After you create a survey, you can use InsightIDR's built-in functionality to analyze the survey data, set the survey status, priority, and format, and communicate updates to your team.
Add data to the survey
You can add data to your survey, such as raw registration and participant data, to help you analyze events that lead to suspicious activity. If you are using a Windows machine, you can add endpoints or asset data to your survey.
Add endpoint task details
You can add endpoint data to a survey to view itProcess and forensic data, such as DNS cache, installed services, or registry keys.
Add endpoint data to the survey:
- Choose in the surveyExplore Context Data > Query Endpoints.
- Select one or more tasks to perform and configure the required details.
- Add one or more endpoints or add asset groups.
- Clickblushcommand. The collected endpoint data appears on the survey timeline as participants.
Add actor details
You can add data from your network that occurred during a specific date range and is associated with a specific user. The list of available network data is:
- adjusted account
- Advanced malware alerts
- active certification
- The cloud service account has been changed
- DNS query
- firewall
- intrusion detection system
- input verification
- Viral infection
- proxy web
Add participant information to the survey:
- Choose in the surveyExplore Contextual Data > Explore Actor Activity.
- Select your date range.
- Select the users or properties you want to add as survey participants.
- Clickblushcommand. Added users and assets appear on the survey timeline as participants.
Add registration information
Any registration data recorded by InsightIDR can be added to the survey.
Add registration data to the survey:
- Choose in the surveyExplore Contextual Data > Find Records.
- Select one or more records or record sets.
- Define your question. Looksearch logLearn more about writing queries.
- Find the necessary registration information.
- to choosesent to investigateAdd registration data as an actor. After that you can add context to the selected record.
- Clickblushcommand. The log line appears on the investigation timeline.
export data
You can export data to a PDF document or send it to a data exporter like ServiceNow.
update the status of the investigation
You can use the status of a survey to indicate where the survey is in the ranking process. Available states include:
- Open- Default status for all new surveys.
- Questionnaire- The investigation is ongoing.
- wait- The progress of the investigation has been halted while more information is gathered.
- closing- The investigation is over. totemperamentMust be selected to set this state.
The status is displayed on the Survey page and on the Survey Details page.
Update survey status:
- Choose a survey.
- choose an optionstatevalor
Manage research priorities
Investigation priority is a level of investigation determined based on the impact and urgency of detection results and associated assets.
System-created surveysIt inherits the priority of the detection rule that triggered it and is automatically classified into one of 4 categories: Critical, High, Medium, or Low. Studies without priority classification are marked as 'not assigned'. User-created surveys require a priority selection before the survey can be created successfully.
To override the legacy survey priority:
- to chooseprioritiesOpen the menu and select another priority. When you change the priority of a system-created survey, you overwrite the survey's inherited priority, but not the detection rule that created it.
Update Investigation Decision
The investigation layout captures your organization's conclusions from the classification process, whether or not the classification process is still ongoing. You can select a provision to indicate whether the investigation poses a legitimate threat.
New studies are assigned a default layout. Auto-created exams inherit their alerting and detection features. Manually created surveys have pending dispositions.
removal type
Available configurations include:
be decided
Temporarily apply this provision until you have determined whether the event represented by this study is benign, malignant, or unknown.
The investigation cannot be closed if the disposition is set to "Undecided".
benigno
This provision applies when the event represented by this investigation is known or anticipated behavior and is not expected to have any actual or potential adverse effect on the information system or the information contained within it.
You can determine that these events meet an acceptable business use case in the context of your environment. Therefore, no report or other action is required for this incident.
Use benign classification for events that are clearly associated with non-malicious, non-suspicious, or common low-risk or no-risk behavior in the context of your environment.
example:Benign events can be good practices by system administrators or general user behavior.
with malice
This agreement applies when the incident represented by this investigation is related to malicious activity and has been reported to you. A malicious event is an act intended to disrupt a computer network that, if not disrupted, may have an adverse effect on an information system or its information.
example:You are notified of an event. A more detailed analysis was carried out and there were signs of compromise. Malicious activities can cause changes to your environment, such as password resets or service reconfiguration.
a stranger
This provision applies when it is truly unknown whether the event is related to malicious activity and further investigation cannot be conducted. The incidents represented by this study may have been malicious, but that determination could not be made based on currently available data.
does not apply
Apply this provision to studies that do not contain activities that require additional review.
