Truth in IT
    • Sign In
    • Register
        • Videos
        • Channels
        • Pages
        • Galleries
        • News
        • Events
        • All
Truth in IT Truth in IT
  • Data Management ▼
    • Converged Infrastructure
    • DevOps
    • Networking
    • Storage
    • Virtualization
  • Cybersecurity ▼
    • Application Security
    • Backup & Recovery
    • Data Security
    • Identity & Access Management (IAM)
    • Zero Trust
    • Compliance & GRC
    • Endpoint Security
  • Cloud ▼
    • Hybrid Cloud
    • Private Cloud
    • Public Cloud
  • Webinar Library
  • TiPs
  • DRAW

ManageEngine: Security Analytics Dashboard Tour in Log360

Manage Engine
06/30/2026
0 (0%)
Share
  • Comments
  • Download
  • Transcript
Report Like Favorite
  • Share/Embed
  • Email
Link
Embed

Transcript


In this video, we are going to take a quick tour of the security analytics dashboard in Log360. When it comes to security monitoring, context is everything. The security analytics dashboard brings your detections together in one place. So in just a few clicks, you'll know what's happening and what to do next. So how do we access this dashboard? In your Log360 console, click on the security tab. That will bring you right into the security analytics view. And before we proceed any further, make sure your detection rules are active and properly configured because the insights here are powered by those rules. Right at the top, you'll notice four numbers. These give you a snapshot of detection by severity. All rules give you the total number of detections across the board. Trouble rules highlight the detection you really can't ignore. Trouble rules cover medium level risks that deserve a closer look. And attention rules show lower level anomalies, which are basically early warning signs. Each tile shows you whether detections are trending up or down. So you can spot spikes at a glance. And if you want more context, just click on any of these to see a detailed breakdown with columns like rule name, user, log source, and even MITRE attack mapping. You can also export the data in just a click. Moving on to dashboard widgets, below the metrics, you'll see a series of widgets. These aren't just charts. They give you different perspectives on your detections, helping you spot patterns and outliers quickly. Let's go through them. Detection pipeline. This shows the flow of detections and alerts broken down by severity. It's a great way to see at a glance how events are being escalated. With the detection by tactics widget, you can see which tactics attackers are using, like initial access, privilege escalation, or lateral movement. So you know which stages of an attack lifecycle are most active in your environment. Recent detections is your real time feed. It lists the latest triggered events along with details like the rule name, user, log source, and map tactics. Click into any detection and you'll get the full context. Who was involved, what system it came from, associated IPs, tags, and even mitigation recommendations. Top 5 users by detections. This chart highlights the users most associated with detections. If one account suddenly jumps to the top, that could signal a compromise or insider threat. Top 5 log sources by detections. Similar idea, but focused on devices. This helps you identify which systems are generating the most alerts, so you know where to focus your hardening efforts. Top 10 detections by rules. This ranks the most frequently triggered rules. It's useful for spotting recurring threats or fine tuning rules if you're seeing too many false positives. Next is detection trends. And finally, this widget shows detection activity over time, split by severity. It's perfect for spotting spikes, anomalies, or just understanding historical patterns. Each widget can be expanded for more detail or refreshed to make sure you're looking at the most up-to-date data. You also have a couple of handy controls here. You can adjust the time range to analyze detections over any custom or predefined period. That's great if you want to focus on just today, the past week, or a specific investigation window. And the manage rules option takes you straight into rule management, so you can adjust or fine tune the very rules that feed this dashboard. And that brings us to the end of our tour of the security analytics dashboard. You've seen how it gives you quick snapshots for fast decision making, widgets that break detections into patterns and trends, and MITRE mapping for valuable context. Altogether, it's designed to help you cut through noise and focus on what matters most. If you'd like to know more about Lock360 and how it can help your organization, contact our technical experts today.

