Code42 Incydr combined with Tines helps organizations improve Insider Risk posture and protect data from employee-driven exposure, leak and theft, and exploitation – without burdening security teams. Scale your Insider Risk Management efforts by automatically opening tickets and/or taking pre-defined response actions based on the severity of an Incydr alert through templated Tines Stories.
Key benefits
Scale insider risk management efforts
Focus your team on business-critical alerts
Respond to and contain threats faster
Use case examples
Example 3
Automate Response to Data Risk with Tines and Code42 Incydr
Get alerts from Code42, the alert details, and the users in the alerts. If the alert is low or moderate, create a Low Priority Jira issue. If the alert is High or Critical, create a High Priority Jira Issue and suspend the user in Okta.
Tools
Example 4
Retrieve Code42 alerts, send to Slack and suspend user in Okta
Get alerts from Code42 and retrieve additional context about the alert and the user that triggered it. Send the information about the alert to a channel in Slack and suspend the user in Okta if needed.
Example 5
Remove employee from a departing watchlist in Code42
Automate the removal of users from the Departing Employee Watchlist on a scheduled basis. It retrieves all users on the Watchlist and, if any have a departure date more than 90 days old, they are automatically removed and the endDate is removed from their User Risk Profile. This Story was created by Code42.
Tools
Example 6
Handle Code42 alerts
Query the Code42 API to read in and action alerts. This Story will enrich the alert with additional information from Code42, and create Jira tickets for investigation. High-priority alerts are escalated to Slack.