Some alerts occur due to compliance alerts or security software inactivity. You can use InsightIDR to receive notifications about specific network risks, but they are not the result of malicious activity.
To update the layout of a survey:
- Choose a survey.
- choose an optioncharactervalor
Add Assignee to Survey
You can assign open surveys to individual users and see exactly what your team is doing. Every time a user is assigned to a new survey, they will receive an email.
To assign users to surveys:
- Choose a survey.
- Clickassigneesvalor
- Enter the name of the assignee.
- Select proxy.
You can add and view comments related to a survey on the Survey Details page.
Add comments:
- Choose a survey.
- ClickObservationcommand.
- Enter your comment.
- Clickblushcommand.
Add an attachment to a survey
You can give your research additional context by uploading an attachment.
Attachments can also be added with comments, with some restrictions:
- Its size must be less than 50 MB.
- A maximum of 10 attachments per comment is allowed.
- A maximum of 50 attachments are allowed per survey.
Cannot load malware samples
All attachments are scanned for malicious content during upload. Malware samples are not allowed and are considered malicious content, which restricts user access.
Add attachments:
- Choose a survey.
- Clickadd attachmentscommand.
- Drag and drop a file or browse your computer and select one.
- Clickadd to survey.
- Clickblushcommand.
Create automated survey-based workflows
You can use prebuilt workflows such as quarantining assets, creating tickets, and running custom security processes to automatically respond to detections as they occur in your environment. Read more aboutWorkflow Automator.
To set up an automated workflow:
- To the investigation.
- ClickTo take actioncommand.
- Choose an action category.
- Select the automated action you want to perform. Depending on your automation, you may need to perform additional configuration steps. These range from finding assets to quarantining them to creating Jira tickets. Follow the setup instructions to complete the installation.
- ClickTo take actioncommand.
FAQs
Analysis survey | InsightIDR documentation? ›
There are two types of survey analysis methods: Quantitative or Statistical analysis. Qualitative analysis.
How do you analyze written survey responses? ›- Read through a couple of responses to get a sense of what folks are saying. ...
- Map out a few general categories to put each of the responses in. ...
- Create sub-categories underneath your general ones to provide even richer detail. ...
- Double check and re-categorize. ...
- Put a number on it!
- Each row (case) should represent one subject, survey response, or experimental unit.
- For a given multiple response question, each answer option should be represented in a separate column (variable).
- Interrogate your question.
- Cross tabulate quantitative results.
- Expand with open-ended questions.
- Analyze your open-ended data.
- Visualize your results.
- Interpret actionable insights.
- Create visual representations of survey data. ...
- Read individual responses to uncover hidden insights to shape your product and messaging. ...
- Turn qualitative insights into quantitative data.
There are two types of survey analysis methods: Quantitative or Statistical analysis. Qualitative analysis.
What is survey analysis method? ›What is survey analysis? Survey analysis refers to the process of analyzing your results from customer (and other) surveys. This can, for example, be Net Promoter Score surveys that you send a few times a year to your customers.
How do I analyze survey results in Excel? ›- Step 1: Calculate simple statistics (mean, max, etc.) ...
- Step 2: Graph Each Question and Add Error Bars.
- Step 3: Add Histograms of Each Question.
- Step 4: Plot Averages Over Time, with Error Bars.
- Step 5: Test for Significant Differences with Student's t-Test.
The two primary methods for data analysis are qualitative data analysis techniques and quantitative data analysis techniques. These data analysis techniques can be used independently or in combination with the other to help business leaders and decision-makers acquire business insights from different data types.
What is an example of data analysis? ›A simple example of Data analysis is whenever we take any decision in our day-to-day life is by thinking about what happened last time or what will happen by choosing that particular decision. This is nothing but analyzing our past or future and making decisions based on it.
How do you write a survey analysis report? ›
- Use headings and subheadings to break up the report. ...
