platform role-based access control (RBAC)

 for Turbine components and orchestration. Administrators should align account RBAC mode with the permissions below so analysts can generate plans and use automation (for example 

, grant analysts (and other roles that generate or run plans) 

 Hero AI selects when building or running investigation steps. Without execute permission on the relevant components, tools may not appear or populate in the plan workflow (for example in the automation area after 

), and users may be unable to complete actions that depend on those components.

Identify which components your organization uses for AI SOC (installed connectors, Hero AI analysis components, marketplace items).

 on those components to the roles that should run plans and automation.

 widget permissions aligned so the same roles can use the 

Getting Started — Permissions Configuration

-level permissions are required for users to use AI SOC in line with component-backed plan and automation behavior. Analyst or viewer roles that do not include orchestration rights at that level may see incomplete behavior (for example plans that do not surface the 

 tool or options to create triage rules from a generated plan) even when 

, ensure users who need full AI SOC analyst workflows have the appropriate 

 form layout controls which roles can see each section of 

 (summary, plan, automation, marketplace, and so on). This is separate from component permissions but must be configured together: users need both 

Configure Ingestion Playbooks

RBAC Considerations for AI SOC

test12

sdfdssdfsdfsdfsdfdsfsdf

edfsad

dsfsdfsdf

test

specific

var_miha

new_var_2

new_mih_var

mih_var

testheight

available

testulet

testvar

This is a plain text that will be inserted in an expandable heading for using this raw as an exampl

altscenario

This is a plain text that will be inserted in an expandable heading for using this raw as an example

scenario

exemplu

variabila

Archbee

text

refresh_token

YourBank

MyBank

variable_test_video

variable123

silviu

Bogdan_test

ferwhethgte

target1

google

support

product_name

productName1

companyLegalName

programName

customerName1

productName

Product_Name

Test

SEFAS

uptempo

customerName

testName

name1

customername

apilink1-getallmethod

variable_one

capitalize

company_name_adobe

jama_2

jama_1

domain

email

product

Glossary lets you define every tricky term, then gives them a sneak peek explanation on hover... Just like I'm doing with this text right here!

Glossary_feature

Google

aaaa

insitutionAdress

dasdas666

aa112

asdasdas

asdasd

What

New_reusable

test_var2

test_var

Configure the Application After Import

Create Connector Actions as Components

Run the Ingestion Process

Integrate with the AI SOC Pipeline

AI SOC Ingestion

Our knowledgeable support team and an awesome community will get you an answer in a flash.

Swimlane Solutions and Applications

Architecture and Data Flow

Installing and Configuring AI SOC Solution

Getting Started

AI SOC Applications

Operations and Guidance

Dashboards and Reports

Example Scenarios

Integration Examples

Operational Best Practices

Troubleshooting

AI SOC Solution

Installing SOC Solutions Bundle

SOC - Alert Ingestion (Webhook) - Template Playbook Overview

SOC - Alert Ingestion (Cron) - Template Playbook Overview

SOC - Bulk Ingest Phishing Emails - Template Playbook Overview

Configure Threat Intelligence Enrichment Integration

Configure Custom Case and Incident Management Data Mappings

Swimlane AI Agents Case Management Extension

SOC Solutions Bundle

Installing and Configuring

Business Continuity Management Workflows

Using Business Continuity Management

Dashboards in BCM

References

Business Continuity Management (BCM) Solution

How it Works?

Creating or Updating the SCF Records

SCF Data Import Application Overview

SCF Findings Application Overview

SCF Library Application Overview

SCF Evidence Application Overview

SCF Remediation Plans Application Overview

SCF Reporting Application Overview

Compliance Audit Readiness (CAR) Solution

Installing and Configuring Collaboration Extension

Configure Webhooks

Configure Collaboration Extension Template

Select a Template and Send a Message

Collaboration Extension

Installing and Configuring Crafted AI Prompts

Crafted AI Prompts

Installing Detection Engineering Extension

Configuring Detection Engineering Extension

Detection Engineering Extension - How it Works

Detection Engineering Extension

Vulnerability Response Management Workflows

Using Vulnerability Response Management

Using VRM for MSSPs

Vulnerability Response Management (VRM)

Solutions and Applications