If the nature of the data received by KUMA or the generated correlation events and alerts indicate a possible attack or vulnerability, the symptoms of such an event can be combined into an incident. This allows security experts to analyze threat manifestations in a comprehensive manner and facilitates response.
You can assign a category, type, and priority to incidents, and assign incidents to data protection officers for processing.
Incidents can be exported to RuCERT.
Page top