Skip to content

Getting started with portal

Incident Portal User Guide

Welcome to our Incident Portal User Guide. This documentation is designed to help you navigate and use the Incident Portal efficiently. The portal is intended for clients to report and manage incidents that affect our services/products.

Objectives

This guide will provide you with all the information you need to:

  • Access and navigate the incident portal
  • Report new incidents
  • Track and manage reported incidents
  • Communicate with the support team
  • Utilize advanced features of the portal

Incident Portal Section Overview

Upon logging in, you will be greeted with the dashboard. Key sections include:

Screenshot example

  • Live Query: This section offers a consolidated view of your live query tickets. It allows you to observe the progress and engage with our security team regarding the analysis of your SIEM data.

  • Incidents: This central area displays all security incidents relevant to your environment—those you've reported and those detected by our SIEM system. It provides a comprehensive view of your security posture, with updates and details on each incident to keep you informed about every aspect of your network's security.

  • Support Requests: Here, you'll find an overview of your existing support requests. This portion of the dashboard is designed to give you visibility into the status and progression of the support you've requested, ensuring you are kept abreast of our team's efforts to assist you.

  • Reports: This section is your archive for monthly security reports. It is exclusively for accessing your prepared monthly summaries, offering insights and overviews of the incidents and security activities without the functionality for report creation or export.


    Screenshot example

Incidents

  • Report a Security Incident: Utilize this form to initiate an investigation into any suspicious activities detected within your environment. It's the first step in activating our security response to protect your assets.

  • Live Query: Submit queries here to obtain almost real-time logs from your SIEM system. We offer a suite of predefined queries for common needs. For specialized inquiries or custom report requests, please contact us directly.


Screenshot example

Requests

  • Onboard Log Sources: If you need to set up security monitoring for new assets in your environment, use this form to initiate the process. Our team will assist in configuring your log sources to ensure comprehensive surveillance.

  • Sweep for IOCs: This request form is dedicated to scanning for Indicators of Compromise (IOCs) within your system. Provide the necessary parameters, such as comma-separated values, to tailor the sweep to your needs.

  • Request a Report: For detailed insights over a specified time frame, fill out this form to request a report. Our reports are crafted to provide you with a thorough analysis of the security posture and incident handling within your purview.

  • Request a New Account: Need additional access for new members of your team? Complete this form to create a new account within our system. Ensure you have the necessary authorization as per your organization's policies.

  • Support Request: For any miscellaneous inquiries or assistance outside the listed options, please use this support request form. Our team is ready to address any questions or support you may need.