Please enable JavaScript.
Coggle requires JavaScript to display documents.
Security Operations Incident Management (CSIRT (Security Operations …
Security Operations Incident Management
Incident Analysis
Events and Alerts
Sumo Logic
Qradar
Pager Duty
Active Directory
Case Management
JIRA
Reliaquest Ticketing
Data Analysis
Qradar
Sumo Logic
Incident Reporting
Technical Analysis
BIA
JIRA
Customer Inquiry
Based on Intelligence
Internal indicators
Threat modeling
Application Scanning
OWASP Standard
Application Vulnerability Mapping
Network and Perimeter
Endpoint Qradar
SentinalOne
AV Trends
Third Party Trending
Rapid 7 Nexpose
Login Monitoriing
Cloud Sumo Logic
Guard Duty
Data Dog
Sumo Logic
AWS IAM
AWS Config
Asset Vulnerability Assessment
QUALYS
Rapid 7 Nexpose
Network and Perimeter Qradar
Network Traffic Analysis
Data ex-filtration detection
Unusual Bandwidth utilization
C&C traffic detection
Reputational Alerts
External indicators
Threat Hunting
GEO Specific
Industry Specific
Technology Specific
Product Specific
Third Party intel
Rapid 7
Vulnerability Management
Qradar threat Feeds
Talos
CSIRT
Security Operations
Incident Handling and Communication
Product Security
Forensic Analysis
Manufacturing
Corporate Security
Forensic Analysis
Cloud Infrastructure
Information Technology
Incident Analysis based on CSIRT and current policy
Executive Incident Response
Law Enforcement
Public Communications