Separate Policy for Alerting
When working in large environments with several sub-estates it would very useful having a separate policy for the alerting via E-Mail or SNMP
Typically components of the AV+HIPS policy (e.g. Exclusions) can be reused in the sub-estates but in scenarios where have to alert different groups of administrators it would improve the usability when we could provide a separate alerting policies.
So we would have a much smaller count of AV+HIPS policies and only one alerting policy per sub-estate.
Florian Bertaux commented
It could be nice to improve the template too with basic information like.
Machine Name, IP, Group Name