View reports
Before you begin
For a more granular view, access the data security reports.
Steps
-
Select from the left navigation pane, and then select a report category: Content Type, Incidents, or Sources & Destinations.
| Report | Description |
|---|---|
| Content Type | |
| Compliance Summary | Details the compliance rules are most often violated in your organization, and provides a breakdown of the incident count for each policy or rule. |
| Custom Classifier Summary | Shows which custom classifiers triggered the most incidents during the designated period. |
| Data Theft Summary | A list of data theft classifiers that triggered the most incidents during the designated period. |
| Incidents | |
| Incident List | A list or chart of all data loss incidents that were detected during the designated period, along with incident details such as the destination, severity, and transaction size. |
| Sources & Destinations | |
| Destination Summary | The destination URLs or IP addresses involved with the most violations, broken down by severity. |
| Users Summary | The users, machines, or IP addresses most frequently violating data security policies and the severity of their breaches. |
-
After you select a report, select a time period (last 7 days by default) and any required attributes, then click the Update Report button
.
Tip:To view only incidents that meet a certain threshold (not every single match), filter the report using the Top Matches attribute.
Top Matches indicates the number of matches on the incident's most violated rule. For example, if rule A in MyPolicy has 2 matches, rule B has 5 matches, and rule C has 10 matches, top match equals 10.
When you apply the filter, enter the threshold to include in the report, and then select the operator to use: equal to, greater than, etc.
Refer to the Forcepoint Cloud Security Gateway Portal Help for details on adding attributes to a report.