An event generated by a correlation search as a security alert in Splunk Mission Control. Comparable to a notable event in Splunk Enterprise Security (Cloud), an incident is an item that you can investigate. As an example, it might include an email from a phishing inbox.

Related terms

For more information

In Investigate and Respond to Threats in Splunk Mission Control: