Go to listing page
Create Highly-Customized and Targeted Incident Response Workflows with Cyware's Enhanced Rule Engine
Share Blog Post
Cyware's Respond (CFTR) platform features a Rule Engine that extends beyond simple phase and status changes. With the launch of Respond v3.3, Cyware has improved this Rule Engine. It now enables users to incorporate multiple conditions into their rules, promoting advanced automation. The upgrade is designed to equip incident response teams with enhanced automation abilities, enabling them to optimize their workflows and respond to threats more swiftly.
About the Enhancement
Until now, security teams could automate actions based on a predetermined trigger within the rule. However, now Respond’s rule engine has been further enhanced to allow users to configure rules and execute actions based on multiple conditions like Source, Severity, and the impacted Business Unit. What's more, it's now possible to add multiple actions to a single rule, greatly expanding its functionality and giving a great deal of flexibility to the security teams to manage complex incident response actions with ease.
How Does the Rule Engine Benefit Incident Response Teams?
By fine-tuning rule execution based on different attributes, teams can ensure that the right actions are taken at the right time, minimizing the risk of missing critical incidents or taking unnecessary actions. This level of filtering and customization helps incident response teams improve their response times and enhance their overall incident response capabilities.