Hi Ahmad,
You can leverage the built-in notification mechanism to sent emails based on certain condition if your SOAR has smtp setup correctly.
Go To "Administrator Settings" -> "Notifications", there are some pre-built notification templates which might fit your need, e.g., "Incident Members Changed".
You can also create your own notification based on required conditions. See more details on this section. https://www.ibm.com/docs/en/sqsp/51?topic=administrator-notifications. Hope it helps.
------------------------------
Gilbert Liao
------------------------------
Original Message:
Sent: Fri May 24, 2024 03:23 AM
From: Ahmad Hassan Tariq
Subject: Incident Assignment Notification
When an offense is sent from SIEM to SOAR and an incident is created, I want to send an email to the concerned user informing them that the incident has been assigned to them. Is there any way or workaround to achieve this
------------------------------
Ahmad Hassan Tariq
------------------------------