[BUG] Diagram of Elastic Security workflow is incomplete

[nastasha-solomon]

@jamesspi pointed out that the Elastic Security workflow diagram in the Elastic Security overview topic is missing a few components (e.g., EQL is not included under the detection engine). His recommendation was to request a new one from Product.

[MikePaquette]

Can we use this style of document instead?

I've updated it for public use in the docs in 7.16. Please let me know if it's too detailed or confusing.

PDF Version: Security_Arch_Diagram_09Dec2021.pdf

[nastasha-solomon]

Hey, @MikePaquette! We're still brainstorming ways to translate this diagram into docs that'll be useful and timely for our users. In the meantime, we were wondering if you had a simplified version of the diagram. We'd still like to use the version you provided, but am discussing whether something less detailed would be more suitable for the Overview topic. That topic primarily introduces users to the Security app and its core capabilities, so something this detailed might be a bit overwhelming to readers/new users. Something simpler could be more digestible and would give readers/new users an opportunity to understand the larger picture before drilling down into the more technical details.

[MikePaquette]

Hi @nastasha-solomon unfortunately we do not have a simplified version ready to use. Let's brainstorm to find the right level of detail to include w/o overwhelming the reader. What do you think would be appropriate to display here on the overview section?