diff --git a/salt/elasticsearch/templates/so/so-common-template.json b/salt/elasticsearch/templates/so/so-common-template.json
index 777bf3f53..c9772b5db 100644
--- a/salt/elasticsearch/templates/so/so-common-template.json
+++ b/salt/elasticsearch/templates/so/so-common-template.json
@@ -8,6 +8,8 @@
     "index.refresh_interval":"30s",
     "index.routing.allocation.require.box_type":"hot",
     "index.mapping.total_fields.limit": "1500",
+    "index.sort.field": "@timestamp",
+    "index.sort.order": "desc",
     "analysis": {
       "analyzer": {
         "es_security_analyzer": {