🚀 SIRP Version 5.0 - Elevating Your Security Operations with Exciting Features and Enhancements!
We're excited to unveil SIRP Version 5.0, a major release that introduces game-changing features and enhancements to empower your security operations. This update is a testament to our commitment to providing the best-in-class security platform. Here's what's new:
🔗Automated Alert Linking
One of the standout features of this release, offering a powerful way to streamline incident management and enhance your security operations. Automated Alert Linking enables security teams to automatically associate alerts with relevant incidents or create new incidents based on predefined conditions (Pre Ingestion Rules). This feature is designed to save valuable time, reduce manual efforts, and improve the efficiency of your incident response process.
Click Here to learn more about the Alert Linking feature
Backend Processing of Vulnerability and Assets Export
Vulnerability Export and Asset Export functionalities have been updated to process export jobs at the backend instead of the front end, eliminating timeout issues with large datasets. Users can also define recipients for notifications when export jobs are completed and exported files are ready for download.
Asset Import Notification
Asset import issues are a thing of the past. Import job statuses are now actively monitored, and users receive clear feedback about failures. You can also specify an email address to receive notifications upon job completion or failure.
Playbook Enhancements
App List Clarity
Playbooks now offer improved clarity by only displaying Active apps for selection. This ensures that disabled apps no longer clutter the list, making it easier for users to locate and use the active apps.
App List Clarity
Playbooks now offer two new filtering options: "Use case family" and "Status."
Multi-Select Filters
Vulnerability Management:
The Attack Type filter is now a multi-select feature, allowing the selection of multiple attack types for efficient filtering.
Incident Management:
The Status Filter is now multi-select, enabling the simultaneous selection of multiple statuses for filtering Incidents.
Automated Creation of Tickets on ITSM with Playbooks
The ITSM actions are now usable within the playbooks which allows the automatic dispensing of incident information to external ITSM tools, eliminating the need for manual execution of the action.
Integration Enhancements
QRadar Get Offense action has been enhanced to include column names with the group by clause.
QRadar Query Events action introduced
Misc. Features and Bug Fixes
A formatting issue was resolved in the Jira integration comments.
Resolved New comments and Change status actions issue in the Manage Engine app.
The Kaspersky app now accepts multi-configurations.
Improved Phishing Email Parser to meet Symantec Messaging Gateway integration requirements.
Multiple fixes and enhancements in the Vulnerability Management module for data integrity and optimized flow.
Fixed a bug that was causing multiple configuration info to overlap in app configurations.
Enhanced Playbook activity logs to track more information, including Disposition Change and Status Change. These logs are then used and displayed in containers' Activity logs.
Added verification in playbooks to validate connectivity between the actions to prevent playbook stalling.
An issue with the "Maps" display has been resolved. Maps are now more accurate in displaying geolocation information based on the output of relevant automation actions.
At SIRP, we are dedicated to refining your security workflow and delivering top-notch security solutions. SIRP Version 5.0 marks a significant milestone in that journey, providing you with features and enhancements designed to make your workflow more efficient and effective. Upgrade now to experience the future of security operations with SIRP!