What are your best practices for dealing with stale assets? I'm particularly looking for a way to deal with VIT's from hosts that have been purged from Qualys. When the next sync occurs, usually once a day, the VIT's remain open for hosts that we no ...
Hi,When state is Awaiting Approval in Policies & Compliance Management its not triggering approvalso that Approver can Approve/Reject. If we tab on Request Approval UI Action state changes to Awaiting Approval but Approver can't able to approve it. p...
What is the consequence of leaving the "Owned by" field blank on CIs as it relates to the Vulnerability Response application? I know that the "Managed by" field can be used to assign remediation tasks, but I'm not sure how Vulnerability Response uses...
I have an existing Exception Rule that is active with a "Valid to" date expiring soon. I selected the "Request Extension" option from the rule and entered the new date, upon approval, this only updated the "Deferred to" date. 1) the Valid to date mea...
Hello community, So I understand that a Default SLA flow designer in global scope creates and triggers a notification for events created inside the notification such as - 'SLA warning parm' and SLA breached parm'. So, I copied the same flow designer ...
I am trying to integrate Tenable.io with ServiceNow, but my API credentials are not being accepted, I keep getting this error : Error: Cannot run REST based integration without Tenable api credentials specified. I have admin access on Tenable which l...
We have been using CS for a couple of years now. I am interested in any experiences people have with keeping the detections in ServiceNow in sync with the detections in CrowdStrike. Are you able to keep the data in sync?If so, what is your strateg...
Hi Community,I'm currently working on the PCRS integration with Qualys in ServiceNow and encountering an issue when running the PCRS Test Results job. The job fails with the following error: "Cannot run REST-based integration without a Qualys API cre...
Hello.I'm quite new in VR. Can somebody explain me a CONCEPT of "Remediation Task Rules" ? I was trying to understand it and read docs etc etc but not clear for me: how exactly the "GROUP BY" works?Where is the outcome of this grouping? Where do I se...
Hello all, We have a requirement to defer VIT's and capture exception number against those deferrals. The exceptions are raised in a 3rd party system and the exception data is synchronized in a custom ServiceNow table called 'bwise exception table'.S...
Hello,We are currently exploring the possibility of integrating Joe Sandbox with ServiceNow Security Incident Response (SIR).Has anyone implemented this integration before, and could you share some guidance on how to set it up?Does ServiceNow provide...
Hi All, I have some questions related to the Tenable.sc Integration Job - Tenable.sc Fixed Vulnerabilities Integration.1. My client doesn't want to create Vulnerable Items for the vulnerabilities that are fixed. Do I need to run this job?2. If I have...
Hi Team,I am currently working as a Quality Analyst in ServiceNow and I am looking to transition into a Security Analyst role.I have a few queries regarding DevSecOps, SIR, and AVR, particularly on how to gain both theoretical knowledge and hands-on ...
Hello,I would like help in designing classification and assignment rules for VRM with the best practices based on what ServiceNow recommends and is scalable. Essentially, ensure that the VRM process can scale to additional or modified PSG, Primary Su...
