Google SecOps adds data RBAC for first-party cases and alerts
Google SecOps has introduced data role-based access control (RBAC) for first-party cases and alerts in public preview, enhancing security and data segregation. This feature automatically inherits SIEM data access scopes to SOAR cases and alerts, ensuring analysts only view authorized data, with dual enforcement for access. Administrators can map SIEM scopes to SOAR environments, improving alert routing and visibility.
Features (1) ›
- Google SecOps Data RBAC for first-party (1P) cases and alerts in public preview
Data RBAC for first-party (1P) cases and alerts in public preview Availability: This feature is available only in the following regions: europe-central2, asia-northeast1, asia-south1, australia-southeast1, northamerica-northeast2, europe-west3, europe-west6, southamerica-east1, asia-southeast1, me-central1, me-central2, me-west1, europe-west2, europe-west9, europe-west12, asia-southeast2, africa-south1, asia-east1, and asia-northeast3. Google SecOps now supports data role-based access control (Data RBAC) for first-party (1P) cases and alerts in SOAR. This feature automatically applies SIEM dat
https://docs.cloud.google.com/release-notes#July_06_2026