I have noticed a delay regarding how quickly data about changes on cases in the SOAR UI propagates to the SecOps Dashboards datasets, “case” and ”case_history”.
Currently, it takes almost an hour for the database used by the dashboards to update with the latest changes made to cases in the SOAR UI. (e.g. a case going from OPEN > CLOSED).
Is this the intended/expected behavior?
