About responding to security events

Security provisioning for an application is a one-time task. However, monitoring the application for security events and providing ongoing security is the other more challenging task. Operations Director automates security orchestration by responding to security events and re-aligning the security profile with the help of the tags applied, and the response rules created.
Responding to security events includes the following:
  • Detect changes in the application or the virtual data center infrastructure, which is done by DCS: SA.
  • Recommend changes to the security profile based on the provisioning and response rules.
Operations Director
supports the following event types:
  • NSX tag added
  • NSX tag removed
  • Application Change
  • Vulnerability Detected
  • Vulnerability Patched
The Vulnerability Detected and Vulnerability Patched events and it's schema is provided to receive events from a non-NSX based vulnerability scanner. You can use the plugin SDK functionality to send events from a scanner, that can be used by OD for responding to security events.