Management of incident notifications resides within the Alert Logic® console’s Incident Console and allows you to set your incident notification preferences instantly.
Subscribe to Notifications
Alert Logic Cloud Defender or Threat Manager customers - navigate to Incidents > Notifications.
Alert Logic Essentials, Professional, or Enterprise customers - open the navigation menu () and choose Respond > Incidents > Notifications > Manage Notifications.
From here, choose for which accounts and threat levels you would like to receive incident notification emails. You can also subscribe to incident escalation notifications for any of your accounts, regardless of threat level.
Click the down arrow to the right of the threat level for which you want to set up notifications. A list of your accounts will display, at which point you can check the boxes of the accounts whose incidents you want notifications for of that threat level. Hover over the orange circle containing an account’s initials to reveal its check box. When you are satisfied with your notification preferences, click Save.
Log Review Incidents
SIEMless Threat Management™ customers can also subscribe to Log Review incident notifications, using the same instructions as above but also making sure to check the Escalations checkbox. This will subscribe you to escalated Log Review incidents in your environment.