Skip to main content

Poll for new Veeam ONE Alarm and Open a Torq Case - Workflow Template

Creates a case in Torq when security-related alarms in Veeam ONE are triggered in a Warning or Error state.

Updated this week

This Torq workflow template initiates an incident response process when Veeam ONE security alarms are elevated to a Warning or Error state. Upon alarm detection, it auto-generates a Torq case with specific severity levels and SLAs—HIGH severity and a 4-hour SLA for warnings, CRITICAL severity with a 1-hour SLA for errors. This workflow centralizes case management and ensures prompt action, driving efficient incident resolution and reducing response times for critical alerts.

Take Me to the Template

Use Cases

Case Management , DSPM

Workflow Breakdown

  1. Creates a case in Torq using a field mapper when security-related alarms in Veeam ONE are triggered in a Warning or Error state.

  2. Helps ensure that important security alerts are tracked and investigated in Torq.

  3. Sets the severity and SLA for each case in Veeam based on the alarm status.

  4. If the Veeam ONE alarm status is Warning, the Torq severity is set to HIGH , and the SLA is 4 hours.

  5. If the Veeam ONE alarm status is Error severity is Infected, the Torq severity is set to CRITICAL, and the SLA is 1 hour.

  6. Attaches a predefined Runbook

Vendors

Utils, Torq Cases

Related Articles
Creating Cases in Torq
Create a Torq Case from a QRadar Offense - Workflow Template
Notify on Open and In-Progress Torq Cases Approaching the SLA - Workflow Template
Get Triggered Alarms from Veeam ONE - Workflow Template
Poll for new Veeam Backup & Replication Events and Open a Case - Workflow Template
Did this answer your question?