Re: RT-IR experiences

[Wes Young <wcyoung () BUFFALO EDU>]

We just started using it extensively. I've customized it to sync with
our ARS [Remedy] and SEM infrastructures. I deployed it specifically
for the RTIR functionality. It's workflow is a perfect fit for
Incident Management in network-security environments (IMO).

It can be a little tricky if you're not familiar with how the custom
fields and API works, but nothing that the wiki and RT Essentials book
couldn't handle...

On Jul 21, 2008, at 2:38 PM, E. Todd Atkins wrote:

> I've been using it since it's early, and somewhat buggy, days. I
> find it invaluable for both tracking incidents and quickly pulling
> out metrics when management wants a report. If you decide to use it,
> then you should learn how to use the CLI. It will make migrating
> much easier.
>
> E. Todd Atkins
> Network Security Coordinator
> Office of Information Systems and Technology
> University of California, Santa Barbara
>
> On Jul 21, 2008, at 11:12 AM, Melissa Muth wrote:
>
> > We're considering deploying RT-IR for tracking incidents. If you
> > are using it, we'd appreciate hearing about your experiences.
> >
> > Based on a survey conducted by H. Morrow Long about 2 years ago,
> > 28% of respondents were using RT, and 10% were using RT-IR. Since
> > RT-IR was enhanced significantly around that time, I wonder if
> > anyone has migrated to it in the past two years.
> >
> > Thanks in advance!
> >
> > Melissa
> > --
> > Melissa Muth
> > Sr. Information Security Analyst
> > Information Systems & Computing
> > University of Pennsylvania
> > muthm () isc upenn edu   215-573-6798

--
Wes Young
Network Security Analyst
CIT - University at Buffalo
http://claimid.com/saxjazman9

Attachment: smime.p7s
Description: