Add workflows for BeyondTrust Privilege Management Cloud

[jamos-bt]

Consists of TWO workflows (not sure how that plays into the consistency thing since the other submissions seem to only have a single pair of workflow definition and parameters). Each workflow is capable of retrieving data for one of the two primary categories of events which occur in or flow through the PM Cloud product:

• Activity Audits - These events occur within the PM Cloud web interface - examples include: policy changes, group changes, user management, etc.
• Client Events - These events occur on the individual endpoints that are managed through PM Cloud and are related directly to the functioning of the Privilege Management client deployed on those endpoints - examples include; process blocked, process allowed, service started, etc.

We also have an extension package which includes DSM Event Mappings, Log Source Types, QID Records, and so on to support these workflows. The goal is to eventually publish that extension to the Security App Exchange.