Alerts notify you about important events, such as a change in your security posture score, operational anomalies, and threat indicators. The administrator or tenant administrator can enable alerts from the Security IQ dashboard. The alerts are triggered every 24 hours, and an email is sent to the administrator or tenant administrator only when there is a change in data or activity.
Procedure
-
From the navigation pane, go to Monitoring > Security IQ.
The Security IQ dashboard page appears.
-
In the upper-right area of the page, click alert icon
, and then enable any of the following alerts:-
Operational anomalies: Notifies you of anomalous events that are indicated by a change in data or activity.
-
Security posture score: Notifies you of changes in the security posture score.
-
Threat Indicators: Notifies you of anomalous file system activity in the endpoint servers or file servers.
-