Netskope Library

Netskope Library

This page lists and describes each Netskope created report (dashboard) and available widgets.

Netskope_Library_Advanced_Analytics.jpg
  1. Dashboards and widgets are organized in a table format and in different categories.
  2. Dashboards and widgets display the number of times it was copied into a Personal or Group folder.

This page contains pre-built dashboards and widgets that are available to you for copying to include in your personal or group folders.

From this page you can:

  • Search for a specific dashboard
  • Sort the Dashboard list by both table and card view. In addition, you can sort by Name, Popularity, and Last Edit.
  • View dashboard details (the underlying report details)
  • Clone a dashboard and save it to your personal folders, to which you have permission to access
  • Copy a dashboard to a different folder, to which you have permission to access

Tip

Dashboards and widgets created in the past 90 days are tagged as ‘New’.

Netskope Library Dashboards

The table below lists and describes each default dashboard available to you.

Dashboard NameDescription
AI UsageUse this dashboard to understand AI Usage in your organization. Provides understanding of the following:
How many users are using AI in the organization?
What are the top AI apps / sites in use?
What activities are detected in the AI apps?
How is AI use being controlled?
Application Activity SummaryProvides visibility into overall cloud usage in your organization for a particular application, for example Box. Provides understanding of the following:
  • data movement
  • users
  • organizational units
  • activities
  • alerts
Category SummaryProvides visibility into overall cloud usage in your organization for a particular category like Cloud Storage.
CISO DashboardThis dashboard provides monthly executive reporting on cloud data protection and threat management. It focuses on the threats we defended, policies triggered, users we protected, and applications accessed.
The Dashboard goes further to break out data protection, threat protection, policy violations, applications, and network traffic.
It also covers geographic maps showing a view of where the alerts are being generated and the location of users around the globe.
CISO Dashboard – No Period ComparisonThis dashboard is a simplified version of the “CISO Dashboard” which requires only a single time range parameter to be applied. Note, period over period comparison dashboard filters are not included in this dashboard.
CISO Dashboard with Top OUsThis dashboard provides everything included in the CISO Dashboard as well as organizational informational.
Cloud Firewall Discovery InsightsProvides visibility into utilization metrics via Cloud Firewall. This dashboard offers the following:
Network Traffic monitoring for users and services, bandwidth consumption, and unauthorized activities
Policy development and optimization by identifying firewall misconfigurations and trends of blocked / allowed traffic
Cloud Risk AssessmentProvides organizations with insights on their cloud risk posture for data, users, and cloud usage.

Get visibility into risky applications, upload / downloads by Instance, compliance certifications, user countries, and trend of risky applications usage / uploads / downloads.

Cloud Risk Assessment – QBRCovers multiple product areas; intended to be used for QBRs to showcase value. In comparison to the above Cloud Risk Assessment dashboard, this dashboard is suitable for users in various stages of maturity ranging from discovery, to granular access control.
Cloud Usage SummaryProvides visibility into overall cloud usage in your organization.
Coaching Policy DashboardUse this dashboard to look at a specific policy and analyze the user behavior when these policies are triggered. Assess impact of User Coaching such as:
  • Number of users triggered the policy

  • Number of users who stopped vs proceeded with the action caught by the policy

  • Justifications entered by the users
Data Governance & Privacy DashboardProvides visibility into source and destination country traffic highlighting movement of highly sensitive data.

Trend of DLP alerts along with top sensitive data found in the environment.

Application risk paired with data movement.

Disabled accounts in the last 7 days.

Data Protection DashboardWith the Data Protection Report, stay informed about where your sensitive data is, the risks of data loss associated with the applications that your organization is using, and the effectiveness of DLP security policies.

This dashboard also provides complete visibility into data being uploaded / downloaded from corporate / personal instances, files being exposed externally / publicly, applications used where data is owned by the vendor, and trends of alerts raised.

DLP Incidents Status MonitoringThis dashboard shows all open and outstanding incidents. The results are based on incidents with ‘Closed’/’Resolved’ statuses. You can adjust dashboard level filters for custom-defined statuses.
DLP Policies DashboardA DLP Policy focused dashboard that gives an overview of DLP policies active in the tenant, how they are behaving, and offers information to help fine tune the policies.
  • Operationalization of DLP Policies
  • Fine tuning of DLP Policies
  • Identifying critical DLP Alerts
GDPR DashboardThis dashboard allows organizations to monitor and assess their GDPR compliance.

