From dcc84173dfeb554ecb766559fa64e1dc10916658 Mon Sep 17 00:00:00 2001 From: Dolcita Date: Tue, 19 Apr 2016 16:31:24 +1000 Subject: [PATCH] Update use-windows-defender-advanced-threat-protection.md --- .../use-windows-defender-advanced-threat-protection.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/keep-secure/use-windows-defender-advanced-threat-protection.md b/windows/keep-secure/use-windows-defender-advanced-threat-protection.md index e916d5fdfb..f5451bf406 100644 --- a/windows/keep-secure/use-windows-defender-advanced-threat-protection.md +++ b/windows/keep-secure/use-windows-defender-advanced-threat-protection.md @@ -19,7 +19,7 @@ A typical security breach investigation requires a member of a security operatio 1. View an alert on the **Dashboard** or **Alerts queue** 2. Review the indicators of compromise (IOC) or indications of attack (IOAs) 3. Review a timeline of alerts, behaviors, and events from the machine -4. Manage alerts, understand the threat/potential breach, collect information to support taking action, and resolve the alert +4. Manage alerts, understand the threat or potential breach, collect information to support taking action, and resolve the alert ![Flowchart describing the four stages of investigation](images/overview.png) @@ -30,7 +30,7 @@ Teams can monitor the overall status of enterprise endpoints from the **Dashboar Alerts in the portal help to notify you of detected threat behaviors or activities on your endpoints. The **Dashboard** and **Alerts queue** provide important information about your endpoints that can help you address alerts. -The **Dashboard** groups categorize active alerts into **New** or **In progress** queues, and supports filtering by severity levels. It also has clickable tiles that give visual cues on the overall health status of your organization. Each tile opens a detailed view of the corresponding overview. +The **Dashboard** groups or categorizes active alerts into **New** or **In progress** queues, and supports filtering by severity levels. It also has clickable tiles that give visual cues on the overall health status of your organization. Each tile opens a detailed view of the corresponding overview. Alerts are organized in three queues, by their workflow status: