SonicWall's endpoint security platform CaptureClient helps security administrators detect, analyze and mitigate threats on endpoints to safeguard an organization's network and data. SonicWall approached us because they were receiving a large volume of customer support tickets for Capture Client. We redesigned CaptureClient, to improve navigation, scalability, and efficiency.
- 21% decrease in number of customer tickets related to policy configuration.
After conducting user research and understanding their product, we found three significant problems.
This project utilized User Centered design (UCD) process which consisted of the following phases
I started the journey by first understanding SonicWall's business goals about CaptureClient.
Achieve NPS score of 4.5 (out of 5) for customer satisfaction
Decrease dependency on customer support tickets by 90%
Increase user adoption of CaptureClient
UI alignment with their current design system
Before starting our user research interviews, I looked at the existing CaptureClient platform from a basic heuristics lens. For example, the navigation had multiple sub-menus, which, when all expanded, hampered the discoverability of items that go below the fold. First, this helped me identify the obvious quick fixes and secondly helped me gain a better understanding of the product and the domain.
We conducted 1:1 interviews with our target users in the following steps
To recruit the right kind of users for research and usability testing
Crafting a questionnaire based on user research goals
The responses collected were summarized into a detailed user persona and insights document
Our research goals were -
We documented our research findings into two personas - Security Analyst and Security Administrator.
Top-down propagation of exclusions and all other security policies would significantly reduce the deployment time, as changing policies specific to a device is only done occasionally.
There are scenarios where the same policy must be applied to all customers. Adding a change to all tenants together could be helpful (e.g. adding an exclusion to all tenants).
Users preferred the labor effort of maintaining a static list of users over dealing with false positives of a dynamic list.
Users don't typically react urgently when they see Infected devices or active threats due to the tone of voice."It makes you think like this is the end of the world, but really it is not."
Though I redesigned the entire CaptureClient Platform, I think a few value additions made the most impact on the user experience.
Our interviews with new users of the CaptureClient application revealed that the top labels in the navigation needed to be more intuitive, and users had to open all the tabs to know what they would find there. Therefore I eliminated the individual sub-pages in the left navigation to directly showed the pages upfront for efficiency and clarity.
The architecture was redesigned based on the items themselves rather than the type of function. This eliminated unnecessary segregation and grouped related functionalities. For example, policy configuration now includes blacklists, exclusions, device control, and configuration settings. Threat detection was moved to a prominent navigation item for quick access by security analysts. Overall, the redesign improves organization and usability.
An inheritance feature was introduced for security policies to simplify updates. Most policies remain unchanged for device and user groups, except in special cases. Analysts can now edit a policy for a user group by selecting the group, turning off inheritance, and updating the policy. This user-centric approach reduced seven steps as compared to the previous flow.
I designed two different dashboard views on the selected scope - an all-tenant view and a single-tenant view. Only actionable data was displayed to make them concise and avoid information overload.
We redesigned the tenant set-up flow in CaptureClient to address difficulties in tracking tenant settings when adding a new tenant. A step-by-step guide automatically appears when a new tenant is added, improving the overall experience, which users appreciated.
Based on user research findings, we introduced a reports module to the product to address the need for security analysts to send reports to their higher management. Previously, analysts would often send screenshots of the dashboard as reports. The new module allows users to select the desired data type and generate comprehensive reports, improving the reporting process significantly.
Usability testing was conducted on the redesigned workflows, including dashboard, scope interaction, policy management, group creation, and tenant onboarding. We made iterative design improvements based on the feedback received to enhance the usability further.
.png)
.png)
I also built a UX specifications document on Keynote that thoroughly describes the new features and how they work. The final UI-aligned designs are peppered with pointers that refer to a detailed description of each individually marked element on the screen.
- 21% decrease in number of customer tickets related to policy configuration.
- Customer testimonial on SonicWall's website after CaptureClient 3.5 with our designs was released.
Find something interesting? Contact me at
awaneemjoshi@gmail.com
