Working with Collaborator User Groups
There are several types of user groups in the Google Security Operations platform and the collaborator user groups was designed to be a hybrid between the basic user group and a view-only user group.
As such, a collaborator user group can be given various Permissions to selected modules within the platform. This enables either an MSSP or an Enterprise company to easily collaborate, run joint investigations, and chat about cases in real-time with their customers or end users.
The collaboration user group can be given view only or edit access by the SOC manager to the following places in the Platform:
- Dashboards
- Search
- Cases: A collaborator user group can have access to a Case and see an Alert View specifically designed for their role.
- Entity Explorer
- Reports
- Command Center
- SLA
- Workdesk: You can assign a Manual action (or an entire Playbook block) in the Playbook to a collaborator user group as well as writing a targeted message to them in the Playbook action. The collaborator will see this message waiting for them in both the Pending Actions widget in
the Playbook customized overview and in their Workdesk.
- Workdesk: My Requests: In addition, the collaborator user has access to a tab called My Requests. Here, the user can choose to ask for a specific request from a selection of pre-defined Requests.
Creating a Collaborator User Group
Step One: Make sure you have purchased the Enterprise license which gives you access to unlimited collaborators.
Step Two: Create a new Collaborator permissions group or use the predefined Collaborator group. For more information see Working with Permission groups.