Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Is there a way to track false positive?

Pierre Kelbert
Pierre Kelbert May 21, 2024

I believe the most important cause of alert fatigue come from being notified for irrelevant events. The risk just being that "receiving an alert" will not be asociated by team members, to the idea something really happened and should be investigated quickly.

My wish would be to have the option to mark any acked alerts as being either a false or true positive with a kind of drop down field.

This way, in a second time, my team and I would have the chance to export the list of alerts where the monitor that triggered it should be reviewed.

Is that wish already feasible in OpsGenie? 🙏

Answer
Watch
Like Davidovitz likes this
169 views

1 answer

0 votes
Tom Russell
Tom Russell
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
Get recognized
May 21, 2024

The easiest way would simply be to have the responder add a tag that indicates whether the alert is a false positive (or true positive). This would, however, not be a simple drop-down.

If your Opsgenie level supports Actions, you could add a "Mark as False Positive" action, with the action channel adding that tag via an OEC script. That script could also export that alert to another system for further analysis.

 

View More Comments
Pierre Kelbert
Pierre Kelbert June 3, 2024

I didn't know about opsGenie action interesting.

 

via an OEC script

If I'm right that require of me to run a kind of daemon somewher? Is there no integration that bring the same result and would be managed by Atlasian?

 

 

Like
Reply

Suggest an answer

Log in or Sign up to answer
Opsgenie
Opsgenie
TAGS
AUG Leaders

Atlassian Community Events

    See all events