https://store-images.s-microsoft.com/image/apps.3732.4335d08b-a68a-4d8e-a108-0c36abe85a00.d4544d0d-7762-4a33-9bb9-11cb8497adab.ecf3ff1c-db7a-4204-a74a-e57a84bfd6c5

Cohesity Security Integration for Microsoft Sentinel

Cohesity, Inc.

(1 oceny)

Kategorie
ZabezpieczeniaIT i narzędzia do zarządzaniaŚrodowisko obliczeniowe
Pomoc techniczna
Pomoc techniczna
Kwestie prawne
W ramach umowy standardowej firmy MicrosoftZasady ochrony prywatności

Cohesity Security Integration for Microsoft Sentinel

Cohesity, Inc.

(1 oceny)

Use this integration to see Ransomware Incidents in Microsoft Sentinel and remediate

This is a Cohesity integration for use with Microsoft Sentinel's cloud-native security information and event manager (SIEM) platform, to enable Security Operators and ITOps the automation and operational simplicity to respond to threats and recover from ransomware incidents, from inside Microsoft Sentinel. Below are the key workflows:

  1. Ransomware alerts from Cohesity Data Cloud and Cohesity Cloud Services into Microsoft Sentinel via RESTful APIs integration

  2. Automatic Incidents with details of the alerts

  3. Escalate to ITSM tool via pre-built or custom Playbook

  4. Initiate recovery of clean snapshot with no anomalies via pre-built Playbook

  5. Closed loop integration closes out the alert in Cohesity Data Cloud via a pre-built Playbook

https://store-images.s-microsoft.com/image/apps.26784.4335d08b-a68a-4d8e-a108-0c36abe85a00.d4544d0d-7762-4a33-9bb9-11cb8497adab.d008e678-bbac-4022-b5e3-d7af5011cfe2
https://store-images.s-microsoft.com/image/apps.26784.4335d08b-a68a-4d8e-a108-0c36abe85a00.d4544d0d-7762-4a33-9bb9-11cb8497adab.d008e678-bbac-4022-b5e3-d7af5011cfe2