Overview

Accelerate incident response by integrating BigFix with Resilient to enrich incident data with endpoint contexts from BigFix, as well as executing BigFix search and remediation actions directly from within Resilient. ​​

Security teams can orchestrate incident response processes with automatic and manual enrichment and targeted remediation actions. Teams can investigate the breadth and depth of an attack by hunting for IOCs across the enterprise, and quickly respond to attacks by executing endpoint remediation actions, such as killing processes, from within the Resilient platform.​​

Benefits

  • Accelerate incident response by harnessing the power of the BigFix Platform directly within Resilient
  • Automate and streamline manual operations around discovery, investigation and response
  • Reduce risk with improved response times to threats and attacks
  • IBM validated integration

Use Cases

  • Discover: Search for an IOC from Resilient across all your endpoints via BigFix to determine the scope of an incident
  • Investigate: Enrich investigations with deep and broad endpoint contexts from BigFix
  • Respond: Initiate BigFix remediation actions directly from within Resilient

Additional Resources

  • Link to IBM X-Force App Exchange BigFix Integration for Resilient page here
  • Installation documentation on partner site here

Support

IBM Resilient Support

Requirements

BigFix v9.5+
Resilient v.31+