Revamped Security Overview Dashboard

Revamped Security Overview Dashboard

Introducing the Revamped Security Overview Dashboard

We’re excited to introduce our revamped Security Overview dashboard, designed to empower defenders by moving from reactive monitoring to proactive control. The new dashboard provides a single interface for security professionals to identify and fix potential security issues.

From Noise to Action: Rethinking the Security Overview

Historically, dashboards focused on showing everything that was happening. However, for a busy security analyst, the more important question is, “What do I need to fix right now?” To solve this, we’re introducing Security Action Items, which act as a functional bridge between detection and investigation.

These items are ranked by criticality, including Critical, Moderate, and Low, to help you triage effectively. Additionally, you can filter by Insight Type, such as Suspicious Activity or Insecure Configuration, to tailor your workflow to the specific threats your organization faces most.

Detection Tools Module

The new Detection Tools module eliminates the configuration gap by providing a high-level status of your entire Cloudflare security stack in one view. This includes the status of your primary shields, whether you’re discovering shadow APIs, and more.

By surfacing these tools directly alongside your Security Action Items, we move the conversation from “Do we have this tool?” to “Is this tool actively protecting us right now?”

Unified Visibility of Suspicious Activity Cards

We’ve unified the visibility of our Suspicious Activity cards, which now live in two strategic places: the Security Overview and the Security Analytics page. If you spot a Suspicious Activity card on your Overview page, you can click on it to be deep-linked directly into the Security Analytics dashboard with all relevant filters automatically applied.

How We Built Our New Security Overview Dashboard

To maintain a proactive defense, our engine produces and refreshes over 10 million actionable insights every day. Operating at this level presents two distinct engineering challenges: scale and breadth.

To solve this, we built a system composed of smaller, specialized microservices, which we call checkers. Each checker is a subject-matter expert for a specific part of your stack, such as DNS records.

Unifying Security Visibility with Contextual Insights

Our customers have consistently asked for more than just visibility: they’ve asked for context. To address this, we’ve developed Contextual Insights for our detection engine. By surfacing data like traffic volume to a broken A record, we ensure that every insight is an invitation to act.

We’re starting this journey of Contextual Insights by expanding the depth of our DNS insights. Instead of just flagging a broken record, we correlate the dangling signal with additional context and real-time traffic data to provide the “why” and the “how”.

For example, our Target Context identifies exactly which deleted resource the record points to, while our Impact Context shows you exactly how many users are still trying to reach that broken record.

With our revamped Security Overview dashboard, you’ll be able to identify and fix potential security issues proactively, rather than reactively. Try it out today and see the difference for yourself.