Just wanted to see how others have incorporated Extrahop Reveal(x) detections into their security operations workflows (i.e SIEM, Tickets, Email alerts, etc.) Currently I have email alerts set to go out but because a majority of our detections seem to be benign, it very “noisy”. and most of the team just punts them into a subfolder in their inbox. I tend to just login to our ECA and go through the detections cards manually and acknowledge them as I investigate their nature and look for opportunities to “tune” things out by Hiding the detections. Anyone else have ideas on workflow and how to improve the fidelity of the detections?