Educause Security Discussion mailing list archives

Re: incident response tracking software

From: "Baillio, Aaron" <abaillio () OU EDU>
Date: Tue, 2 Oct 2018 18:47:55 +0000

We use The Hive.  It's an open source platform based on Elastic Search.  Great product, very customizable with an open 
API and lots of canned automations.  Worth checking out.  It's worked very well for our SOC that we stood up a year ago.

B. Aaron Baillio
Managing Director, Security Operations and Architecture
University of Oklahoma, IT
O: 405-325-7948
C: 254-400-6404

From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Ford, Bryan
Sent: Tuesday, October 2, 2018 1:39 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] incident response tracking software

Anyone using any Incident tracking software that you would recommend ?
We are in the process of creating a Security Operation Center and are looking at any incident response tracking 
software.  Kind of curious on what works well, how simple and doesn't work.
Any insight would be appreciated.

Thanks
Bryan

Bryan Ford
Information Security
NORTH DAKOTA
University System
Core Technology Services
4349 James Ray Drive
Grand Forks, ND 58203
   701.777.6484 (o)
   cts.ndus.edu

Current thread:

incident response tracking software Ford, Bryan (Oct 02)
- Re: incident response tracking software Baillio, Aaron (Oct 02)
- Re: incident response tracking software Andrew Weisskopf (Oct 02)
- Re: incident response tracking software STURGIS, JOHN (Oct 02)
- Re: incident response tracking software Beyer, Justin R (Oct 02)