Skip to main content

Workflow Template: Initial CrowdStrike Case Creation

Receives an alert event from CrowdStrike and creates a case with Torq using the field mapping nested workflow.

The "Initial CrowdStrike Case Creation" workflow template is designed to streamline incident response by automating the creation of cases from CrowdStrike alerts. Upon receiving an alert event, the workflow maps alert fields to a predefined case layout and generates a new case with this structured information. This process enhances efficiency in case management, ensuring that critical security incidents are promptly documented and addressed within the Torq platform.

Take Me to the Template

Trigger

CrowdStrike

Use Cases

Case Management

Workflow Breakdown

  1. Receives an alert event on a CrowdStrike Trigger.

  2. Map alert fields to a predefined case layout.

  3. Creates a new case for the alert with a predefined layout.

Vendors

Utils, CrowdStrike, Torq Cases

Tips

Related Articles
Workflow Template: Initial Intezer Case Creation
Workflow Template: Poll for new SentinelOne Threats and Open a Torq Case
Workflow Template: Poll for new CrowdStrike Alerts and Open a Torq Case
Workflow Template: Initial SentinelOne Case Creation
Workflow Template: Initial CrowdStrike Streaming Case Creation
Did this answer your question?