Creating a workflow

With Guardium® Data Security Center workflows, you can intuitively schedule jobs to suits your needs. When you create a workflow in Guardium Data Security Center, you are setting up a process for scheduling actions and then tracking the distribution, review, and completion of those actions.

About this task

You can schedule reports to run and set up workflows for those reports or you can schedule import jobs. These import jobs require an integration for importing and exporting data, which you can set up when you create the workflow if you don't already have one.

Procedure

  1. Open the main menu by clicking the main menu icon. Then click Configurations > Actions > Workflows.
  2. Click Manage workflow and then select Create workflow.
  3. Using the Create workflow page, you can create the actions that constitute the workflow. In addition, you can optionally set recipients for tasks (people who close the tasks when they are complete).
    1. On the Workflow Type page, select Scheduled workflow and click Next.
    2. Add at least one action to the job. Choose the type of task.
    3. If you select Run report as the action type, complete the report workflow configuration using create a workflow for a report.
    4. If you choose Import data as the action type, select the integration service that you want to use for importing data. If you do not yet have an integration set up for importing data (or if you want to use an integration other the integration that you have already created), click New integration in the Integration name menu and then choose the type of integration that you want to create and click Create a new integration service. After choosing or creating the integration service, choose the Mapping name that contains the imported files that are defined in the integration. To add a folder to the integration, click Create a new source folder.
      When you create a new integration service, the wizard for your selected integration opens. Follow these instructions for completing the wizard, depending on the integration that you choose:

      You can add more actions to the workflow.

    5. Click Next.
  4. Use the Schedule page to specify when the job should run:
    1. Use the Select schedule timezone menu to choose the schedule's time zone.
    2. Select a Start date for the schedule.
    3. Choose how often the report must run. The schedule uses a 24-hour clock.
    4. Select an end date for the schedule or if you want the schedule to run permanently, select Never.
  5. Use the Other details page to provide general information about the workflow.
  6. The Confirmation page provides a summary of the workflow settings that you specified - and enables you to set the job to Active or Inactive. If you set the job to Active, the job begins when you click Finish. If you set the job to Inactive, you can save the job settings and then set it to active later on.
  7. Click Finish to create the workflow.

Creating a workflow for a report

You can track tasks to be done based on the reports and stay up to date with the Guardium investigations from a single view.

Procedure

  1. Select the Report name that you want to run for the task.
  2. Select the time frame for which data should be collected for the report:
  3. Select a review type and click Next.
    If you select Add to group, choose a column from the report and a group. All unique column values are added to the chosen group. For example, you might want to use classification scans to populate sensitive objects groups.
  4. Set the Assignments for the report.
    1. Optional: Use the Instructions field to provide instructions to the recipient.
    2. Set a recipient type for the task. If the recipient is a user rather than a role, they receive a notification for the task.
      Tip: If you select Send notification to users or roles as the recipient type, you can then select one or more users to assign the task to or choose one or more roles as an owner (in which case anyone who is assigned that role can complete the task). You can also provide instructions to the user recipients in the optional Instructions field. Whoever you assign the task is responsible for signing off on that task.

      Assigning a role as task owner provides more flexibility. For example, if you assign a task to a person, but the person leaves your organization, you need to update the scheduled job. However, if you assign it to a role, another person who is assigned to that role can automatically be able to complete the task.

      You can also select Distribution rule as the recipient. If you have already created one or more distribution lists, you can add them as recipient or you can click Create a new distribution rule to create one. For more information, see Creating distribution rules for workflows.

      The list of distribution lists includes only those rules that are conditional upon data points that are in the report that you choose for the workflow.

    3. When you are done adding recipient types, click Next.
  5. On the Reviewer actions page, set the review type.
    • To create one task for the entire report, click Create one review task per entire report. Or, if you want to create a task for each row in the report, click Create one review task per row in the report.
    • To create a new response template, choose an existing Task response template or select Create response template. For more information, see create a new response template.
    • To create an investigation link, choose an existing Investigation link or select Create investigation link. For more information, see create a new investigation link.
  6. Click Save to create the report workflow.

Creating a workflow for an event

You can track tasks to be done based on the data generated by individual events.

Procedure

  1. On the Workflows page, click Manage workflow and then select Create workflow.
  2. On the Workflow Type page, select Event workflow and click Next.
  3. Click Add action.
  4. From Source Data, select the event.
  5. Optional: Define the rule conditions to be applied to the event.
  6. Select a review type and click Next.
  7. Set the Assignments for the event.
    1. Optional: Use the Instructions field to provide instructions to the recipient.
    2. Set a recipient type for the task. If the recipient is a user rather than a role, they receive a notification for the task.
      Tip: If you select Send notification to users or roles as the recipient type, you can then select one or more users to assign the task to or choose one or more roles as an owner (in which case anyone who is assigned that role can complete the task). You can also provide instructions to the user recipients in the optional Instructions field. Whoever you assign the task to will be responsible for signing off on that task.

      Assigning a role as task owner provides more flexibility. For example, if you assign a task to a person, but the person leaves your organization, you need to update the scheduled job. However, if you assign it to a role, another person assigned to that role will automatically be able to complete the task.

      You can also select Distribution rule as the recipient. If you have already created one or more distribution lists, you can add them as recipient or you can click Create a new distribution rule to create one. For more information, see Creating distribution rules for workflows.

      The list of distribution lists only includes those that are conditional upon data points that are in the event that you choose for the workflow.

    3. When you are done adding recipient types, click Next.
  8. On the Reviewer actions page, set the review type.
    • To create a new response template, choose an existing Task response template or select Create response template. For more information, see create a new response template.
    • To create an investigation link, choose an existing Investigation link or select Create investigation link. For more information, see create a new investigation link.
  9. Click Save to create the event workflow.