Hi all! By popular request - I recently delivered a presentation on ServiceNow and how it can help with SOAR (Security Orchestration, Automation & Response). It briefly covers the SOAR space, how ServiceNow aligns and areas where we go beyond the def...
Join us in a special SecOps community webinar dedicated to Major Security Incident Management (MSIM). For those of you who have implemented MSIM (or are planning to do so) this session is the ONE not to miss! Antonio Challita (Sr. Principal Product...
ServiceNow's Vulnerability Response Exploit Prediction Scoring System (EPSS) provides a fundamentally new capability for efficient, data-driven vulnerability management. It’s a data-driven effort that uses current threat information from CVE and real...
In ServiceNow’s last Store Release of 2023, there are three noteworthy innovations added to the Security Operations offering: Vulnerability Crisis Management, Compensating Controls for Vulnerability Response, and many new Now-on-Now flow-based playbo...
SpoilerUpcoming changes to National Vulnerability Database (NVD) APIs - Upgrade Vulnerability Response to v17.1.4 or higherUpcoming changes to National Vulnerability Database (NVD) APIs - Upgrade Vulnerability Response to v17.1.4 or higher Fell...
The upcoming November and December releases bring important updates for Vulnerability Response customers. Join this webinar to learn about critical topics for these releases including: Call to action: NIST to deprecate NVD API 1.0. Upgrade Vulnerabil...
There's a feature in Vulnerability Response that was released in V18.0 where you can reapply CI Matching Rules after the Source Data is updated on a Discovered Item. What this means is that when your vulnerability scanner gives new Source Data, it c...
Three updated courses for SecOps have been released in Now Learning. All of these are based on the Tokyo family release. They each provide the student with a personal instance that allows them to perform the labs in the courses. SecOps Fundamental...
The attached QuickStart Guide is a valuable resource to help you get started with Vulnerability Response. Note that a new QuickStart Guide is also attached for Unified Security Exposure Management (USEM), the next evolution of Vulnerability Response....
Playbooks in Security Incident Response often use response tasks as a channel to guide the security analysts and expedite the resolution of security incidents. These playbooks rely on responses provided by the analyst via the response task "State" fi...
When you have a SecOps SIR professional license you are entitled to the Threat Intel module. The Threat Intel module is primarily focused on providing an additional layer of enrichment of Security Incidents and its observables. Although Threat Intel...
When using the SecOps Email parser the Email Inbound Alert rule “Record SecOps Email Events” creates Events for inbound emails into the “sn_sec_cmn_email_event” table. After this, the events are matched and parsed using the available parsers defined ...
Searching for the right course to help you on your career journey, look no further! Find all available courses ServiceNow offers and the class schedules by region that will support your career journey. You can find virtual offerings, In Person Offeri...
Hello all, I am excited to bring you the Q3 program of Product Success Events, hosted in collaboration with several of the product teams at ServiceNow. Thus far, we have added a new topic (as requested) as part of our VR Health Initiative, as well...
ServiceNow's CISO Ben de Bont discusses why digital technologies, such as Gen AI, are the key to both managing risk and seizing market opportunities in the latest issue of Workflow Quarterly. "Companies of all sizes need a way to define, measure, an...
Our "Success with Vulnerability Response" series of recommended practices deep-dive webinars continues. On July 11&12, Lisa Henderson, Sr Staff Software Engineer and I presented how to use Watch Topics, Remediation Efforts, and Remediation Task Rules...
Hello SecOps Community, The ServiceNow VR team has run a very tight schedule of "VR success recommended practices" webinars through 2023 and into 2024. The team of ServiceNow experts has now helped hundreds of VR to get better and faster value fr...
Dear SecOps Community Members, Over the past 3 months, we’ve had many stimulating conversations with our customers and partners on Major Security Incident Management (MSIM). More information about MSIM (including a 5-minute demo) can be found on th...
On Dec. 16, 2025, Erik Brostrom and myself, both from the SecOps Product Excellence team, presented the benefits of the VR Health Dashboard. Following your VR go-live there are a number of tuning and maintenance considerations to maintain a healthy ...
The "Success with Vulnerability Response" series of recommended practices deep-dive webinars continues. One of the most requested topics by customers via our customer voice questionnaire is VR Integrations, and as a result, we conducted a recommended...
Sarah Wood
ServiceNow
LisaLatour
Eric Feron
Mary Hain
seanflack
Steph Morillo
