Security Operations spoke

Provides Security Operations actions for flow designers to manage Security Incident Response flow templates.

Security Incident Response flow templates

The Security Incident Response flow templates are created using the Flow Designer.
Note: Each of the flows is triggered when the Category in a security incident is set or changed.
Template Description
Security Incident Confidential Data Exposure flow template Perform a series of tasks designed to handle the exposure of sensitive data.
Security Incident Denial of Service flow template Perform a series of tasks designed to handle Denial of Service (DOS) attacks.
Security Incident Lost Equipment flow template Perform a series of tasks designed to handle lost equipment.
Security Incident Malicious Software flow template Perform a series of tasks designed to handle malicious software on your network.
Security Incident Phishing flow template Perform a series of tasks designed to handle spear phishing emails on your network.
Security Incident Policy Violation flow template Perform a series of tasks designed to handle security policy violations.
Security Incident Reconnaissance flow template Perform a series of tasks designed to handle reconnaissance on your network.
Security Incident Rogue Server or Service flow template Perform a series of tasks designed to handle activity from rogue servers or services affecting your network.
Security Incident Spam flow template Perform a series of tasks designed to handle email spam on your network.
Security Incident Unauthorized Access flow template Perform a series of tasks designed to handle unauthorized access to your network.
Security Incident Web/BBS Defacement flow template Perform a series of tasks designed to handle vandalism directed against one of your organization's BBS or web sites.