Threat Detection ManagementThreat Detection Management Guide

For each threat, the analytics engine calculates a numerical risk score. This score is visible for alerts and cases in Threat Center, helping you quickly assess threat levels and identify potentially malicious activity.

A single factor, such as rarity, is insufficient to assess risk. Therefore, we evaluate multiple factors to determine an accurate risk score.

The analytics engine evaluates and normalizes these scores on a 1–100 scale. As new detections are added or removed, it recalculates the risk score to ensure an up-to-date view of the threat level.