Shipped2020
Security Ticketing & Auto-Resolution Framework
An automated security ticketing framework that ingests security signals, makes filing decisions across complex workflows, and auto-resolves where possible.
JavaPythonAWS LambdaSQSElasticSearchJira API
Category
Enterprise
Year
2020
Status
Shipped
The Problem
Security teams were drowning in signals — thousands of potential issues across systems with no scalable way to triage, file, and track them. Manual ticketing was the bottleneck.
What I Built
A decision engine that ingests security signals from multiple data pipelines, applies configurable workflow rules to determine ticket-filing criteria, files to the right queues, and auto-resolves issues that match known patterns — all without human intervention.
Technical Challenges
- Complex rule engine for n-workflow ticket filing decisions
- Data pipeline integration across heterogeneous security sources
- Auto-resolution with confidence thresholds and audit trails
- ElasticSearch for signal correlation and pattern matching
- Dead letter handling for unresolvable edge cases
Architecture
[Diagram to be added]
Results & Impact
- Significant reduction in manual security triage time
- Auto-resolution handling a meaningful percentage of total signal volume
- Audit trail for every automated decision
Interested in working together?
Get in Touch →