The Risk Events chart shows the distribution of risk levels in a given time period. The risk levels are determined by the selected risk policies.
To access the risk events dashboard, go to
.Click the chart to view drill-down information.
The drill-down table shows more detailed information about each high risk event, including:
- IP address
- Target application
- IP reputation.
Only events that have triggered a specific risk model, such as geovelocity anomaly, or have
an aggregated risk score of HIGH
are shown. The aggregated risk score is
determined by the selected risk policies in the Policy Name list.
Scroll to the right to see additional columns. For use of the filtered search bar, see Filtered searching.
For a description of the table columns, see Monitored risk data.
Click a column header to sort the results by that value. Results are sorted by the Time column by default, with the most recent entries listed first.
Filters:
- To filter risk policies to be included in the map, use the Policy
Name list.
You can select multiple policies.
- To limit the results to a specific risk level, use the Risk Level list.
- To limit the results to a specific risk model, use the High Risk Model list.
- To filter operating systems to be included in the chart, use the OS list.
- To limit the results to a specific country, use the Country list.
- You can use the slider to show data from the current day, previous week, previous
month, or previous six months.
To show data from a custom time period, use the Date Range filter.