In SecOps implementation and I got an opportunity to configure a new Playbook in the Security Incident Response.What are the best practices need follow?What are the prerequisites?How to implement a new Playbook for enriching the Security Incident Res...
Hi,Tenable integration jobs are failing due to "Error: Invalid response code received from TenableSCAssetsIntegration: 403. Access denied." Any idea why? Thanks
Is it possible to create a vulnerability manually through the UI? Not a VIT, rather an entry under "Libraries" in either NVD, CWE or third-party? Not seeing a "NEW" button out-of-the-box, or in any of the other Libraries for that matter. This is with...
In Vulnerability Management, when the severity and risk score of vulnerability information imported from third parties changes, we would like to re-set the value of the remediation target. We are aware that we need to customize the “_setRemediationRu...
ServiceNow for Microsoft Teams is used to build ServiceNow and Microsoft Teams integration. OOTB recognizes that ServiceNow instances and Teams tenants can be integrated in a 1:1 relationship.Is there a way to integrate one instance of ServiceNow wit...
Hey everyone, Not sure if someone is facing similar situation. I would like to see risk reduction "exception" in classic UI. Why? Reason is very simple. Not all our teams are working in workspaces. Actually only few are and there's the problem. Teams...
Hi All, Can anyone let me know how the risk scores are calculated for security incidents? is it only depends on Business impact and priority? What are the different types in risk score configuration? How do we calculate Users business impact,vulnerab...
I am looking for only ITSM configuration from Tenable Security Center (tenable.sc) product without syncing Assets to ServiceNow.The document provided by tenable is not very much clear to configure only ITSM with ServiceNow, can someone help with a gu...
Hello,I am currently working on the Tenable.io integration and have encountered an issue where the Vulnerable Items are showing the CI as Undefined. I'm unsure about the next steps or the actions required to resolve this.Please see the attached image...
My goals is to allow analysts to link multiple incidents to an sn_si_incident record. I have thought of a number of ways to do this, but I'm coming to a dead-end. My options seem to be: - Modify the UI action in Other records on a sn_si_incident wit...
Remediation Target date for Vulnerable items are not getting calculated. When vul item is recalculated via Vulnerable calculator, then post recalculations remediation target is not getting updated (Ideally it should). Anyone faced similar challenge ...
Hi All, This is a challenge I've faced frequently when implement SIR for a customer and I was wondering if there are any 'easier' solutions than messing around with ACLs to achieve it:- Simply put, the SIR OOTB provides for these roles: CISO / Manage...
Hi All, We are doing the configuration for the 'Vulnerability Response Integration with Tenable'. We have managed to make the data come to SN, but the process part is either erroring or ignoring the data. I manage to see that: The data is being ignor...
In native UI of vulnerability response I'm able to see create security incident button but in workspace I'm not able to find that button. how can I configure that ?
Similar to our Vulnerability Response implementation, we want our teams that fix misconfigurations to only see the misconfigurations assigned to their Assignment Group. I assumed (incorrectly) that adding the sn_vulc.remediation_owner role would all...
