Skip to main content

Workflow Template: Initial CrowdStrike Streaming Case Creation

Receives an alert event from CrowdStrike Streaming integration to create a case with Torq using the field mapping nested workflow.

Updated today

The "Initial CrowdStrike Streaming Case Creation" workflow template is designed to streamline incident response by automating the creation of cases from CrowdStrike alerts. Upon receiving an alert event via a CrowdStrike Streaming Trigger, the workflow maps alert fields to a predefined case layout and generates a new case. This process enhances efficiency in case management by ensuring consistent and structured case documentation, allowing security teams to focus on investigation and resolution.

Take Me to the Template

Trigger

CrowdStrike Streaming

Use Cases

Case Management

Workflow Breakdown

  1. Receives an alert event on a CrowdStrike Streaming Trigger.

  2. Map alert fields to a predefined case layout.

  3. Creates a new case for the alert with a predefined layout.

Vendors

Utils, CrowdStrike, Torq Cases

Related Articles
Workflow Template: Initial Microsoft Defender for Endpoint Case Creation
Workflow Template: Initial Intezer Case Creation
Workflow Template: Poll for new CrowdStrike Alerts and Open a Torq Case
Workflow Template: Initial CrowdStrike Case Creation
Workflow Template: Initial SentinelOne Case Creation
Did this answer your question?