- Begin with an executive summary. ...
- List your objectives in the background section. ...
- Compare your survey to others. ...
- Explain how you conducted the survey. ...
- Don't put the questions in the methodology. ...
- Separate the results and the analysis.
You may be able to detect a statistically significant difference by increasing your sample size. If you have a very small sample size, only large differences between two groups will be significant. If you have a very large sample size, both small and large differences will be detected as significant.
How do you analyze qualitative data from a survey? ›- Prepare and organize your data. Print out your transcripts, gather your notes, documents, or other materials. ...
- Review and explore the data. ...
- Create initial codes. ...
- Review those codes and revise or combine into themes. ...
- Present themes in a cohesive manner.
Descriptive, predictive and prescriptive analytics.
How do you analyze a yes or no questionnaire? ›You simply need to tally the Yes and No responses for each question for all the participants and divide it by the total number of participants to get the percentages of Yes and No for each question. Of course, if it is a mixed-methods study, you will have to score (evaluate) more qualitatively.
What type of research is survey analysis? ›Survey Research is a quantitative research method used for collecting data from a set of panel or respondents.
What are the qualitative data analysis methods? ›- Content analysis.
- Thematic analysis.
- Narrative analysis.
- Grounded theory analysis.
- Discourse analysis.
What is a Survey Analysis Report? A survey analysis report provides the bigger picture as communicated by the data. So it's just a report that conveys a story to the audience. You really need to give special attention to the survey analysis report because it can make or break the whole exercise.
What is a survey analysis plan? ›An analysis plan helps you think through the data you will collect, what you will use it for, and how you will analyze it. Creating an analysis plan is an important way to ensure that you collect all the data you need and that you use all the data you collect. Analysis planning can be an invaluable investment of time.
What is the best way to graph survey results? ›Pie charts are among the most popular chart types used for comparing survey results. Each arc of a pie chart is outlined by creating outspread lines. These emanate from the circle's focal point to its closures.
What are the 4 steps of data analysis? ›
All four levels create the puzzle of analytics: describe, diagnose, predict, prescribe. When all four work together, you can truly succeed with a data and analytical strategy.
How to write a analysis? ›- Choose your argument.
- Define your thesis.
- Write the introduction.
- Write the body paragraphs.
- Add a conclusion.
- Clearly states the research objectives and hypothesis.
- Identifies the dataset to be used.
- Inclusion and exclusion criteria.
- Clearly states the research variables.
- States statistical test hypotheses and the software for statistical analysis.
- Creating shell tables.
- Identify an issue or question. Before developing your analytical report, it's important to identify an issue or question. ...
- Gather relevant information. ...
- Choose a format. ...
- Add charts and other elements. ...
- Use design practices. ...
- Make recommendations.
What are two examples of analytical reports? Two examples of analytical reports would be a report on investigating business opportunities and report on problem solving. An example of investigating a business opportunity would be if a company did a report on expanding their product into an additional market.
What is analysis report format? ›Traditional types of analytical reports typically consist of a title page, table of contents, introduction, methodology, body section, conclusions, recommendations, and a bibliography.
Is 30 respondents enough? ›Academia tells us that 30 seems to be an ideal sample size for the most comprehensive view of an issue, but studies with as few as 10 participants can yield fruitful and applicable results (recruiting excellence is even more important here!).
Is 50 respondents enough? ›50-100 respondents for emotion measurement
A sample size consisting of 50-100 respondents will be sufficient for obtaining comprehensive behavioral insights during emotion measurement.
The minimum sample size is 100
Most statisticians agree that the minimum sample size to get any kind of meaningful result is 100. If your population is less than 100 then you really need to survey all of them.
- Step 1: Prepare the Data. ...
- Step 2: Define the Unit of Analysis. ...
- Step 3: Develop Categories and a Coding Scheme. ...
- Step 4: Test Your Coding Scheme on a Sample of Text. ...
- Step 5: Code All the Text. ...
- Step 6: Assess Your Coding Consistency. ...
- Step 7: Draw Conclusions from the Coded Data. ...
- Step 8: Report Your Methods and Findings.
