#Fortinet's #FortiSIEM is designed to be the backbone of your #security operations team. In FortiSIEM 7.0, a separate Incident Investigation workspace is provided in Analytics - Investigation. Starting with a root Incident, the user can build a link graph relating that Incident to involved entities (IP, Host, user, process, file) and then recursively to other incidents and related entities. The user can view the timeline of these Incidents and play them in a time-ordered fashion to visualize how an attack k