It always helps to understand how ServiceNow products work foundationally and how they are connected to other products, which is the purpose of the following product architectures. Security Incident Response - Product Architecture Blueprint Vuln...
Before starting implementation, it's always a good idea to conduct a process workshop to verify processes and identify requirements. Listed here are process workshop guides you can use to run workshops if you are self-implementing or to prepare if yo...
Before you get started with SecOps, here are some resources to help you get acquainted with features and capabilities. What is Security Operations (SecOps) SecOps Video Overview SecOps FAQs Product Insights- SecOps transformation
In the first episode of a series of three, Keith Reynolds, Sr Advisory Solutions Architect, shares his extensive experience with customers to explain (with in-product demos) how to easily and quickly get started with Security Incident Response, phase...
3/31/2022 Update: Check out this new blog post for additional guidance on configuring MSIM: Getting Started Guide + Video Configuration Walkthrough Dear SecOps Community Members, We’re excited to announce that Major Security Incident Management (M...
Hello Community, Some great news for Security and Risk applications users running AWS workloads. ServiceNow and AWS have expanded their partnership to provide security incident automation & orchestration to your security alerts coming from cloud in...
Note: this article assumes the reader is actively using Discovery and Vulnerability Response Background: How Vulnerabilities are Imported and Managed in ServiceNowVulnerable Items are a key concept in ServiceNow. They represent a Configuration Item w...
As part of the journey into managing enterprise vulnerabilities, it’s vital to understand How to Prepare for your Vulnerability Response (VR) Deployment. Initially, it might seem overwhelming, but a well thought and deliberative approach will take yo...
Who needs to be in the room for a Vulnerability Response Workshop You need the right people in the room to have an effective Vulnerability Response (VR) Management deployment from the beginning. It is critical that key resources and owners of busin...
Automating the Process of "Closing" VIs on Non-Running Red Hat Kernels in VR with the Qualys Integration This post is for anyone using the Qualys integration with Vulnerability Response that has had issues with VIs for the "Red Hat Update for kernel"...
Hi everyone, In the face of the current vulnerability crisis with log4shell, many people have been asking me how ServiceNow can help, and asking here in these forums how ServiceNow is doing with it. Several teams worked together to assemble a two pa...
Hola everyone! I would like to make you all aware of a new course that's been released in NowLearning for SecOps. Follow the below link to take up this course which gives an overview of what's been released in Vulnerability Response in Q4 2021. Clic...
Vulnerability Industry Standard ServiceNow ingests vulnerability data from various third-party tools and is used in the remediation processes. This article focuses on the types of vulnerability data brought in by the National Vulnerability Database (...
The current state of NVD integration on ServiceNow At the time of writing, Common Weakness Enumeration (CWE) integration is an on-demand scheduled integration. The integration imports CWE’s and creates associated vulnerability knowledge base articles...
We are happy to inform you that the innovation lab release of integration of Palo Alto Prisma Cloud (erstwhile Redlock) with Configuration compliance to remediate cloud vulnerability will be available on 20th January 2022. Please plan to join the be...
The impact of healthy CMDB on the Vulnerability Response Management (VRM) in ServiceNow One of the question you might get from your client while implementing Vulnerability Response in ServiceNow is that wondering how the CMDB could impact the VR mana...
Introducing the new Now Create Vulnerability Response Success Pack As you probably know, at ServiceNow we are in the business of re-inventing work so it's so much easier and rewarding for our customers; or as we like to say: “Making work, work bette...
During the lifecycle of a security incident you are bound to require additional information from either; affected users, SOC and non SOC team members. Although most organizations offer multiple communication technologies to do this, email is still th...
Tired of waiting for long release cycles for integrations? Build your own integration with our latest Custom integration features that is available in the Innovation Labs. Not sure where and how to start? The feature provides a simple set ...
This extensive document, compiled by ServiceNow's Customer Success team, contains the end-to-end guidance for the successful deployment of your Vulnerability Response program. This guide encapsulates and introduces all the deeper dive episodes of the...
Sarah Wood
ServiceNow
LisaLatour
Eric Feron
Mary Hain
seanflack
Steph Morillo
