IBM QRadar SOAR

IBM QRadar SOAR

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only
Back to discussions
Expand all | Collapse all

create Incidents for FireEye NX automatically using FireEye NX SOAR application

  • 1.  create Incidents for FireEye NX automatically using FireEye NX SOAR application

    Posted Mon September 04, 2023 08:25 AM
    Edited by Mohamad islam Hamadieh Tue September 05, 2023 04:55 AM

    Dear Team ,

    I have recently installed and deployed FireEye NX SOAR application 

    The app comes with punch of functions, unfortunately, it dose not come with a functionality to periodically pull incidents like sentinel application for example.

    I was wondering if its feasible to create a playbook that could pull alerts from fire eye periodically.

    Thanks.

    Best RegardsMohamad islam 

     



    ------------------------------
    mohamad islam hamadieh
    ------------------------------



  • 2.  RE: create Incidents for FireEye NX automatically using FireEye NX SOAR application

    Posted Fri September 08, 2023 09:41 AM

    Hi Mohamad islam,

    Greetings. To automatically pull the alerts in certain intervals, the Sentinel application has poller functionality which is not present in FireEye NX application at the moment. It is not feasible to just create a playbook to perform the same action. 

    Thank you



    ------------------------------
    Dillip Kumar Nath
    ------------------------------

    Original Message


  • 3.  RE: create Incidents for FireEye NX automatically using FireEye NX SOAR application

    Posted Sun September 10, 2023 02:53 AM

    dear dillip ,

    thank you for the explanation.

    Best Regards,Mohamad islam Hamadieh

    SOC Engineer

    Original Message