We have a requirement to automate SOC process as much as possible,
For example - using ticketing system (JIRA), when a request is raised to block a large list of IP's or domains, the ticket should be implemented automatically with out human intervention.
Need to understand,
- If it is possible to integrate CALM with JIRA workflow ? and how ?
- If it is possible to automate block/release process of IPs/Domains at security devices with the help of CALM? and how ?
- What other security related tasks we can achieve with the help of CALM here.
Looking for some direction and supportive to move ahead.
Best answer by JoseNutanixView original