It covers:

  • Applications with low GDPR
  • Applications which are hosting data outside of the EU
  • Applications sharing PII data with 3rd Parties
  • Applications where data is owned by the vendor
  • Applications accessing other applications on mobile devices
  • Applications accessing privacy data on mobile devices
  • Applications which do not allow data downloads
  • Applications which never delete your data
IaaS CSA DashboardThis dashboard shows:
  • IaaS CSA alerts by severity
  • Top Critical/High CSA rules triggeredTop Critical/High CSA rules triggered
  • Top Accounts & Objects with Critical CSA alerts
  • Regions generating alerts
IaaS DLP Scan DashboardThis dashboard focuses on data classification, DLP policy violations, and noncompliance in storage buckets.

Key metrics includes:

  • DLP classification by profile and rule
  • DLP violations by instance, object, and bucket
  • Exposed storage bucket
  • DLP violation trend over time
IaaS Malware Scan DashboardThis dashboard offers in-depth analysis of malware detected in cloud storage services.

Key metrics includes:

  • Malware by CSP, instance, and bucket
  • Malware by engine and severity
  • Malware by type, name, and file type
  • Trend of malware detected
IaaS Storage Scan DashboardGives a high level overview of Data Protection, Threat Protection and Security Assessment in IaaS apps/platforms. Including:
  • DLP profile distribution, the apps and buckets affected, DLP alert details
  • Malware detected and specific buckets
  • Public buckets detected
Industry BenchmarksProvides a comparative analysis of Netskope operational metrics between a customer’s environment against other customers, or by industry peers. This dashboard delivers the following:
  • Provides an overview of the organization’s exposure to risk
  • Assesses the security posture of the organization as compared to similar-sized industry peers
  • Identifies security gaps for evidence-based decision making around strategy and resource allocation
  • Tracks score progress over time

Important

This dashboard is view only; copying or editing is not permitted.

To learn more: Industry Benchmarks Dashboard

Insider Threats DashboardRisky users identified performing multiple risky activities; then ranked based on activity level in each risk categories:
  • Upload to non-corporate (event)
  • UBA: Exfiltration to non corporate instances
  • UBA: bulk upload to non-corporate
  • UBA: bulk download from corporate
  • UBA: Compromised credentials
  • DLP alerts with user coaching proceed responses
  • Top users by job sites: job sites/career category (web only) (page event)
Multi Cloud CSA DashboardSimple 3-widget dashboard focused on SaaS and shows:
  • Trend of SaaS CSA Alerts
  • SaaS Alerts by CSP
  • SaaS CSA alerts by CSP & Account ID
Network AdminUse this dashboard to view:
Events with errors
Errors by type
Number of errors by daily count
New VisualizationsShowcases new visualizations added in Advanced Analytics such as: Sankey, Treemap, Sunburt, Gauge, and Geomap.
Private Application OverviewUnderstand activity, usage, and trends for the following:
Discovery
Netskope Data Centers
Private Access Publisher Usage by Bytes
Most Used Policies
Top Private Apps by Total Bytes
Applications Discovered
Trend of Application Upload/Download
Application Ports Discovered
Top 10 Applications by Number of Sessions
Top 10 Users by Number of Sessions
Daily Private App Usage by Number of Users and Total Bytes
Hourly Private App Usage by Number of Users, Events, and Total Bytes
Remote Browser Isolation (RBI)This dashboard provides visibility into web traffic isolated by Netskope RBI technology, which helps you monitor your RBI usage and refine your RBI policies and templates applied.
Risk Management: Cloud ServicesThis dashboard will help map activities to a Risk level: Informational, Low, Medium, and High.
SaaS Security Posture Management DashboardThis dashboard shows a compliance summary of findings and configured instances. In the metrics section, account level details include:

Total Findings – shows the number of findings.
Total Failed Findings – shows the number of failed findings from the total findings.
Total Pass Findings – shows the number of passed findings from the total findings.
Pass Rate – shows the aggregated pass rate of a total number of findings

To learn more:
SaaS Security Posture Management – Compliance DashboardThis dashboard shows a compliance summary of findings. You need to choose a Compliance Standard in the filters to view findings, by default, ‘AICPA-SOC-TSC-2017’ is the selected compliance standard. Account level compliance details include the following:

Compliance Standard Selected – shows the name of the compliance standard selected in the filter.
Total Findings – shows the number of findings of the compliance standard selected in the filter.
Total Failed Findings – shows the number of failed findings of the compliance standard selected in the filter.
Total Pass Findings – shows the number of passed findings from total findings compliance standard selected in the filter.
Pass Rate – shows the aggregated pass rate of a total number of findings.

