IBM Security SOAR

Welcome to the IBM Security SOAR online community! Join us to learn more from a community of collaborative experts, who will help you take full advantage of the most advanced, battle-tested SOAR technology.

IBM Security SOAR is the leading technology for orchestrating and automating incident response processes. Collaborate, communicate, and contribute solutions with like-minded Resilient users right here.

For any questions related to this user group, please contact support@communitysite.ibm.com.

SOAR Resources

Latest Discussions

  • Hi @Terry Z. -- this is not currently possible from in-product scripting. A function could accomplish this, but as far as scripting abilities go, you cannot modify items outside of scope of a script. Meaning, if your script is firing on an incident, ...

  • Hi Terry, Similar to incident.addNote() there is also a task.addNote() you can call from a script. We also have a IBM Resilient Task Helper Functions on the App Exchange if you want to add a note from a function. AnnMarie ------------------------------ ...

  • Hello Shane, Thank you for your reply. I will check with the permissions which needs to be given to the service account on AD. Thanks, ------------------------------ Akhilesh Deshmukh, Data Analyst, SecurityHQ ------------------------------

Latest Blogs

  • Following the announcement that IBM Resilient is renamed IBM Security SOAR, I wanted to explain a difference customers should be aware of when raising cases with the support team. When navigating the IBM support portal (https://www.ibm.com/mysupport) ...

  • Overview The v38.2 release of Resilient SOAR includes the new Python 3 scripting feature which enables security developers to create Python 3 scripts as a part of an incident or case response right in the UI. Scripting in Resilient is not new and until ...

    1 person recommends this.
  • Overview The v39.0.226 release of the Resilient SDK brings about a number of new features and improvements. Included with this is the release of its clone command which represents the finished migration of the command from the resilient-circuits package. ...

  • We are pleased to announce the general availability of the Artifacts Management , IBM Security SOAR’s new artifacts-centric view that allows your security team to triage, investigate, and remediate incidents faster. This new aggregated view provides ...

    2 people recommend this.
  • In this article, we will show you how CrowdStrike Falcon® integrates with IBM Security QRadar and IBM Security Resilient to offer an end-to-end threat management process to transform an organization’s security posture. Together, we deliver simplified ...

Latest Files