User Behavioral Analytics - CyberSight Interactive Dashboards
next
Kate Trojanowski
The first release of CyberSight introduces Activity Logs within the Windows Agent, capturing what users actually did — applications used, sites visited, time spent, and full URL visibility — even while offline. While these logs provide detailed forensic records, reviewing them can be time-consuming and less effective for spotting patterns or communicating insights at scale.
The next phase of CyberSight introduces interactive Dashboards that transform this data into clear, actionable views:
- Overview Dashboard: Highlights top websites, applications, categories, SaaS usage, and license consumption for quick situational awareness.
- Threat Trends: Consolidates observed threats and risky user behavior to help IT and security teams prioritize remediation.
- Timeline Reporting: Visualizes anomalies, shadow IT adoption, license usage, and historical events to accelerate investigations.
Together, these capabilities evolve CyberSight from log-based visibility into a actionable reporting function. This enables IT administrators, security analysts, and service providers to communicate insights, reduce investigation effort, and demonstrate security value directly in the product.
Kate Trojanowski
Merged in a post:
Report of Top 5 users with threats
Ramil Aninang
I hope that you can create reports based from the users and most prone to threats
Kate Trojanowski
Merged in a post:
DNS Report Idea - Hosts That Are Seeing The Most Threats/Blocks
Kyle
Hello,
I'd like to propose a change or a new type of report that highlights which PCs are encountering the most Threats and blocked content. In the current DNS protection summary report the report shows the number of blocked threats and blocked sites but not where the threats are most prominent.
Thank you!
Kate Trojanowski
Merged in a post:
Report Idea
Kyle
Reposting this again - I'd like to propose a change or a new type of report that highlights which PCs are encountering the most Threats and blocked content. In the current DNS protection summary report the report shows the number of blocked threats and blocked sites but not where the threats are most prominent.
Thank you!
Kate Trojanowski
Merged in a post:
Reporting
R
Richard Sharpe
Add granularity to reports to show the amount of time spent on a domain from a user or device has.
Kate Trojanowski
Merged in a post:
Acitivity report
Jefferson Ferreira
Client wants to know what his employee has been doing. I can just see the reports insights on the panel. The clients would like to receive the reports in a PDF.
Kate Trojanowski
Merged in a post:
Activity report by user
Don Brown
Client wants to know what his employee has been doing. Top Domains by Roaming Client was as close as we could get. The CVS is nice, the clients like pretty graphs. Please include these in a PDF export.
Kate Trojanowski
Merged in a post:
End-user Web Surfing Activity Reports
S
Stephen Sirois
Monthly web surfing and browsing activity reports that are meaningful in terms of how much time users are spending surfing the internet and clicking around. I've used SurfControl and WebSense in the past and it was very good at providing basic bar-graph reports that listed all the staff in the left column and a bar chart showing user activity extending across the page to the right with the TOP USERS at the top of the chart showing number of clicks and amount of browsing activity moving users higher up on the bar chart based on their amount of internet surfing. The bars were also color coded with basic Categories, such as Shopping, Social Media, Job Sites, Personal Interests, Cooking, Health, etc., Sports, Business, Banking and Stock Market, etc. This was helpful so that when a user was among the "Top Users" in the bar chart, there were some details to help understand if it was legitimate business focused activity related to the individual persons job, or if the user needed to be more conscientious regarding non-business related activities during normal working hours.
Providing these reports was a healthy reminder to staff so that they realize internet activity can be viewed was very helpful with staff then "Self Policing" themselves and being more conscientious regarding how they spend their time during business hours and using company property/technology.
I believe many more customers would be interested in this service if this feature were part of the reporting capabilities!
Kate Trojanowski
next
R
Ryan Rorie
I couldn't agree more. We are required to provide reports for a regulatory requirement and having the hostname/IP of the device where the threat was blocked must be listed. I currently have to do this manually.
R
Ryan Rorie
I couldn't agree more. We are required to provide reports for a regulatory requirement and having the hostname/IP of the device where the threat was blocked must be listed. I currently have to do this manually.
Load More
→