A case in Case Management refers to a structured record of an issue, request, or investigation that requires tracking, resolution, and collaboration. Cases typically contain relevant details such as the issue description, assigned users, status, priority, timestamps, and associated actions or documentation.

In Blink’s Case Management, a case represents a security event, incident, or investigation that is logged and managed through automated workflows and integrations with 3rd-party security systems. Each case helps teams track progress, document findings, and ensure timely resolution.

To view the Case Tables Runtime Limitations click here. Keep in mind that the xTables in Cases have the same runtime limitations as the tables in the workspace

Create a New Case

To learn more about how to automate the process of creating a new case, navigate to Blink’s Automated Case Management documentation, to learn more
1

Navigate to Cases

In your selected workspace, navigate to the sidebar and select the ‘Case’ tab.

2

Open the New Case Form

Navigate to the top-right corner and click the ‘New Case’ button.

3

Fill in all the necessary fields

Once completed, select the ‘Add Record’ button in the bottom-right corner.

Editing a Case’s Status

1

You can customize your case’s status by clicking on icon next top the Status field in the case table and selecting the edit option.

2

You can edit your case’s status by modifying the names, the color that represents the status and add your own active statuses.

3

Lastly, you can modify the SLA for the maximum time a case can remain in the specific status.

4

  1. After you have made your desired changes click the Save button.

Summary Widget

Above the case table, you will find the Summary Widgets, showing the total alerts ingested (line chart), the total number of alerts processed (line chart), the total number cases opened by severity (donut chart), the total number of closed cases (donut chart), the total number of cases categorized by type (bar chart) and whether the SLA status was met or exceeded (donut chart).

Tip: In the top right corner, click the bar chart icon. Then, check the box next to the Summary widgets you want to show, or uncheck it to hide any widgets you don’t want displayed.

Clickable Tags in the Linked Cases Columns

Clicking on the tags in the “Linked Cases” column in the selected Case Management table (such as the Cases Table, Observables Table, Alerts Table, or Attachments Table) will open its Case Overview in a new browser tab.