Create Security Operations workflow triggers

Create a workflow trigger that contains a condition on a table.

Before you begin

Security Operations contains several workflow triggers in the base system:
Configuration item changes on an active Security Incident
Uses integration to enrich CI-related data as configuration items change.
Rescan vulnerable group
Rescans a vulnerable group, using the Scan vulnerability workflow, when you Close/Ignore the group.
Rescan vulnerable item
Rescans a vulnerable item, using the Scan vulnerability item workflow when you Close/Ignore the item.
Roles required:
  • To read: sn_sec_cmn.read
  • To create or update: sn_sec_cmn.write
  • To delete: sn_sec_cmn.admin

Procedure

  1. Navigate to All > Security Operations > Utilities > Workflow Triggers.
  2. Click New.
  3. Fill in the fields on the form, as appropriate.
  4. When you have completed your entries, right-click in the form header and select Save.
    WorkflowTriggers with filters example
    The Workflows tab appears. It contains workflows that are run when all filter conditions or filter group conditions are met.
  5. To add workflows, perform these steps.
    1. In the Workflows tab, click Edit.
    2. Use the condition builder, if needed, to locate the workflows you want to select, or use the slushbucket to select workflows and move them to the Workflows List.
    3. Click Save.
    The selected workflows are added.
  6. Click Update.