TL;DR

  • The Security Analytics Dashboard in Log360 consolidates all security detections into a single view with severity-based metrics (All, Trouble, Warning, Attention) and trend indicators for quick anomaly identification.
  • Built-in MITRE ATT&CK mapping helps security teams understand which attack tactics are most active in their environment, from initial access to lateral movement and privilege escalation.
  • Multiple analytical widgets provide different perspectives on detections, including pipeline flows, top users and devices, frequently triggered rules, and historical trends to support pattern recognition and incident prioritization.

Summary

This demonstration walks through the Security Analytics Dashboard in ManageEngine Log360, a centralized interface for monitoring security detections across an organization. The dashboard provides real-time visibility into security events through severity-based metrics, MITRE ATT&CK framework mapping, and multiple analytical widgets. Users can access the dashboard through the security tab in the Log360 console, where they'll find detection counts categorized by severity levels (All, Trouble, Warning, and Attention rules), each showing trend indicators for quick anomaly identification. The interface includes specialized widgets for detection pipeline visualization, tactical analysis, real-time event feeds, and identification of top users, devices, and triggered rules. The dashboard supports customizable time ranges for historical analysis and provides direct access to rule management for fine-tuning detection logic. This consolidated view is designed to help security teams cut through alert noise, identify patterns, and prioritize incident response based on contextual information including user accounts, log sources, IP addresses, and mapped attack tactics.

Chapters

0:00 - Introduction
0:25 - Accessing the Dashboard
0:44 - Severity Metrics Overview
1:27 - Dashboard Widgets Tour
3:18 - Time Range and Controls

Key Quotes

0:13 "When it comes to security monitoring, context is everything."
0:16 "The security analytics dashboard brings your detections together in one place. So in just a few clicks, you'll know what's happening and what to do next."
3:53 "Altogether, it's designed to help you cut through noise and focus on what matters most."

FAQ

How do I access the Security Analytics Dashboard in Log360?

Click on the security tab in your Log360 console to access the Security Analytics Dashboard. Before using it, ensure your detection rules are active and properly configured, as the dashboard insights are powered by those rules.

What do the different severity levels mean in the dashboard?

The dashboard uses four severity categories: All Rules shows total detections across the board, Trouble Rules highlight critical detections that require immediate attention, Warning Rules cover medium-level risks deserving closer examination, and Attention Rules display lower-level anomalies that serve as early warning signs.


Categories:
  • » Data Protection
Channels:
News:
Events:
Tags:
  • Security Operations
  • Demo
  • Technical Deep Dive
  • Threat Intelligence
  • Getting Started
  • Security Analytics Dashboard
  • MITRE ATT&CK Framework
  • Detection Management
  • Security Event Monitoring
  • Incident Response
  • Log Management
  • Threat Detection
  • Security Visualization
Show more Show less

