: Configure Slack Notification Alerts on Data Security
Focus
Focus

Configure Slack Notification Alerts on Data Security

Table of Contents

Configure Slack Notification Alerts on Data Security

Learn how to configure notifications on Data Security so that administrators and end users are notified of incidents.
Data Security enables you to configure immediate Slack notifications (alerts) when the service discovers an incident. The notification is sent as a Slack channel message. You can send notifications to both administrators and end users. For supported SaaS apps, administrators and end users can immediately manage from within the notification. In doing so, you create an efficient incident management workflow. Notifications to end users provide administrators a low-touch mechanism for training end users on your organization’s internal policies.
For Slack Pro and Business, you can delete the message that contains sensitive data when it’s against the organization’s policy
  1. Log in to SaaS Security. Go to SettingsWorkflow SettingsSlack NotificationsConfigure.
  2. In Configure Slack Notifications, choose the Application and enter the Slack Channel name to which you want to post the notification to the supported SaaS app. Channel not found displays if you are not a member of the channel.
    • You should be a member of the channel.
    • The channel must be private.
    • The Palo Alto Networks NG-CASB app must be integrated in the private channel.
  3. Toggle on Proactive Training Mode and enter a Custom Message to provide a message that encourages your end users to take action on the incident.
    Use the following best practices in your message:
    • Begin with a concise headline. For example, A potential information security incident was detected!
    • Educate your users on the risks to sensitive content.
    • Link to your company’s policy.
    • Include a call-to-action statement.
  4. Click Save.
  5. (Optional) Manage the incidents.