To learn more:
SaaS Visibility DashboardThis dashboard provides insights into cloud app adoption through the lens of app, user, and data risk.

You can schedule a dashboard directly from the Netskope shared folder and automatically get updates that Netskope makes to improve that dashboard. If you do not want automatic updates, copy the dashboard into your group or personal folders and schedule from there.

Security ArchitectThis dashboard provides visibility to the following reports:
Total Cloud Apps Discovered
Cloud App Count by CCL
Sanctioned Apps
Risky Apps
Trend of Uploads over time by CCL
Security LeaderThis dashboard provides visibility to the following reports:
Total Alerts this period
Policies triggered this period
Total users protected this period
Total applications accessed this period
Total Alerts breakdown by Type
Trend of Threats & Adoption
Malware Alerts
Top 15 categories by number of malware alerts
Malicious site alerts
Top 15 categories by number of malicious site alerts
Security ManagerThis dashboard provides the following:
Discovers Cloud Apps in use on your network
Detects risky websites visited
Identifies users and groups accessing Cloud Apps and risky websites
Security OperationsUnderstand activity and protections in the following categories:
  • Policy Violations – Top objects, actions and User coaching trend
  • Data Protection – Top policies, actions and files
  • Malware – Top Malware detected & Trends
  • Malicious URLs – Top blocked, Top Categories
  • Anomalies – Trends
  • URLs – top URLs with and without alerts
Security Operations AnalystUnderstand activity and protections in the following categories:
Total policies violated
Total files with DLP
Total malware detected
Total malicious URLs detected
Total URLs blocked
Total UEBA alerts
Top 20 Objects by number of alerts
Top 20 Actions by number of alerts
Top 20 DLP policies violated
Top 10 Actions with DLP policies
Top 20 files with DLP violations
SSL InspectionThis dashboard allows you to see the inspection rate of all traffic sent to Netskope. In addition, you. can review traffic and destinations not inspected, and assess whether there is a business reason to have content inspected for threats, intellectual property, or against specified standards.
Threat Protection DashboardThis dashboard provides a view of threats being prevented by Netskope like malware and visits to malicious sites. It also provides visibility into applications with vulnerabilities being accessed or Web Proxies / Anonymizers being used.
Transaction Events – Activity SummaryThis dashboard provides visibility of transaction events pivoted on key attributes; leverage dashboard level filters to see different views of the data.

Key metrics include:

  • Events breakdown by browser and device
  • Top sites, hosts, and domains
  • Traffic breakdown by users, summarized by HTTP method and byte traffic
  • Traffic breakdown by application
  • Bypassed traffic
Transaction Events InsightsThis dashboard shows summary metrics for transaction events that triggered alerts.

Key metrics include:

  • Top Events with Alerts
  • Top Users with Alerts
  • Count of Users with Alerts
  • Count of Alerts
Transaction Events InvestigationUse this dashboard to explore user activities with policy violations and to uncover potential threats in your environment; leverage dashboard level filters to return events based on selected fields. In addition, click any datapoint in the visualizations to have the detailed table view filtered based on selected value(s).
  • Top Categories by Number of Events
  • Most Visited Domains
  • Top Policy Alerts
  • Events by Action Taken
  • Top Users Triggering Alerts
  • Most Active Users by Number of Events
  • Recent Events
Unsanctioned IaaS SummarySimple 3-widget dashboard to help identify unsanctioned IaaS accounts and who is using them, along with alert info.
User Behavior Analytics (UBA) DashboardUse the UBA dashboard to monitor UBA alerts, refine UBA policies, and reduce investigation time for anomalous user activities.
User Investigation DashboardThis dashboard helps synthesize information by “User stitching” which ties together multiple user identifiers, and provides a more complete view of user behavior and data flow.
The user stitching chart shows any SaaS identities used by corporate users, which applications are being accessed, the instances of those applications, the activity performed, and any resulting policy action.
User / Organization Unit SummaryGives the visibility into the usage and alerts raised for a user or organization unit. Provides a high level view of risky applications usage, sites visited, top activities, top policy hits, and transaction level details of events and alerts generated for the user or organizational unit.
Web Transaction SSL ErrorsUse this dashboard to check for detailed SSL errors associated with application access.
  • Events with Errors
  • Errors Daily Count
  • Errors by Type
  • Count of Users Encountering Errors
  • Errors by Type Details
Web Usage SummaryProvides visibility into the overall usage of your web traffic in your organization.
Share this Doc

Netskope Library

Or copy link

In this topic ...