Articles on: Threats

Using Filters in the Threats List

Using Filters in the Threats List


Filters allow you to refine and organize large volumes of exposed identities with precision.

In the Threats List, filters appear on the left sidebar and operate instantly, updating the main table as selections are made.


This helps your security team quickly focus on the exposures that matter most.



Available Filters


The left-side filtering panel contains several filter groups:



1. Status


Filter threats based on their remediation workflow:


  • Active Threats

All exposures currently open or re-opened.


  • Closed Threats

Threats that have been manually closed after review or remediation.


This is especially useful for tracking progress during incident response.



2. Category


Classifies threats by the type of affected identity:


  • Employees

Internal users from your organization.


  • Customers

End-users or clients of your platform.


Categories help separate operational risks (employees) from platform-level risks (customers).



3. Watchers (Domains)


Filters threats by the specific domains you monitor.


Watchers include all domains added to your Selki workspace.

Each watcher displays the number of threats identified for that domain.


Example actions:

  • Investigate exposures only for a specific domain
  • Compare risk between internal and external assets
  • Prioritize high-volume domains


You can search watchers by name to quickly locate a target domain.



4. Risk Level


Sort exposures by severity:


  • Critical
  • High
  • Medium
  • Low


These levels help triage identities based on potential impact and urgency.



How Filters Behave


Real-time updates

Selecting or removing a filter immediately updates the table.


Multiple filters can be combined

You can apply combinations such as:


  • Employees + High Risk
  • Customers + Critical
  • Domain A + Medium Risk
  • Active Threats + Employees + High


This allows precision triage.


Filters remain visible during navigation

When you click into a threat’s detailed view and return, your filter state is preserved.



Clearing Filters


A “Clear Filters” option appears when filters are active.

Use this to return to the full threat list.



Search + Filters


The search bar at the top can be used together with filters. Example:


  • Filter: Employees
  • Search: “admin”


This refines results even further for fast analysis.



When to Use Filters


Filters are helpful when your team needs to:


  • Focus only on high-risk or critical threats
  • Review exposures specific to one domain
  • Separate internal vs. customer incidents
  • Manage remediation workload
  • Audit historical exposures per category or risk


They are essential for reducing noise in large datasets.



Next Article

Continue to the next article:


Article 4 – Threat Statuses (Open, Re-Opened, Closed)


Updated on: 01/12/2025

Was this article helpful?

Share your feedback

Cancel

Thank you!