Latest Features Enhance Workflow Creation, Add Modern Controls

The consensus on the state of cybersecurity professionals tends to fall somewhere between “burdened by high volumes of responsibility” and “dangerously understaffed and suffering from unhealthy levels of stress,” depending on how optimistic your source is. 

Researchers at Forrester recently noted one of the most consistent struggles for security teams is simply keeping up with day-to-day tactical activities—addressing alerts, investigating events, and managing the stack of tools needed to do so. And surveys conducted by ESG have shown that as much as 60% of professionals think the work is taxing on work-life balance. 

We believe the solution is to democratize cybersecurity and lower the technical barriers for entry into the profession, allowing more people from diverse backgrounds to join. That’s why we created Torq, a no-code automation platform built specifically for security teams. Our platform helps unify the disparate security, infrastructure and collaboration tools teams already use—simplifying security operations and reducing ‘noise’ through more efficient, automated workflows.

Announcing the latest features

We’re excited to announce our latest developments that help people work more intelligently: publish and unpublish functionality for workflows, and the beta of our Public API which allows programmatic access and controls for platform data like custom secrets and users/roles. 

Publish and Unpublish Workflows

Because Torq is built specifically for security teams, we understand that building and editing workflows is closely tied to real-world activities like response capability and operational uptime. There are serious consequences if the workflows do not operate correctly. 

Traditional SOAR platforms are too complicated to quickly work on new automations without also disrupting the rest of the organization. At the other end of the spectrum, generic business automation systems simply do not account for these nuances, and editing workflows typically requires disruptions to the production environment.  

This new functionality allows users to create and test new workflows without impacting production environments, or revise existing workflows while the last approved version continues to run as necessary. Workflows can be marked as unpublished, which basically denotes a workflow draft. In this state, users can make changes to logic, add steps, test triggers—everything they need to effectively develop and test enterprise-scale automations. 

Once a workflow is ready to be put into production, users can mark it as published and enable the workflow trigger or simply have it available to run manually. More importantly, this option allows teams to put a workflow into production to meet immediate needs while simultaneously working on refinements, and provides uninterrupted coverage when deploying any updated versions. 

In addition to publishing controls, in the coming weeks the workflow editor will also get an autosave feature. This adds an additional layer of risk management, further supporting teams’ needs to collaborate when adapting workflows to defend against evolving threats.

Public API (Beta)

Security tools cannot exist in a vacuum, detached from the rest of a team’s stack. Modern solutions need to be as easily accessed by machines as they are for humans. The Torq REST API enables this programmatic access to the platform, giving users the ability to further automate security controls and processes within Torq. Quickly pull current platform data, or perform bulk changes on things like custom secrets and users for onboarding and offboarding. 

Retrieving audit logs using the Torq Public API

In the future, we’ll support API access to additional resources such as workflows and integrations.

Building on a vision

These latest developments build on our core functionality for simplifying and strengthening security operations, including our template library and no-code visual workflow editor. 

No-Code

Unlike traditional SOAR platforms that require dedicated developer support or specialized training, everything can be done in Torq without any prior knowledge of coding or programming. Guided configurations, detailed helper text, and an intuitive auto-complete function allow every user to implement automations in our drag-and-drop visual workflow builder. 

Template Library 

Templates are pre-built components within Torq that any customer can use to quickly build enterprise-grade automations based on industry best practices, regardless of their technical skill level or security background. 

 

Workflow template library in Torq

Our constantly-expanding library comprises everything from individual utility steps like HTTP requests and cryptographic operations, to action steps that can perform detailed functions in other security tools, and all the way up to complete workflows for complex security processes.

Put Torq to work

The publish-unpublish features will need to be activated for existing tenants. Torq team members will be contacting customers to facilitate the transition, or you can reach out to your customer success or account team to get started right away.

All customers can use the API immediately. Documentation is available through our knowledge center. 

If you haven’t had a chance to see the platform in action, get in touch for a free trial account and put Torq to work for your team.

Read Previous Post
Read Next Post