Don't expect to just do the find in the log for the keyword threat and report it. There should be some process in your company to study the log and try to understand that