Security Operations email processing
You can set up the integration of information from external detection systems, provide granularity in processing security operations records, handle unmatched emails, and prevent duplication of records using Email Processing.
Email Processing
consists of these features:
| Feature | Description |
|---|---|
| Email Parsing | Generate new Security Operations records from external system emails. |
| Duplication Rules | Identifies new email with known incidents and processes them appropriately. |
| Properties | Specifies accounts used as input in Email Parsing for security, vulnerability, and IoCs. Provides for granularity in processing Security Operations records. |
| Unmatched Emails | Lists emails that do not match any Security Operations record. |