Hello Community
I am using PagerDuty to manage my ZDX alerts (via webhooks)
I would like to automate incidents in PagerDuty as they are received based on specific criteria. For example, if an alert is received for MS Teams (Low ZDX Score), then I’d like my automation in Pagerduty to look at the contents of the alert (webhook) and escalate according to predefined parameters we can set.
If the low ZDX score is for 500 users or less, do nothing (close the incident).
but, if the ZDX score is low for 500 + users then keep the incident open and escalate accordingly.
Has anyone used PagerDuty for this type of integration before?
Regards
Paul