Open Resilient cases from Sentinel high-severity incidents

Polls Sentinel for High/Critical incidents every 5 minutes and opens matching cases in IBM Resilient with linked artifacts.

sentinelresilienthigh-severitygenericmoderate

Generate this integration ← Back to library

Use case

Open IBM Resilient cases from Microsoft Sentinel incidents with severity High or Critical every 5 minutes, attach incident entities as artifacts, dedupe by Sentinel incident id

No code yet. Click below to run the Rinox pipeline. The result is saved to this library entry — every future visitor gets it instantly.

Generate this integration Customize firstSign-in + free-tier limit apply

Useful?

Used by 0 teams · Viewed 5 times · Last validated 5/17/2026