Device Compliancy Management- Encryption National Project
The IT environment at Ascension Health is made up of highly interactive and interconnected systems that involve patients, providers, physicians, and third party solutions. Network and data security is essential to protect the information that may be sensitive or confidential. The Encryption National Project ensures data is not accessed, disclosed, or modified by individuals that are not authorized to access sensitive data. Currently the project has completed the encryption of over 16,000 laptop computers, and removable media encryption on over 70,000 devices.
Vulnerability Management Module
Oak Ridge National Laboratory suffered a sophisticated cyber-attack in 2011. The damage was extensive and forced ORNL to shut down email and disconnect the entire lab from the Internet. ORNL identifies over 100,000 vulnerabilities each month and each of them has the potential to shut down the lab once again and cost millions of dollars. They were drowning in a sea of unpatched vulnerabilities, and Cyber Security staff did not have a way to adequately assess overall risk. So, in just 4 months, they created the Vulnerability Management Module in ServiceNow, immediately cutting vulnerabilities in half and reducing risk and costs. Now, ORNL have automated vulnerability using a risk-based approach. Daily scans import directly in to the CMDB each night to determine vulnerabilities. Tickets are generated automatically when vulnerabilities are found. Dashboards and reports provide visibility into what vulnerabilities are open, who owns them, and the status of the tickets. This innovation allows ORNL to focus on breakthrough science and R&D without the constant fear of cyber attacks.
Learn More:
Video
Risk Vulnerability Assessment Tool Application
A key pillar to operations infrastructure at GE Capital is their Business Continuity Management Program (BCMP). This program encompasses three core processes - crisis management, business continuity and IT disaster recovery. The team modernized the process and provided an easier method to quickly identify top risks with a specific location. They also introduced a capability to also correlate data across location, risk type, frequency, and several other values. The business now has the ability to perform scenario-based risk analysis and can model scenarios where a specific risk takes on more 'weight' due to frequency or geo-political conditions - and all this is done in an automated fashion, allowing the business to respond and identify risks faster. This has provided a single source of record for IT and Business processes for the entire BCMP program, and a modern, browser-based user interface that makes inputting data, analyzing the data, scenario planning and modeling and reporting faster than ever before. This application represents a concrete milestone into becoming a more integrated business where IT is enabling and driving business value.
Service Action Navigator
Ancestry.com were lacking consistent process, collaboration of data, and reporting when it came to running admin commands on their servers. And so they created the Service Action Navigator, using ServiceNow Orchestration, PowerShell for connecting to tables, and Discovery capabilities. The Service Action Navigator automates actions such as server reboots, web service restarts, and application pool restarts for Windows & Linux. It also provides staff with immediate performance and web load metrics; fully records any actions performed and creates change requests with all devices attached. Leveraging the CMDB to confirm the relationships that exist across machines and applications, it has given IT visibility into areas that need attention — and in many cases, mitigating issues before they even happen.
Infrastructure Monitoring Application
Monitor servers, networks, or websites — and control it all through ServiceNow. Evanios Monitoring is a complete infrastructure monitoring solution that runs inside ServiceNow. The app allows the detection and response to infrastructure issues, all from a consolidated platform. Monitoring can be provisioned automatically based on the arrival of a CI in the CMDB, or an approved change ticket. A Service Request could be used to change a threshold, enabling self-service while maintaining a detailed audit trail. Users can easily write and deploy their own monitoring scripts. Leveraging the same JavaScript engine that ServiceNow uses, the app allows scripts to be developed through the ServiceNow interface and pushed to the Evanios Agents.
