SecOps forum

VR Module page load

Hello Community, Can you please help with ideal page load size when downloading Qualys data

Add Security as an approver for adding admin users to highly privileged groups within ServiceNow

Hi SN Community members. ASK from IT Security manager within our org - In SN PROD instance, if it is possible that 'security approval can be obtained (via automated workflows or manually) so that we know about changes in privileged groups and we can ...

Data Payload Encryption/Decryption

Payload EncryptionI need some insights regarding payload encryption during data transactions. Specifically, when we retrieve values from one data source in ServiceNow and transfer them to another in 3rd party application, I need to encrypt the payloa...

Quick Thoughts on Lookup Rules in ServiceNow

Hello SecOps Friends, I hope you're all doing well! I wanted to share something interesting I recently learned and would love to hear your thoughts on it. In a project I was working on related to Vulnerability Response, I chatted with a ServiceNow em...

Resolved! sn_si_incident (SIR) table is supported in OpsGenie?

Hi guys,I installed the OpsGenie plugin to integrate with the client's Jira. Looking at all the settings that the module configures during installation, I noticed that the notes are focused on the incident table. By opening a ticket in ServiceNow in ...

Vulnerability Response: How to extend expired exception rule

Hi, We have a expired exception rule and need to extend it for few more months, but every detail on the form is greyed out and don't see 'Request Excpetion' button on expired rule. Please advise.

Resolved! Copy work notes from security incident response task to security incident

HiI am working on a request to modify how the work notes are copied from the response task to the Security Incident. We want to include the Short Description from the response task in the work notes. I see that this is configured in the SIR administr...

Resolved! Penetration testing on a single Application.

Hello Everyone,I'm New to Penetration Testing in ServiceNow.I've gone through several Blogs, documents and Knowledge article but i like to know, how it works in practical.I have a Single Application "ABC Insur" it doesn't have any CI items it is a St...

SIR integration with Splunk SOAR

Hello I'm looking to do a custom integration with Splunk SOAR, as there is NO available add-on for SIR integration with Splunk SOAR. Can anyone tell if doing a custom bi-directly integration between SIR and Splunk SOAR requires any special license en...

Application module field in Application Vulnerable Item table not populating values for all records

Application module field in Application Vulnerable Item table not populating values for all records. What is the reason for it ?

VIT Reopened when new VIT should be created

Hi, The title may not be representative of what should necessarily be occurring but it's what I feel should occur based on the behavior. Has anyone seen an issue in which a VIT is reopened months or even a year after it was originally resolved, in wh...

Vulnerable Items (VITs) and Vulnerable Detections numbers do not match

Hello community...I'm integrating with Qualys to the SN Vulnerability Management application and going through an exercise to determine if the Qualys detection count is the same in SN for VITs. However, I noticed a discrepancy and could not figure ou...

Resolved! Create templates in the Operational Workspace

Hello team,is it possible to create templates in the workspace like in the backend? BR

Tenable.io Compliance Results Integration

Hi All, Hope everyone is having a good day! I'm running the Tenable integration with ServiceNow and everything is running okay except for this integration: 'Tenbale.io Compliance Results Integration'. It is errors: {"status_code":"400","error":"Bad R...

Mapping MITRE Technique from Azure Sentinel

Hi all has anyone successfully mapped the MITRE Technique ID/Name from Azure Sentinel source data into the Security Incident? We have been informed from our analysts that the Technique is available for the Sentinel incidents but it does not appear ...

Forum Posts

VR Module page load

Add Security as an approver for adding admin users to highly privileged groups within ServiceNow

Data Payload Encryption/Decryption

Quick Thoughts on Lookup Rules in ServiceNow

Resolved! sn_si_incident (SIR) table is supported in OpsGenie?

Vulnerability Response: How to extend expired exception rule

Resolved! Copy work notes from security incident response task to security incident

Resolved! Penetration testing on a single Application.

SIR integration with Splunk SOAR

Application module field in Application Vulnerable Item table not populating values for all records

VIT Reopened when new VIT should be created

Vulnerable Items (VITs) and Vulnerable Detections numbers do not match

Resolved! Create templates in the Operational Workspace

Tenable.io Compliance Results Integration

Mapping MITRE Technique from Azure Sentinel

Does anyone know where to find the documentation f...

Where is the documentation for the Integration Ins...

Make vulnerable items untraceable in non-prod envi...

Not getting Approval in Policy & Compliance Manage...

ServiceNow and CrowdStrike VR Integration

What is the impact in Vulnerability Response of le...

Custom Table when pulled as a related list, 'Edit'...

Any way to see what Vulnerability Calculator was u...

WatchDog for monitoring long running transactions

please provide the processof major incident manage...

Vulnerability Response - how is table related serv...

SOLVED: How to recalculate Risk Rating for Remedia...

Vul Response Risk Score being updated to 0 when al...

Can we switch from ci lookup rule to IRE for CI id...

need some inputs on how to hide catalogs on basis ...