diff --git a/docs/management/admin/event-filters.asciidoc b/docs/management/admin/event-filters.asciidoc
index 045527e9ba..46bac89d91 100644
--- a/docs/management/admin/event-filters.asciidoc
+++ b/docs/management/admin/event-filters.asciidoc
@@ -32,13 +32,13 @@ For example, in the KQL search bar, enter the following query to find endpoint n
 
 * To create an event filter from the Event filters page:
 .. Go to *Manage* -> *Event filters*.
-.. Click *Add Event Filter*. The *Add event filter* flyout opens.
+.. Click *Add event filter*. The *Add event filter* flyout opens.
 --
 +
 [role="screenshot"]
 image::images/event-filter.png[]
 . Fill in these fields in the **Details** section:
-  .. `Name your event filter`: Enter a name for the event filter.
+  .. `Name`: Enter a name for the event filter.
   .. `Description`: Enter a filter description (optional).
 . In the **Conditions** section, depending which page you're using to create the filter, either modify the pre-populated conditions or add new conditions to define how {elastic-sec} will filter events. Use these settings:
   .. `Select operating system`: Select the appropriate operating system.
diff --git a/docs/management/admin/images/event-filter.png b/docs/management/admin/images/event-filter.png
index 6d2706f471..27546be716 100644
Binary files a/docs/management/admin/images/event-filter.png and b/docs/management/admin/images/event-filter.png differ