Chat operations (ChatOps) are how Wirespeed investigates cases involving users from your company. We interact with them over your collaboration platforms to investigate and question them about suspicious activities.

Escalations

By defaut, all chat ops have a delay time of 10 minutes. If the user has not responded in 10 minutes we escalate to their manager, and if the same happens with the manager, we continue processing with a suspicious verdict. You can modify the escalation delay and choose what verdict to use on timeout underneath Settings > Chat Ops.

Security Team

You can communicate with your security team via chat ops as well, so they don’t have to log in to the Wirespeed UI to respond to every case. This settings can be modified underneath Settings > Chat Ops. If disabled, case escalations will be alerted via email and triagable via the UI. Chat Ops escalations sent to the security team will not be subject to the escalation delay and will wait indefinitely for a response via chat or UI.

Multi-factor Verification

After a chat ops message is sent you can optionally require the user to verify their identity over SMS. This helps protect your organization in cases where the user’s account has already been compromised. When this setting is enabled, the user will be texted an SMS code to verify their identity after they respond to our chat ops message. If no mobile phone number is identified for the user or this setting is disabled, we will message their manager and require verification from them instead.