal to just zoom in the console. Now, SecMaster Large Screen is a good choice for you to display the service console on bigger screens for a better visual effect.

By default, SecMaster provides a Security Response screen. You can view the overview of unhandled alerts, incidents, vulnerabilities, and baseline settings on one screen.

Prerequisites

You have enabled Large Screen. For details, see Purchasing Value-Added Packages.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  4. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.

    Figure 1 Workspace management page

  5. In the navigation pane on the left, choose Security Situation > Large Screen.

    Figure 2 Large Screen

  6. Click Play in the lower right corner of the monitoring statistics screen to access the page.

    This screen includes many graphs. More details are provided below.

Monitoring Statistics Overview

This screen displays the total number of unhandled alerts, incidents, vulnerabilities, and unsafe baseline settings.

Table 1 Security Response Overview

Parameter

Statistical Period

Update Frequency

Description

Unhandled Alerts

Last 7 days

5 minutes

Number of alerts to be handled in the last seven days.

To view details about the alert statistics, choose Threat Operations > Alerts in the current workspace.

Unhandled Incidents

Last 7 days

5 minutes

Number of open or blocked incidents in the last seven days.

To view details about the alert statistics, choose Threat Operations > Alerts in the current workspace.

Unhandled Vulnerabilities

Real-time

5 minutes

The number of unfixed vulnerabilities.

To view details about the vulnerability data, choose Risk Prevention > Vulnerabilities in the current workspace.

Unhandled Baseline Settings

Real-time

5 minutes

The number of items failed to pass the baseline inspection.

To view details about the baseline data, choose Risk Prevention > Baseline Inspection in the current workspace.

Figure 3 Monitoring Statistics Overview

Unhandled Alerts

The table lists information about top 5 unhandled threat alerts, including the alert discovery time, alert description, alert severity, and alert type.

These top 5 alerts are sorted by generation time with the latest one placed at the top.

Table 2 Unhandled Alerts

Parameter

Statistical Period

Update Frequency

Description

Unhandled Alerts

Last 7 days

5 minutes

Number of alerts that have not been handled for the last seven days.

To view details about the alert statistics, choose Threat Operations > Alerts in the current workspace.

Figure 4 Unhandled Alerts

Unhandled Incidents

The table lists information about the top 5 unhandled incidents, including the incident discovery time, description, severity, and type.

These top 5 incidents are sorted by generation time with the latest one placed at the top.

Table 3 Unhandled Incidents

Parameter

Statistical Period

Update Frequency

Description

Unhandled Incidents

Last 7 days

5 minutes

Number of incidents that have not been closed in the last seven days.

To view details about the alert statistics, choose Threat Operations > Alerts in the current workspace.

Figure 5 Unhandled Incidents

Unhandled Vulnerabilities

The table lists information about the top 5 unhandled vulnerabilities, including the discovery time, description, type, severity, and number of affected assets.

These top 5 vulnerabilities are sorted by discovery time with the latest one placed at the top.

Table 4 Unhandled Vulnerabilities

Parameter

Statistical Period

Update Frequency

Description

Unhandled Vulnerabilities

Last 7 days

5 minutes

The number of unfixed vulnerabilities.

To view details about the vulnerability data, choose Risk Prevention > Vulnerabilities in the current workspace.

Figure 6 Unhandled Vulnerabilities

Unhandled Baseline Settings

This table lists information about the top 5 unhandled unsafe baseline settings, including the discovery time, description, check method, and total number of vulnerable resources.

These top 5 unhandled baseline settings are sorted by discovery time with the latest one placed at the top.

Table 5 Unhandled Baseline Settings

Parameter

Statistics Cycle

Update Frequency

Description

Unhandled Baseline Settings

Last 7 days

5 minutes

The number of items failed to pass the baseline inspection.

To view details about the baseline data, choose Risk Prevention > Baseline Inspection in the current workspace.

Figure 7 Unhandled Baseline Settings