Skip to main content

Gem

Download With Dependencies

Integrate with Gem to use alerts as a trigger for Cortex XSOAR’s custom playbooks, and automate response to specific TTPs and scenarios.

The Gem Cortex XSOAR content pack adds a special playbook trigger for Gem alerts, as well as built-in Gem actions and pre-defined playbooks to use with specific cloud incidents.
Use Gem alerts as a trigger for Cortex XSOAR’s custom playbooks, and automate response to specific TTPs and scenarios.
This pack contains enables the following:
Import/subscribe to Gem alerts and use them as playbook triggers, including all the cloud-related context from involved entities to triggering events
Run Gem API actions using XSOAR commands to automatically manage incidents, sync status bi-directionally and effectively contain suspicious activity, all in a cloud-native seamless way
Respond automatically using pre-defined playbooks for specific scenarios like a compromised machine and root user activity

For more information, visit https://gem.security.

Gem Logo

The Gem Cortex XSIAM content pack adds a special playbook trigger for Gem alerts, as well as built-in Gem actions and pre-defined playbooks to use with specific cloud incidents.
Use Gem alerts as a trigger for Cortex XSIAM’s custom playbooks, and automate response to specific TTPs and scenarios.
This pack contains enables the following:
Import/subscribe to Gem alerts and use them as playbook triggers, including all the cloud-related context from involved entities to triggering events
Run Gem API actions using XSOAR commands to automatically manage incidents, sync status bi-directionally and effectively contain suspicious activity, all in a cloud-native seamless way
Respond automatically using pre-defined playbooks for specific scenarios like a compromised machine and root user activity

For more information, visit https://gem.security.

Gem Logo

PUBLISHER

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

CertificationRead more
Supported ByPartner
CreatedMay 9, 2024
Last ReleaseDecember 4, 2024
Breach Notification
Identity And Access Management
Incident Response
Network Security
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.