In an on-call scenario, the integration of automation with security operations can significantly reduce stress and enhance efficiency, as illustrated by a security incident managed through PagerDuty. The process involves initiating a SecOps Incident Response (IR) and containment playbook directly from the PagerDuty interface, which enables quick status updates and priority resets. The automation is facilitated by modular workflows that use integrations like CrowdStrike EDR to filter and act on high-severity detections, while still allowing for human oversight at critical decision points. This system employs a scheduling mechanism to automatically run the workflow every 30 minutes, generating alerts only for significant events. By simplifying and automating processes, teams can increase their agility and maintain consistent, repeatable workflows, ultimately reducing risk and improving response times.