Welcome to the IBM Community, a place to collaborate, share knowledge, & support one another in everyday challenges. Connect with your fellow members through forums, blogs, files, & face-to-face networking.
Engineering
Search Options
Search Options
Log in
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Security
Topic groups
IBM Security Cloud Pak for Security
IBM Security Global Forum
IBM Security Guardium
IBM Security MaaS360
IBM Security QRadar
IBM Security QRadar SOAR
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
IBM Security Skills & Learning
User groups
Events
Upcoming Security Events
IBM Community Webinars
All IBM Community Events
Participate
Gamification Program
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Security Users
All IBM Community Users
Resources
Community Front Porch
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Technology Zone
IBM Training
Security Blogs
IBM Security Experts
Security Learning Academy
Request for Enhancements
IBM Community Partner Program
Marketplace
Marketplace
IBM Security Community
In this user community of over 14,000 members, we work together to overcome the toughest challenges of cybersecurity.
Join the Community
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Security User Groups
User Group Tag Test
IBM Security QRadar SOAR
View Only
Group Home
Discussion
4.4K
Library
171
Blogs
86
Events
1
Members
1.8K
Share
Announcing our QRadar SOAR Plugin v4.1 Release
By
Nicholas Barrett
posted
Tue October 04, 2022 01:52 PM
1
Like
Hello SOAR community! I'm writing this blog to share some the latest updates around our QRadar SOAR Plugin v4.1 integration, updated on September 29, 2022, and available on the IBM App Exchange
here
.
Integrating QRadar SIEM with QRadar SOAR empowers SOC analysts to simplify and streamline the process for the escalation and management of cases. As offenses are escalated from QRadar SIEM into QRadar SOAR, the platform generates a detailed, incident-specific response plan that enables team members to respond and remediate quickly. This integration aligns with our commitment to a more efficient analyst experience.
In QRadar Plugin v4.1, we've included updates to support multi-tenancy, as well as support for Org Name for CP4S MSSP (versus the original AccountID field). This is now consistent with QRadar SOAR standalone and simplifies the mapping process. In addition, we've added the choice of fields for Auto Escalation conditions.
To expand on our multi-tenancy capabilities, QRadar plugin v4.1 now allows users to run multiple instances of QRadar Plugin within the same Qradar SIEM. The value of this multi-tenancy capability allows users can now connect to different SOAR instances, or the same SOAR instance with different organizations, from the same QRadar SIEM. With regard to the auto escalation conditions, users have more options on offense fields that they can define rules on for escalation.
We look forward to hearing any feedback from our Security Community members and appreciate your ongoing relationship with QRadar SOAR.
0 comments
15 views
Permalink
Security
Topic groups
IBM Security Cloud Pak for Security
IBM Security Global Forum
IBM Security Guardium
IBM Security MaaS360
IBM Security QRadar
IBM Security QRadar SOAR
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
IBM Security Skills & Learning
User groups
Events
Upcoming Security Events
IBM Community Webinars
All IBM Community Events
Participate
Gamification Program
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Security Users
All IBM Community Users
Resources
Community Front Porch
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Technology Zone
IBM Training
Security Blogs
IBM Security Experts
Security Learning Academy
Request for Enhancements
IBM Community Partner Program
Marketplace
Marketplace
Copyright © 2020 IBM Corporation. All rights reserved.
Powered by Higher Logic
By
Nicholas Barrett
posted