"In Google SecOps, how is the priority of an alert determined? Would like to understand the exact logic behind the priority calculation."
Page 1 / 1
Hey
Case priority is determined by the highest priority of the Alert within that Case. Alert priority is extracted from the metadata of the 3rd Alert or it’s embedded as part of the Rule for SIEM detections.
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.