The Security Incident Response team is planning for SIR Workspace 2.0 to improve and streamline the workspace experience. To shape a smoother, more effective experience tailored to your needs, our UX team is gathering feedback directly from customers...
Hello Community, I need to associate multiple CIs with a single security incident record in the Security Incident Response application form. How can I achieve this?
Hi. Is there a recipe to create MTTR dashboards for time taken to close vulnerable items, in the same way there is a recipe in your community article on how to create "Reports for MTTR, TTR and Total time taken to close for incident table"?
Anyone has a recipe to calculate MTTR (Mean time to remediation) for vulnerable items that are tagged CISA or Ransomware?
Hi all, I want to know how the "Secure Attachments" are managed on ServiceNow. Say we have a phishing email that got escalated to a security incident or the analyst wants to submit a malicious file to sandbox, is it safe to upload it in "Secure Attac...
Has anyone ever come up with a way to rollup up detections to a single VIT, regardless of scanning source? I've had SecOps people ask me, if the CVE and CI are the same, why can't I add the new detections to an existing VIT, regardless of who found i...
The Tenable.io integration is creating and updating Vulnerability Items no problem However we created new String field on the Vulnerability Item form and we want to map some data from the Tenable.io Vulnerability item Data source so when the VITs get...
Hi,Could anyone please help me understand how to increase the spacing between the banner and the search bar (as highlighted in the image)? We’d like to move the search option slightly lower on the page.
Hi Community,I'm working on a requirement where I need to suppress audit entries related to Risk Score from appearing in the Activity Stream whenever the Priority field is updated on a record.Has anyone implemented a similar solution or can suggest t...
We had penetration test in servicenow for potential vulnerability and found to fix below two. LUCKY13 — Remediation requires disabling the vulnerable ciphers, as noted in the information above.• Instead of CBE Cipher Suites, use AEAD Cipher Suites su...
Hello All,I requested a Xanadu version of a Service Now instance and everything is working with the base install. When I am trying to install install the Vulnerability Response application 26.2.2 version, after installing a bunch stuff, it seems to b...
Hello, We have only 1 Assignment rule in place that runs and groups VITs by Assignment group & Vulnerability.But we see that there are Remediation tasks are created from that Rule & has VITs that are assigned to multiple different groups. What could ...
Hi, We have noticed that the Shodan integration no longer works.It would seem that the API has changed; both in address & format This has been passed on to both Shodan & ServiceNow.However, our clients are still faced with an issue. Anyone else facin...
Hi everyone,I've recently configured the CrowdStrike Falcon Exposure Management for Vulnerability Response app (x_crowd_vulnerabil) in my ServiceNow instance. The integration is successfully ingesting detection payloads, but I've run into an issue wi...
Hello All, I would like to have the ability to filter out the data by type of system (Windows Server, Computer, etc.). When you explore a CI, it is in a field called "class". What I like to to do is provide a filter that has all the possible values f...
