3/31/2022 Update: Check out this new blog post for additional guidance on configuring MSIM: Getting Started Guide + Video Configuration Walkthrough Dear SecOps Community Members, We’re excited to announce that Major Security Incident Management (M...
Hello Community, Some great news for Security and Risk applications users running AWS workloads. ServiceNow and AWS have expanded their partnership to provide security incident automation & orchestration to your security alerts coming from cloud in...
Note: this article assumes the reader is actively using Discovery and Vulnerability Response Background: How Vulnerabilities are Imported and Managed in ServiceNowVulnerable Items are a key concept in ServiceNow. They represent a Configuration Item w...
As part of the journey into managing enterprise vulnerabilities, it’s vital to understand How to Prepare for your Vulnerability Response (VR) Deployment. Initially, it might seem overwhelming, but a well thought and deliberative approach will take yo...
Who needs to be in the room for a Vulnerability Response Workshop You need the right people in the room to have an effective Vulnerability Response (VR) Management deployment from the beginning. It is critical that key resources and owners of busin...
Automating the Process of "Closing" VIs on Non-Running Red Hat Kernels in VR with the Qualys Integration This post is for anyone using the Qualys integration with Vulnerability Response that has had issues with VIs for the "Red Hat Update for kernel"...
Hi everyone, In the face of the current vulnerability crisis with log4shell, many people have been asking me how ServiceNow can help, and asking here in these forums how ServiceNow is doing with it. Several teams worked together to assemble a two pa...
Hola everyone! I would like to make you all aware of a new course that's been released in NowLearning for SecOps. Follow the below link to take up this course which gives an overview of what's been released in Vulnerability Response in Q4 2021. Clic...
Vulnerability Industry Standard ServiceNow ingests vulnerability data from various third-party tools and is used in the remediation processes. This article focuses on the types of vulnerability data brought in by the National Vulnerability Database (...
The current state of NVD integration on ServiceNow At the time of writing, Common Weakness Enumeration (CWE) integration is an on-demand scheduled integration. The integration imports CWE’s and creates associated vulnerability knowledge base articles...
We are happy to inform you that the innovation lab release of integration of Palo Alto Prisma Cloud (erstwhile Redlock) with Configuration compliance to remediate cloud vulnerability will be available on 20th January 2022. Please plan to join the be...
The impact of healthy CMDB on the Vulnerability Response Management (VRM) in ServiceNow One of the question you might get from your client while implementing Vulnerability Response in ServiceNow is that wondering how the CMDB could impact the VR mana...
Introducing the new Now Create Vulnerability Response Success Pack As you probably know, at ServiceNow we are in the business of re-inventing work so it's so much easier and rewarding for our customers; or as we like to say: “Making work, work bette...
During the lifecycle of a security incident you are bound to require additional information from either; affected users, SOC and non SOC team members. Although most organizations offer multiple communication technologies to do this, email is still th...
Tired of waiting for long release cycles for integrations? Build your own integration with our latest Custom integration features that is available in the Innovation Labs. Not sure where and how to start? The feature provides a simple set ...
This extensive document, compiled by ServiceNow's Customer Success team, contains the end-to-end guidance for the successful deployment of your Vulnerability Response program. This guide encapsulates and introduces all the deeper dive episodes of the...
Executive Summary On December 13, 2020, Reuters reported that malicious actors had gone after both the U.S. Department of Treasury and the U.S. Department of Commerce.Microsoft analyzed the attack chain and wrote that malicious actors might have comp...
Have you folks seen the Idea Porta in the Community? If not, I suggest you check it out today! If you have an idea, post it! If you or passionate about a topic, see what others have posted and vote up the good ideas! It is super easy, just click the ...
This video guides you to learn the migration approaches from Tenable-built to ServiceNow-built VR-Tenable integration. This video covers 2 approaches: One is about the clean the existing data and install the SN-built connector to ingest the dat...
Cofense Triage™, phishing detection and response (PDR) platform, accelerates phishing email identification and mitigation. Cofense Triage finds the phish that secure email gateways miss. With Cofense Triage, security teams speed analysis of user-repo...
Sarah Wood
ServiceNow
LisaLatour
Eric Feron
Mary Hain
seanflack
Steph Morillo
