Welcome to SIRP

SIRP (Security Incident Response Platform) is the built-in security orchestration and response platform within the Agentic SOC Platform (ASP). It provides security teams with a centralized, visual workspace to efficiently manage and respond to security incidents.

Relationship Between SIRP and ASP

Within the overall Agentic SOC Platform (ASP) architecture, ASP and SIRP play complementary roles:

• ASP (Backend Framework): As a powerful backend, ASP provides core automation orchestration capabilities, AI Agent support, and integration with various security tools.
• SIRP (Frontend Application): As an intuitive frontend, SIRP presents ASP's powerful capabilities through a user-friendly interface, helping security analysts handle alerts, investigate cases, and execute response actions.

In simple terms, ASP is the engine, and SIRP is the cockpit.

Core Features

• Industry-Proven Design: SIRP's core data model (Case/Alert/Artifact) and design philosophy reference leading SOAR platforms (such as Splunk SOAR, Swimlane SOAR), ensuring professional and universal workflows.

• Highly Flexible Customization: SIRP is built on the Nocoly APaaS platform. This means you can easily customize nearly every aspect, including:

  • User Interface (UI): Adjust layouts, views, and fields.
  • Data Model: Add custom fields or create new data associations.
  • Workflows: Design and modify automated response processes.
  • Report Dashboards: Create monitoring and reporting views tailored to specific needs.

• Seamless ASP Integration: SIRP natively integrates all of ASP's automation and intelligence capabilities. Security teams can trigger complex automated Playbooks and AI analysis Agents with a single click in the interface.