When alerts come into BigPanda they go through our data pipeline. Understanding the order of the pipeline can help you effectively enrich alerts.
Normalizer - Alerts get formatted into a BigPanda event
Enrichment mapping - The alert gets enriched according to mapping uploaded by the user.
Maintenance - Alerts that match any maintenance query get marked for maintenance.
Custom tags (Extraction) - Relevant custom extraction tag logic is executed and applied.
Custom tags (Composition) - Relevant custom composition tag logic is executed and applied.
Looking for more information on BigPanda's data pipeline? Check out our Setting up BigPanda course in BigPanda University.