[Security Solution] [Detections] General usability updates on rule status table #77830
Labels
Feature:Detection Rules
Anything related to Security Solution's Detection Rules
Feature:Rule Management
Security Solution Detection Rule Management
needs design
review
Team:Detection Rule Management
Security Detection Rule Management Team
Team:Detections and Resp
Security Detection Response Team
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Team:SIEM
Theme: rac
label obsolete
Theme: simp_prot_mgmt
Security Solution Simplified Protection Management Theme
UX Debt
Comments
dhurley14
added
review
Team:SIEM
Feature:Detection Rules
|
Pinging @elastic/siem (Team:SIEM) |
MindyRS
added
the
Team: SecuritySolution
|
@marrasherrier @MikePaquette - any feedback on @dhurley14 's suggestions above or possible text to be added for column descriptions? |
|
@dhurley14 definitely agree that sorting and descriptions would be helpful. I can recommend some text -- is there any existing documentation explaining these columns? if not, would you be willing to explain them here? :) |
peluja1012
added
Theme: rac
peluja1012
added
the
Theme: simp_prot_mgmt
|
Pinging @elastic/security-detections-response (Team:Detections and Resp) |
|
Closing. Tooltips for each column were added in this PR #114023. Additionally we have a dedicated epic for sorting and filtering. https://github.com/elastic/security-team/issues/1972 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the feature:
The Rule Status page could use some updates to help build a better user experience:
Describe a specific use case for the feature:
When checking for rules that are "running slowly" the analyst could sort the status monitoring table by either indexing time column or the query time column to determine rules that need better tuning.
The text was updated successfully, but these errors were encountered: