- Get Started with Outcomes Navigator
- Use Outcomes Navigator with the MITRE ATT&CK® Framework
- Use Outcomes Navigator with the Threat Detection, Investigation, and Response (TDIR) Use Case Categories Framework
- Use Outcomes Navigator for Compliance
- View Recommendations for Improving Your Configuration
- Share Information in Outcomes Navigator
- Outcomes Navigator Coverage Calculation
- The Role of Parsed Fields in Coverage Calculation
- Prerequisites for Calculating Coverage
- Types of Coverage Scores
- Use Case Coverage Score
- MITRE Coverage Score
- Compliance Framework Coverage Score
- Control Coverage Score
- Advanced Analytics Rules Coverage Calculation
- Correlation Rules Coverage Calculation
- Dashboards Coverage Calculation
- Coverage Over Time Calculation
- Outcomes Navigator Parser Calibration Tier Average Calculation
Use Outcomes Navigator with the Threat Detection, Investigation, and Response (TDIR) Use Case Categories Framework
View, assess, and improve your configuration using the Exabeam TDIR Use Case Categories framework.
You can use Outcomes Navigator with the MITRE ATT&CK® framework, various compliance frameworks, or the TDIR Use Case Categories framework.
If you decide to use Outcomes Navigator with a TDIR Use Case Categories framework, ensure you're familiar with the framework. Consider reviewing TDIR Use Case Categories documentation and taking relevant e-learning courses.[7]
To begin using Outcomes Navigator with a TDIR Use Case Categories framework, customize your frameworks and select Use Case Coverage.
You can then get a high-level view of your use case coverage, explore all use cases and determine which ones your configuration should focus on to achieve your goals. Then, for a use case of interest, assess the current state of your configuration and where there are gaps. Finally, view recommendations for improving your configuration. You can view recommendations only if you have a license that includes Advanced Analytics.
Understand Your Overall Use Case Coverage
To create a strategy for configuring your environment, get an overview of your overall use case coverage in Outcomes Navigator.
Assess Configuration Efficacy for a Use Case
Understand how well your environment is configured to protect against a specific use case.
View Recommendations for Improving Your Configuration
After you assess the current configuration of your environment, follow recommended steps to fill the gaps.
[7] MITRE ATT&CK and ATT&CK are trademarks of The MITRE Corporation ("MITRE"). Exabeam is not affiliated with or sponsored or endorsed by MITRE. Nothing herein is a representation of the views or opinions of MITRE or its personnel.