Vulnerability Groups & Vulnerable Items
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-16-2017 08:41 AM
Good Morning,
I'm looking at the feasibility/usability of integrating a vulnerability scanner w/the SecOps module of ServiceNow. When creating a vulnerability group per vulnerability per support group, will the vulnerable items still show up in the respective support group's queue?
I'm also open to hearing how y'all are integrating a vulnerability scanner and disseminating the vulnerabilities to the asset owners.
- Labels:
-
Security Operations
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎05-16-2017 10:00 AM
The support group will see the single VUL (Vulnerability Group), and inside that record can can see links to all of the related VITs (Vulnerable Items).
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-13-2018 12:12 PM
Did you ever figure out how to automate the population of the assignment groups for your vulnerability groups?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-13-2018 12:27 PM
Negative. Instead I decided to take a slightly different approach. I was able to use a combination of dynamic reports and custom homepages to show support groups their vulnerabilities without necessarily assigning a ticket or vulnerable item for each vulnerability.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-13-2018 12:38 PM
Did you define a support group for every CI then and just query off that to see if there are any associated vulnerable items?
