SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

VR - missing VIT

We have been running VR in prod for almost a year. Our SN VR is integrated with Rapid7. Came across a scenario that is baffling. The jobs seem to be successful but came across an asset. The Discovered Item record created successfully but there was no...

lak-ann by Tera Contributor
  • 354 Views
  • 2 replies
  • 0 helpfuls

Security Operations Observable type mappings and creation

Hello community,  We are wanting to cleanup and enrich our Observable data in order to effectively report details within the associated SIRs. I have the following goals. Focusing on 'unknown' observables (~4500 count) update the logic that maps the O...

ScottW1 by Tera Contributor
  • 412 Views
  • 1 replies
  • 1 helpfuls

Azure Sentinel Integration

Hello, When using the Microsoft Azure Sentinel Incident Ingestion Integration For Security Operations is it possible to update security incidents when you make changes to the mapping in the profile? For example, if I update the profile to include a f...

What is Incident Severity Scale?

I see it as u_severity_scale Reference but no idea what it is and has no values.I have other fields for severity, service condition, priority and urgency so I'm confused what Severity Scale was meant for or how it can be used?