Skip to main content

Rubrik Anomaly Incident Response - Rubrik Polaris

This Playbook is part of the Rubrik Security Cloud Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.0.0 and later.

This playbook will investigate an anomaly incident ingested by the integration "RubrikPolaris", enrich its data, and perform a remediation according to the incident's object type.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

  • Rubrik Retrieve Anomaly Result - Rubrik Security Cloud
  • Rubrik Polaris - Anomaly Analysis
  • Rubrik Ransomware Discovery and VM Recovery - Rubrik Polaris
  • Rubrik User Access Analysis - Rubrik Polaris
  • Rubrik Data Object Discovery - Rubrik Polaris
  • Rubrik Fileset Ransomware Discovery - Rubrik Polaris
  • Rubrik Object Context Analysis - Rubrik Polaris
  • Rubrik Ransomware Discovery and File Recovery - Rubrik Polaris

Integrations#

  • RubrikPolaris

Scripts#

This playbook does not use any scripts.

Commands#

This playbook does not use any commands.

Playbook Inputs#

There are no inputs for this playbook.

Playbook Outputs#

There are no outputs for this playbook.

Playbook Image#

Rubrik Anomaly Incident Response - Rubrik Polaris

Edit this page
Report an Issue