Improved Snippet and Report Display for Enterprise Data Loss Prevention (E-DLP) solves the critical challenge data security administrators face when identifying specific data patterns and data profiles that trigger DLP incidents. This enhancement reduces incident resolution times and eliminates the need for additional resources for manual investigation by clearly showing which data patterns and data profiles triggered each incident. With this improved visibility, data security administrators can effectively triage incidents, understand information Security policy rule violations, and efficiently educate users to prevent future violations.

When viewing incident details, you can now see all matched profiles in the report display, with a toggle to filter for only the profiles that triggered the incident. When you select a matched profile, the system shows you the specific data patterns that caused the match, along with their confidence levels and occurrence thresholds. This information remains available even when snippets are disabled, ensuring you always have the context needed to understand the incident. Additionally, the Unified Incident Manager view now enables filtering by triggered data patterns and data profiles, helping you identify trends and recurring issues.

This enhancement supports all supported Enterprise DLP enforcement channels. When examining the DLP incident snippet details, Enterprise DLP displays which data pattern triggered the incident and specific details about the data patterns such as the pattern type, the proximity keywords, and the number of occurrences for high confidence level. For regex patterns, Enterprise DLP displays occurrence counts for each confidence level and examine up to three snippets per confidence level, giving your data security administrators tangible examples of the policy rule violations.

By providing clear insight into which data patterns and data profiles triggered incidents, this feature significantly reduces the operational friction in your security operations center. Data security administrators can quickly understand policy rule violations, take appropriate remediation actions, and provide targeted user education, ultimately strengthening your organization's data security posture and reducing the risk of data exfiltration.