"In Google SecOps, how is the priority of an alert determined? Would like to understand the exact logic behind the priority calculation."
Question
How does Google SecOps assign alert priorities
+16Hey
Case priority is determined by the highest priority of the Alert within that Case. Alert priority is extracted from the metadata of the 3rd Alert or it’s embedded as part of the Rule for SIEM detections.
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.