What ticketing system do you use to track and correlate incidents?

My employer (based in the US) is wanting me to investigate moving to a ticketing system that will automatically take the IOCs and other useful intel-based information (domain registrar, registered email addresses, cert registered names, cert hashes, etc.) and tie them together.

Additional context: This is because of the US SEC ruling of having to report material breaches, and the employer wants to make sure that lots of "little attacks" over time are not part of a larger "material" breach. …

addresses blueteamsec cert context domain domain registrar email employer etc hashes incidents information intel iocs moving names registrar system ticketing track