Hello, is Temporal a good fit for building SOAR (Security Orchestration, Automation and Response) workflows? For example, upon receiving a threat detection alert, SOAR would take the IP address from the alert, run it through different tools like Virustotal, Shodan, etc. then finally collect all data for summarization by an LLM. This is a simple use case of enriching an IP, and as you can imagine, more complicated workflows could be built for different types of data.
Yes, Temporal works well for SOAR workflows. It lets you automate tasks, run multiple checks at the same time, and handles failures by retrying automatically. It’s a good choice when your workflows are complex and need to be reliable, but you’ll still need to build the rest of the system yourself.