Has your CISO ever asked for an overview of your SOC data?
Ever find yourself needing to take a step back to gain a broader perspective on the state of your environment? Or maybe found yourself in the middle of an investigation thinking that you might be missing something bigger?
The Microsoft Defender ATP reporting dashboard is here to answer your needs.
The threat protection reporting dashboard provides alert information over time, as well as aggregated threat protection views.
Knowing the trends and summaries in your organization can help identify where focused improvements can be made.
Let’s take some examples:
To address scenarios like the ones mentioned above, we’re happy to introduce the built-in reports in Microsoft Defender ATP, along with powerful filtering capabilities that let you target issues.
* If you’re using an external system (such as a SIEM or ticketing system) to manage (and resolve) alerts, you’ll be missing all of this out-of-the-box (and already paid for 😉) value. But don’t worry! We have made it super easy to sync the alerts state back to the portal – more details are available here.
While analyzing Microsoft Defender ATP alerts using built-in threat protection reports provide great insights into your environment, a vital question remains: “How do I track the health state of the Microsoft Defender ATP threat agents?”. A simple analogy to this would be like installing a robust alarm system in your home, but not turning on when you head out. Surely this is not a scenario we’d like to happen.
Once again, the Microsoft Defender ATP dashboard is here to the rescue.
We've continuously been enriching the built-in reports with summaries and trends over time to give you the best view of where improvements to your security estate can be made. Enhancements include:
These reports we’ve rolled out are largely driven by your feedback! So please continue to share them with us through the portal by clicking the frowny / smiley face – let us know what you like and works good for you and where we can improve and provide broader coverage to your needs.
Microsoft Defender ATP Team
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.