It would be wonderful if you present with clear pixels of your screen throughout the entire explaination, it gives a better understanding of the interface of the software. But thank you.
As always Alex, this was a great walkthrough and very clear guidance. One that I somehow struggle with, and I understand that it is probably very simple, is to create a rule that when an alert I create is triggered, it will email either me, or the SOC with some details of the alert showing in the email and steps to take in order to resolve it. I am thinking that I need to first create a Playbook which would send the email off to whomever, and once that is created I can simply set an action for other alerts where required to also run that Playbook (sent an email to myself or the SOC to investigate). Thank you.
yes indeed that is the case. Create an emailing playbook and call it from the automation rule.. maybe you want to set filters on severity, otherwise your mailbox may flood :)
It would be wonderful if you present with clear pixels of your screen throughout the entire explaination, it gives a better understanding of the interface of the software. But thank you.
As always Alex, this was a great walkthrough and very clear guidance.
One that I somehow struggle with, and I understand that it is probably very simple, is to create a rule that when an alert I create is triggered, it will email either me, or the SOC with some details of the alert showing in the email and steps to take in order to resolve it.
I am thinking that I need to first create a Playbook which would send the email off to whomever, and once that is created I can simply set an action for other alerts where required to also run that Playbook (sent an email to myself or the SOC to investigate).
Thank you.
yes indeed that is the case. Create an emailing playbook and call it from the automation rule.. maybe you want to set filters on severity, otherwise your mailbox may flood :)
So what do you do if Bruce banner gets angry? Do we have an automation for that critical threat?
Great video btw