Browse videos

  • Related
  • Featured
  • By date
  • Most viewed
  • Top rated
  •  

              Video's comments: ManageEngine: Security Analytics Dashboard Tour in Log360

              Upcoming Webinar Calendar

              • 06/30/2026
                01:00 PM
                06/30/2026
                Master Active Directory Certificate Services and Maintain Your Edge
                https://www.truthinit.com/index.php/channel/2018/master-active-directory-certificate-services-and-maintain-your-edge/
              • 07/01/2026
                04:00 AM
                07/01/2026
                Integrating Security in AI: Automated Red Teaming Strategies for Private Models
                https://www.truthinit.com/index.php/channel/1969/integrating-security-in-ai-automated-red-teaming-strategies-for-private-models/
              • 07/01/2026
                04:00 AM
                07/01/2026
                Schutz von KI in Anwendungen, Agenten und APIs.
                https://www.truthinit.com/index.php/channel/2008/schutz-von-ki-in-anwendungen-agenten-und-apis/
              • 07/01/2026
                01:00 PM
                07/01/2026
                How to Prevent Your AI from Outsmarting You
                https://www.truthinit.com/index.php/channel/2021/how-to-prevent-your-ai-from-outsmarting-you/
              • 07/02/2026
                10:00 AM
                07/02/2026
                Insights on Resilience from Hybrid Threats in a Dark Cloud Environment
                https://www.truthinit.com/index.php/channel/2011/insights-on-resilience-from-hybrid-threats-in-a-dark-cloud-environment/
              • 07/08/2026
                02:00 PM
                07/08/2026
                Understanding the Essential Role of Context in AI Data
                https://www.truthinit.com/index.php/channel/2037/understanding-the-essential-role-of-context-in-ai-data/
              • 07/09/2026
                01:00 PM
                07/09/2026
                The HUMAN Experience: Empowering Agentic Trust in Practice
                https://www.truthinit.com/index.php/channel/2026/the-human-experience-empowering-agentic-trust-in-practice/
              • 07/14/2026
                01:00 PM
                07/14/2026
                Crafting a Championship-Worthy Security Team for Maximum Defense Effectiveness
                https://www.truthinit.com/index.php/channel/2025/crafting-a-championship-worthy-security-team-for-maximum-defense-effectiveness/
              • 07/21/2026
                04:00 AM
                07/21/2026
                Strategies for Managing AI Governance and Securing App-to-LLM API Traffic
                https://www.truthinit.com/index.php/channel/1967/strategies-for-managing-ai-governance-and-securing-app-to-llm-api-traffic/
              • 07/21/2026
                01:00 PM
                07/21/2026
                HUMAN Dialogue: Insights from Attackers During the FIFA World Cup
                https://www.truthinit.com/index.php/channel/2029/human-dialogue-insights-from-attackers-during-the-fifa-world-cup/
              • 07/22/2026
                06:30 AM
                07/22/2026
                Insights and Strategies for Mastering the DPDP Framework
                https://www.truthinit.com/index.php/channel/2000/insights-and-strategies-for-mastering-the-dpdp-framework/
              • 07/28/2026
                01:00 PM
                07/28/2026
                Illumio + Netskope: Zero Trust in the Age of AI Autonomy
                https://www.truthinit.com/index.php/channel/2031/illumio-netskope-zero-trust-in-the-age-of-ai-autonomy/
              • 07/29/2026
                04:00 AM
                07/29/2026
                Real-Time Strategies for Safeguarding Against Prompt Injections
                https://www.truthinit.com/index.php/channel/1968/real-time-strategies-for-safeguarding-against-prompt-injections/
              • 08/19/2026
                12:00 PM
                08/19/2026
                Master Agent-Ready Skills in 30 Days with Cyera Agent Security
                https://www.truthinit.com/index.php/channel/2036/master-agent-ready-skills-in-30-days-with-cyera-agent-security/
              • 09/30/2026
                04:00 AM
                09/30/2026
                AI Command Center: Optimizing Visibility and Control in Your Operations
                https://www.truthinit.com/index.php/channel/2024/ai-command-center-optimizing-visibility-and-control-in-your-operations/

              Upcoming Events

              • Jun
                30

                Master Active Directory Certificate Services and Maintain Your Edge

                06/30/202601:00 PM ET
                • Jul
                  01

                  Schutz von KI in Anwendungen, Agenten und APIs.

                  07/01/202604:00 AM ET
                  • Jul
                    01

                    Integrating Security in AI: Automated Red Teaming Strategies for Private Models

                    07/01/202604:00 AM ET
                    • Jul
                      01

                      How to Prevent Your AI from Outsmarting You

                      07/01/202601:00 PM ET
                      • Jul
                        02

                        Insights on Resilience from Hybrid Threats in a Dark Cloud Environment

                        07/02/202610:00 AM ET
                        More events
                        Truth in IT
                        • Sponsor
                        • About Us
                        • Terms of Service
                        • Privacy Policy
                        • Contact Us
                        • Preference Management
                        Desktop version
                        Standard version