The Cypho-XSOAR Content Pack automates incident management between Cypho and Cortex XSOAR. It includes 7 automations, 1 playbook, 23 incident types, and 72 incident fields, enabling users to assign incidents, add comments, update severity, approve or dismiss issues, download attachments, and fetch incidents from Cypho. This content pack ensures incidents in XSOAR accurately reflect the current state of Cypho tickets, streamlines workflows, reduces manual effort, and improves operational efficiency and compliance.
Cypho is a security incident management platform, and this content pack automates the management of Cypho incidents within Cortex XSOAR. Incidents in Cypho can include alerts, issues, and tickets that require tracking, updates, and collaboration.
This Cypho content pack contains the Cortex XSOAR integration with Cypho that provides commands to assign incidents, add comments, update severity, approve or dismiss issues, download attachments, and fetch existing incidents from Cypho. It also includes a playbook to orchestrate these automations and manage incident workflows efficiently.
What does this pack do?
The integration included in this pack allows you to manage and update Cypho incidents directly from XSOAR, providing visibility and control over incident status, attachments, and assignees.
The playbook and automations included in this pack help you save time and automate repetitive tasks associated with incident management, such as:
⦁ Assigning incidents to the appropriate user or team.
⦁ Adding comments to track updates and actions on incidents.
⦁ Updating incident severity to reflect changing risk levels.
⦁ Approving or dismissing issues based on their relevance or resolution status.
⦁ Downloading attachments securely while ensuring only assigned incidents can be accessed.
⦁ Fetching incidents from Cypho into XSOAR for analysis and monitoring.
This content pack is designed to streamline incident management workflows, reduce manual effort, and improve operational efficiency while maintaining alignment with Cypho incident data.
Cypho is a security incident management platform, and this content pack automates the management of Cypho incidents within Cortex. Incidents in Cypho can include alerts, issues, and tickets that require tracking, updates, and collaboration.
This Cypho content pack contains the Cortex integration with Cypho that provides commands to assign incidents, add comments, update severity, approve or dismiss issues, download attachments, and fetch existing incidents from Cypho. It also includes a playbook to orchestrate these automations and manage incident workflows efficiently.
What does this pack do?
The integration included in this pack allows you to manage and update Cypho incidents directly from XSOAR, providing visibility and control over incident status, attachments, and assignees.
The playbook and automations included in this pack help you save time and automate repetitive tasks associated with incident management, such as:
⦁ Assigning incidents to the appropriate user or team.
⦁ Adding comments to track updates and actions on incidents.
⦁ Updating incident severity to reflect changing risk levels.
⦁ Approving or dismissing issues based on their relevance or resolution status.
⦁ Downloading attachments securely while ensuring only assigned incidents can be accessed.
⦁ Fetching incidents from Cypho into XSOAR for analysis and monitoring.
This content pack is designed to streamline incident management workflows, reduce manual effort, and improve operational efficiency while maintaining alignment with Cypho incident data.
