The "Initial Intezer Case Creation" workflow template is designed for streamlined case management within organizations. This Torq workflow template automatically triggers upon receiving a RAW JSON alert from Intezer, efficiently mapping alert fields to custom fields and observables. It then creates a comprehensive new case with all the mapped details laid out in a predetermined format. This offering is a powerful tool for security teams to quickly initiate a structured incident response, allowing them to focus on addressing threats rather than managing case inputs manually.
Optional Triggers
["Use this workflow as a function after receiving or fetching Intezer alerts."]
Use Cases
Case Management
Workflow Breakdown
Map alert fields to custom fields and observables.
Creates a new case for the alert with a predefined layout.
Vendors
Utils, Torq Cases
Workflow Output
Select extended output to get complete case details.