You can do a NOT list in this way as well
SecurityIncident
| where Title !in ('Suspicious Activity Generated by Host','Azure activity matching known threats','Atypical Travel')
or like this
let _exclude = dynamic(['Suspicious Activity Generated by Host','Azure activity matching known threats','Atypical Travel']);
SecurityIncident
| where Title !in (_exclude)
If you need a large list and want it centralized then a Watchlist would be my advise. https://learn.microsoft.com/en-us/azure/sentinel/watchlists
There is also, ways to counts top 10 (or 10k), example below
SecurityIncident
| summarize count() by Title
| top 10 by count_