dfir-iris
[FR] KPI and Metrics Related to Incident Response
Please ensure your feature request is not already on the roadmap or associated with an issue. This can be checked here.
Is not currently on roadmap from what I can tell.
Is your feature request related to a problem? Please describe. A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]
Not related to any current issue/problem.
Describe the solution you'd like A clear and concise description of what you want to happen.
The majority of IR platforms have some sort of KPI / metric reporting capability. It would be really great to get a basic set of these within DFIR-IRIS. Could be various "mean-time-to-xyz" metrics, as well as number of outstanding cases currently open / closed / etc.
Our management eats this type of stuff up, and it helps SOCs prove their value, as well as provide a higher-level view of what is going on.
Describe alternatives you've considered A clear and concise description of any alternative solutions or features you've considered.
None at this time.
Additional context Add any other context or screenshots about the feature request here.
