Screenshot of VECTRA network security platform showing settings for external connectors, Active Directory integration, and account status.

UX Research + Design

VECTRA AI

Background

Vectra AI is a cybersecurity platform with enterprise-level security controls. Our customers needed the ability to configure multiple Active Directory (AD) integrations to support their complex organizational structures. This feature is interconnected with the Auto Lockdown feature, requiring a design approach that would support consistency across the platform.

My Role

As the UX Design Lead, I worked with a product manager, engineers, and sales engineers (expert users of this feature) to create and test a scalable, low-friction solution that accounted for interdependent systems, edge case error handling, and build upon existing design patterns. To accomplish this, I:

  • Led UX strategy and execution from requirements to delivery

  • Collaborated closely with PM, backend engineers, and a Principal UX Designer

  • Conducted usability testing with internal sales engineers (expert users)

  • Supported frontend and backend engineers through handoff and build

Problem

The platform previously supported only one AD configuration. Customers with multiple AD environments couldn’t fully implement automated security features like Auto Lockdown. This was causing customer churn, frustration during customer onboarding, and limiting the utility of Vectra AI as a cybersecurity platform.

Screenshot of Vectra cybersecurity software under Settings tab, specifically on External Connectors with options for context enrichment, Active Directory, and network configurations.

Approach

  1. Systems Discovery + Stakeholder Alignment

    • Reviewed PM requirements and clarified downstream implications: Auto Lockdown logic and AD references on host pages.

    • Conducted working sessions with backend engineers to understand how current logic would break with multiple ADs.

    • Identified previously undocumented error scenarios.

Screenshot of a computer dashboard with a menu on the left, showing various options such as Respond, Hunt, Dashboard, Detections, Investigate, Reports, Data Sources, Network Stats, Manage, Settings, My Profile, Log Out, and Collapse. The main section displays the Settings tab with an external connectors page, showing context enrichment options, with some settings toggled on or editable.

2. Rapid Design Iteration + Internal Validation

  • Crafted high-fidelity wireframes to explore configuration patterns and state changes.

  • Iterated quickly in Figma with asynchronous feedback loops from PM and engineers.

  • Built a clickable prototype to simulate key flows.

3. Usability Testing with Internal Experts

  • Wrote a testing plan that engaged Sales Engineers (SEs) as test participants: they support real customers and regularly interact with the AD configuration workflows.

  • Conducted 4 usability tests focused on:

    • Configuration clarity

    • Comprehension of error handling

    • Confidence in saving multiple ADs

    • Validation of feature for customer impact

  • Gathered feedback and integrated insights into the final design.

4. Delivery & Implementation Support

  • Finalized the design spec with detailed annotations for edge cases and system behavior.

  • Partnered closely with the engineers implementing both frontend and backend logic.

  • Provided ongoing design QA, including logic updates to error messaging discovered mid-build.

Iterations in progress!

〰️

Iterations in progress! 〰️

Finalized Designs + Workflow

When users navigate to the External Connectors setting within their Settings, they are presented with the status of their Active Directories

Screenshot of Vectra security platform settings page, focusing on External Connectors tab, showing network connection statuses and configuration options.

Upon digging deeper, users have the ability to

  • Toggle auto lockdown on and off

  • Edit and disable existing active directories

  • Connect new active directories

Screenshot of VECTRA security platform settings page, specifically on the External Connectors tab showing context enrichment and Active Directory integration status for three directories, with options to add directories and toggle settings.
Screenshot of a software interface with a form titled 'Add Active Directory' on the 'Settings' page of VECTRA. The form includes fields for AD Name, Vectra Account Bind DN, Active Directory Password, URI, Base DN, Query Timeout, and Connection Timeout, with options to add URI and Base DN. The sidebar on the left has menu options such as Respond, Hunt, Dashboard, Detections, Investigate, Reports, Data Sources, Network Stats, Manage, Settings, My Profile, Log Out, and Collapse.

Description of wireframe + use case

Description of wireframe + use case

Screenshot of VECTRA security platform's 'External Connectors' under Settings, showing Active Directory integration with status indicators and URI mappings.

Description of wireframe + use case

Screenshot of Vetra settings page focused on External Connectors, showing active directory connections, status indicators, and connection issues.

Outcomes + Impact

✅ Enabled support for multiple Active Directory instances

✅ Preserved functionality of Auto Lockdown

✅ Reduced setup friction for large enterprise customers

✅ Anticipated and addressed backend error states before launch

Key Takeaways

Systems Thinking helped anticipate breakpoints between Auto Lockdown and AD logic early in the design phase.

Collaboration with backend engineers was crucial to uncovering previously unknown system constraints.

Rapid Iteration allowed the team to course-correct quickly without bottlenecks.

Usability Testing with internal Sales Engineers provided valuable implementation insights without burdening existing customers with testing participation.