Torq

What is Torq?

Torq is a no-code security automation platform that connects security tools through API integrations and allows teams to build automated workflows for repetitive SOC tasks without writing code. Its workflow editor supports conditional logic, data transformation, and parallel execution, and workflows can be triggered by incoming webhooks, scheduled runs, manual execution from a Slack command, or CLI invocation. Torq is designed for the operational realities of security teams: workflows are version-controlled, auditable, and can be tested in a staging environment before deployment. Its library of prebuilt integrations covers the most common security tools, reducing the time required to build connections from scratch. Torq is particularly useful for teams that need to standardize and document their automation logic in a way that is accessible to all team members rather than dependent on individual engineers.

How does Torq work with Qevlar?

Qevlar can be integrated into Torq workflows as an automated investigation step within broader SOC automation pipelines. When Torq receives an alert trigger, it can invoke Qevlar to run an automated investigation and then use the results to drive downstream actions such as ticket creation, escalation, or containment, all within a single Torq workflow.