What are the 7 steps of qualitative data analysis? ›
The Clinical-qualitative Content Analysis technique comprises seven steps: 1) Editing material for analysis; 2) Floating reading; 3) Construction of the units of analysis; 4) Construction of codes of meaning; 5) General refining of the codes and the Construction of categories; 6) Discussion; 7) Validity.
What are the two most commonly used quantitative data analysis methods? ›The two most commonly used quantitative data analysis methods are descriptive statistics and inferential statistics.
What are the three C's of data analysis? ›We've divided them into three related categories: completeness, correctness, and clarity.
What are the 4 types of analysis? ›Modern analytics tend to fall in four distinct categories: descriptive, diagnostic, predictive, and prescriptive.
What are the three core aspects of effective data analysis? ›There are three tiers of data analysis: reporting, insights, and prediction. As an organization matures in their data analyses, they move through the tiers.
How to tell if survey responses are statistically significant? ›We calculate statistical significance using a standard 95% confidence level. When we display an answer option as statistically significant, it means the difference between two groups has less than a 5% probability of occurring by chance or sampling error alone, which is often displayed as p < 0.05.
How do you critically Analyse a questionnaire? ›- Critical appraisal checklist for a questionnaire study. ...
- Was a questionnaire the most appropriate method? ...
- Have claims for validity been made, and are they justified? ...
- Are example questions provided? ...
- Are details given about the piloting undertaken.
Likert scale data can be analyzed as interval data, i.e. the mean is the best measure of central tendency. use means and standard deviations to describe the scale.
Is 50 respondents enough for quantitative research? ›If the research has a relational survey design, the sample size should not be less than 30. Causal-comparative and experimental studies require more than 50 samples. In survey research, 100 samples should be identified for each major sub-group in the population and between 20 to 50 samples for each minor sub-group.
What makes a survey statistically valid? ›Statistical Validity indicates how much one can rely on the conclusions derived from a survey sample. The combinations of proper sampling methods, adequate sample sizes and unbiased data collection improve the reliability of survey results.
How do you analyze qualitative survey results? ›
- Prepare and organize your data. Print out your transcripts, gather your notes, documents, or other materials. ...
- Review and explore the data. ...
- Create initial codes. ...
- Review those codes and revise or combine into themes. ...
- Present themes in a cohesive manner.
Critical analysis, also referred to as critical discourse analysis or critical discourse studies, is an approach to research that investigates the relationship between language and power by examining how everyday “texts” create and reinforce social inequality and hierarchy.
How do you positively critically analyse? ›- Choose your source material and read it carefully. ...
- Research the background to the source material thoroughly. ...
- Structure your argument around a main statement. ...
- Introduce main paragraphs with targeted topic sentences. ...
- Include a wide range of supporting evidence and data.
- Sign in to Google Surveys.
- Click the survey you want to view on the survey dashboard.
- Click the text of any question to see individual question results. ...
- Click the inferred-demographic segments in the left-hand pane to segment the data by inferred age, gender, or geography.
Count the number of questionnaires in each pile and record the number on the chart. For example, if 67 out of 100 questionnaires indicate the respondents were female, 30 indicate male and the rest did not indicate gender, record these numbers in the designated column.
How do you Analyse 5 point Likert scale data? ›Step 1: For each question on the questionnaire, calculate the total number of responses for each sentiment level (Strongly Disagree, Disagree, Neutral, Agree, Strongly Agree). Step 2: Add the totals, and divide by the total number of respondents: 1 + 0 + 0 + 0 + 5 = 6 / 2 respondents = 3.
What is a 4 point Likert scale analysis? ›A 4-Point Likert Scale is a one-dimensional scale you can use to collect the attitudes and opinions of your target market. It uses an ordinal scale to help you understand the views and perspectives of the market towards your brand. Besides, it has different variants to help your business personalize its communication.
What is the 5 point Likert scale? ›The 5-point Likert scale is a global scale that is used to assess attitudes and views. It is a scale with 5 answer options which has two utmost poles and a neutral option linked with intermediate answer options. For example, agree, fully agree, neither agree nor disagree, disagree, and fully disagree.