Seeking for best practice/practical solution on this requirement.We need to ingest all severity (CRITICAL, HIGH, MEDIUM, LOW, INFO) in Tenable.io but we need to filter the INFO to specific plugin id only.Things done so far:Added custom filter on HTTP...
Hi All, When we open vul group record getting error. Error :" Illegal access to package_private global script incident functions: caller not in scope rhino.global " And also I tried with changing scope to Global but same error, please help us if...
We enabled the 'Auto-close VI's on Retired CIs' option with the Vulnerability Response module. We then marked a CI as "retired". Both status and operational status fields for this CI were set to "retired". However, we are not seeing the existing ope...
Hi, Does anyone know which job or logic updates the remediation status of a vulnerable item to "Target met" if it marked as resolved/closed on or before their calculated remediation target date. It doesn't seem to defined in the script include "Vuln...
When a Remediator requests an exception for a Vulnerable Item, we can force the Remediator to complete a questionnaire.In such a scenario, how and where can I view a Vulnerable Item's related questionnaire please?
We have an issue with temporary or ephemeral builds that are built on a network, scanned by our VR scanner (CrowdStrike) and then patched. After the patching process, the builder then captures the snapshot of the build and then destroys it. However,...
We have a situation where we are looking to integrate with Qualys but the CMDB will only contain Cloud Resource data, i.e. VM Instance (cmdb_ci_vm_instance) and not necessarily the associated Guest CI (i.e. cmdb_ci_server). Are the vulnerabilities f...
Hi all, Qualys Integrations are appearing stuck in the sn_vul_integration_run table since past few days. what could be the reason? Thanks,Ravish
SeqOps-VR's vulnerability management provides an OOTB feature for manual capture of vulnerabilities. Reference:https://www.servicenow.com/docs/bundle/vancouver-security-management/page/product/vulnerability-response/concept/manually-ingest-vulnerabil...
So, my vuln analysts are wondering if there is any way to have the remediation target use a base of when a VIT is assigned to a service now group. The reason being that the remediation teams are complaining because as certain items get assigned (lik...
Dear Experts,We are facing an issue in web scanning import from Tenable.io into ServiceNow for #Vulnerability Response implementation.Connection between the Tenable.io and ServiceNow is successful. However, in ServiceNow we are receiving only Nessus ...
We are in the process of updating our platform to Zurich and updating VR to version 26.0.13.In the update it appears ServiceNow is adding a new functionality within "Transit to Closed" business rule for VIT: In this new update, a VIT could be define...
when we raise a request exception for a vulnerable item, a Survey popup will appear but user can close without filling the fields. we want to make the user to fill form and submit then only exception request process needs to start.
As a Vuln Response Analyst or Manager, I want to use Remediation Efforts not only to group Items on Watchlists, but I also want to group Rem Tasks into one larger effort. Is there a way to do that or has someone leveraged Efforts for this use?
Hello, Is there anyone who can help me with the condition that I should use to set the SLA for Mean time to detect and Mean to dispatch for Security Incident Response and Security Incident Task?Thanks you! Or at least maybe to explain the difference...
