compliances , security

Exabeam UI Field Notes

May 4, 2024

UI Applets and screen options

Sign-ins to – Threat Nation List

Settings

Data Insights

System Health

File a Ticket

Got an Idea?

What’s new

Documentation

Dark Mode on/off

Generate Support File

“user-id” Sign Out

About this version

xxx.x

Build Version

V.x.x.xx (xxx.x xx)

Service Assurance

Dashboard

Audit Reports

Compliance Manager

Settings

Alert fatigue

My Incidents in my queues

Notable Users         Notable Assets        Account lockouts     Service Accounts

Executive Users

Review Alerts

Snort Filters  Phishing               EDR Filter

x Filters

Current Filters         Saved Filters

Select filter

Save Filter Name

Sharing Permission

Private

Share with everyone

Share with select users

Description

Detections

Review Detection

Resolve        Dismiss         Escalate

Escalate

Create Incident

Incident Priority

Select the Incident Priority

Low

Medium

High

Critical

Cancel or Escalate

Settings

Data Insights

System Health

“user-id”

Sign Out

Connectivity from managed devices (VPN Vendor Connections)

Scalable remote access in minutes

Granular application access policy

Secure Controls (e.g. decryption, malware)

Posture controls

Unified Visibility of remote worker activity

Direct to SaaS application access

Role based access controls

CAB Cloud Lock

DLP

Use case continuously monitor cloud environments for sensitive data and information exposure

Example: PII, PCI Customer, regex etc.

Benefit: Protect corporate data in the cloud for compliance violations and unknown vectors of risk

User UEBA

Use Case, analysis user & entity behavior to detect account compromise and malicious insider activity

Example

Login anomalies upload / download behavior, geolocation, etc.

Benefit

Identify and protect against user threats including malicious insiders.

Exabeam Engine

>Ingest Log Feeds

HDFS – Hadup filesystem for message files

DB – Mongo DB

Admin Dashboards

Exabeam – System Monitoring

Threat and Security Monitoring

Exabeam – Risk Monitoring

Exabeam – Application Overview

Exabeam – Compliance Overview

Admin – QRadar Assistant Application

Admin – Threat and Security Monitoring

Qradar – Status and Health

User:

Admin

All

Domain Admins

Engineering

Exabeam

HelpDesk

Logs

SOC

WinCollect

Disabled

New Delete

Top of Form

User Role Name