DORACompliance

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Content Index

Attribute	Value
Type	Workbook
Solution	DORA Compliance
Source	View on GitHub

Tables Used

This content item queries data from the following tables:

Table	Selection Criteria	Transformations	Ingestion API	Lake-Only
`DeviceFileEvents`		✓	✗	?
`DeviceNetworkEvents`		✓	✗	?
`Event`	`EventID in "1001,1069,1205"` `EventLevelName == "Error"` `RenderedDescription has_any "failover"`	✓	✓	✗
`Heartbeat`		?	✗	?
`SecurityAlert`	`AlertName has_any "Backup Failure"` `AlertName has_any "Blocked"` `AlertName has_any "Compliance Violation"` `AlertName has_any "Credential Access"` `AlertName has_any "Data Exfiltration"` `AlertName has_any "Incident Reported"` `AlertName has_any "Malware"` `AlertName has_any "Policy Change"` `AlertName has_any "Service Outage"` `AlertName has_any "Suspicious Login"` `AlertName has_any "TLPT"` `AlertName has_any "Third-Party"` `AlertName has_any "Threat Intelligence"` `AlertName has_any "Unauthorized Access"` `AlertName has_any "Vulnerability Exploitation"`	✓	✗	✓
`SecurityIncident`		✓	✗	✓
`ThreatIntelIndicators`	`ObservableKey contains "file:hashes."` `ObservableKey contains "network-traffic"`	✓	✓	✗

Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊

↑ Back to Workbooks · Back to DORA Compliance