Announcing Improved Information Protection Capabilities for Incident Response: SIEM Integrations and Tag Management>
Market Screener – Proofpoint
It takes 77 days, on average, to resolve insider threat incidents, according to the ‘2020 Ponemon Institute Cost of Insider Threats’ report. That finding underscores why it’s more important than ever to reduce the time and cost of incident response. With the tag management feature, analysts can, as an example, tag multiple alerts with an ‘under investigation’ tag during alert triage. Later, during further investigations or threat-hunting exercises, teams can quickly recall or filter relevant alerts for the tag ‘under investigation’ and export the alerts as PDF documents to share with other teams.

The tags also can be saved beyond a single investigation and reused. For instance, during threat-hunting exercises, analysts may want to filter for all alerts triggered by users on notice or in high-risk locations. They can do this when analysts regularly tag alerts with relevant keywords or phrases during alert triage.
Link: https://www.marketscreener.com/quote/stock/PROOFPOINT-INC-10462749/news/Announcing-Improved-Information-Protection-Capabilities-for-Incident-Response-SIEM-Integrations-and-32494004/