The Incidents queue is the starting point for threat investigations. It provides high-level information about each incident, like the impacted machines, the sources of alerts, and the severity. Incidents optimize your time by helping you to triage, investigate, and remediate related alerts together. For more tips like this, check out the working remotely playlist at www.youtube.com/FoetronAcademy . Also, if you need any further assistance then you can raise a support ticket and get it addressed.