SearchInform Risk Monitor: Work with Reports on Incidents Made Easy
03.12.2024

The new feature enables security officers to automatically structure data and create reports on the detected information security violations.

SearchInform Risk Monitor from now on allows creating reports on incidents without interrupting the process of monitoring in AnalyticConsole. The system automatically exports all the required details related to the incidents, including data on the involved parties, and visualizes it in the illustrative dashboards. This simplifies routine task of security auditors on the report preparation and helps present results to the executives supported by real incidents and compiled in a reader-friendly way.

To create a report, just select the command Create a new task in Task Management on the context menu of any incident and select the type of task Report for the manager. The report can combine several incidents by various attributes, for example: 

•    Incidents detected within the specified period
•    Incidents in the specified data channels
•    Incidents with the specified types of violations
•    Incidents involving specified users etc. 

It’s possible to add new incidents to the report by choosing the task that was created before. Working with the task in Task Management, information security specialist can extend the description of the whole list of incidents or specific incident, as well as evaluate its severity. 

SearchInform Risk Monitor automatically structures data and creates an archive during export. The archive includes a PDF file and folder with incident evidence. In the PDF file, there are the list of incidents added to the report, statistics (number of violations in each security category), details on the persons involved, and links to the evidence from the folder. The evidence can be, for example, files that users attempted to leak over any data channel or emails with confidential data. The report can be enriched with additional details such as efficiency of users involved in the incidents, details on their working hours and many other details. 

 “ The new format of report is especially useful if you need to promptly provide information on incidents to the executives and colleagues. Data in the report is presented in the illustrative and laconic way, making it easy to understand what happened and how exactly. The evidence will facilitate efficient and quick decision-making. This simplifies communication with representatives of other departments. This way, they can have their finger on the pulse of security state and know that the objectives are consistent and work processes are performed efficiently. What’s more, the work is automated: there’s no need to structure and compile data manually. Just export the report, and it can be given to the management right away. All in all, everything can be done quickly and efficiently. The functionality is useful for both onboard information security specialists and outsourcing security analysts,” SearchInform Leading Analyst Sergio Bertoni said.

The feature is available in the desktop version of AnalyticConsole and WebAnalytic interface via any browser.

Letter Subscribe to get helpful articles and white papers. We discuss industry trends and give advice on how to deal with data leaks and cyber incidents.