SecOps forum

If Tenable VIT is Resolved then Trigger an automated Scan

Hi, If Tenable VIT is Resolved then, Can we Trigger an automated Scan? Thanks & Regards,Titiksha

VIT and VUL/RT remain linked after unassign

We have the sn_vul.rerun_task_rules set to true but the VIT unassign action is not removing the VIT from the original Remediation Task. The VIT and VUL/RT are still linked and the assignment groups are different. The states are all OPEN. Not related ...

Push Notifications

Hello, I need to update the push notifications that are sending when an Onboarding Journey and LE are initiated.I just need to update the push notifications to only send for some activities when launched. Also a need to deactivate push notifications ...

Integrating multiple Qualys sources into Configuration Compliance

We are ingesting Qualys test results from multiple Qualys instance... let's refer to them as Qualys A and Qualys B. Each Qualys instance has different policies and ingesting test results from each instance results in policies being recorded in the sn...

Resolved! How to change default tab for Security Incident Response workspace

Hi,How to change the default tab for Security Incident Response workspace?When I open a security incident from workspace, the tab defaults to 'Overview'. Instead it should be defaulted to 'Details' tab when users open the record. Please assist.

Resolved! how is the risk rating field calculated in VR?

Hi all,how is the risk rating field calculated in VR? any pointers on this please provide,Thanks in advance.

Reapply Remediation Task Rule After New Assignment

I am aware of the 'Reapply Remediation Task Rule' option from a remediation task rule, however the fact that this deletes all VUL's that are open and then recreates new ones is not an ideal solution. I created a new assignment rule, and also changed ...

Resolved! Vulnerability Response -Sys Properties Explanation

Hello,I'm looking for additional information about following 3 properties:1. sn_sec_cmn.filterOutDecommissionedCIMy understanding is that if we have this property enabled, ServiceNow will not mach an vulnerability to retired CI, instead it will creat...

Resolved! Some of the vulnerability items of snow are not assigned to any assignment Group

Some of the vulnerability items in vulnerability response module of snow are not assigned to any assignment groupFor example, A configuration item has various VITs created with different QIDs, Some are assigned to respective group., some are left una...

Update Push Notifications for LE Activities

Hello, I need to update the push notifications that are sending when an Onboarding Journey and LE are initiated.I just need to update the push notifications to only send for some activities when launched. Also a need to deactivate push notifications ...

VR Tenable Integration - CI with multiple IP addresses

Hi Community,I have an issue that i'm wondering if anyone else has seen.ScenarioA server that has multiple network adapters and ip addresses, say a cluster node.CI has both IP's listed in ServiceNow CMDBTenable scans both IP addresses and records the...

Notifications for Security Incident Response aren't working.

Hey The OOTB notifications aren't getting triggered for SIR. All the events are triggering sir.request.changed event for Security Incident update notification. When I create an incident the sir.incident.email.creation event should get triggered but i...

tenable.io additional integration instance credentials won't save

I am working to implement Tenable.io with Vulnerability Response. We are normally filtering out vulnerabilities that are medium-severity or below. However, a new requirement popped up for us to also import medium-severity vulnerabilities, only if t...

AVR: Manual AVIT not editable except by creator

When creating manual AVIT records, if an Ethical Hacker creates a new AVIT, even an App-Sec manager cannot edit that record. This works the other way around too. Is this by design? Even members of the same role cannot edit records that other members ...

Third Party Vulnerability Management Integration - Trend Micro, Holm Security, Microsoft Defender

Hi Team, Currently working with a customer for SecOps VR implementation. SIR is not implemented and not a purchased mdule as of now. The Vulnerability scanner details shared are as below along with the available integrations.1. Trend Micro - Incident...

Forum Posts

If Tenable VIT is Resolved then Trigger an automated Scan

VIT and VUL/RT remain linked after unassign

Push Notifications

Integrating multiple Qualys sources into Configuration Compliance

Resolved! How to change default tab for Security Incident Response workspace

Resolved! how is the risk rating field calculated in VR?

Reapply Remediation Task Rule After New Assignment

Resolved! Vulnerability Response -Sys Properties Explanation

Resolved! Some of the vulnerability items of snow are not assigned to any assignment Group

Update Push Notifications for LE Activities

VR Tenable Integration - CI with multiple IP addresses

Notifications for Security Incident Response aren't working.

tenable.io additional integration instance credentials won't save

AVR: Manual AVIT not editable except by creator

Third Party Vulnerability Management Integration - Trend Micro, Holm Security, Microsoft Defender

Tenable.io authentication

VR Remediation task duplicate record

Recalculation of Remediation Target Date when a Ri...

VR Qualys Integration Vulnerable Item Processing

Vulnerabilities are active in Qualys but there are...

"ACL Exception Insert Failed due to security const...

Question about July 31 Transition for Wiz Built St...

CI Lookup Rule - Auto promote on certain classes

Not able to install VR plugin in PDI

How to create reports for MTTR, TTR and Total time...

How can I add multiple CIs to the Security Inciden...

'Public Exploit' field in Vulnerability

Matched Discovered Items have empty 'Matching type...

How to revert deleted widgets or rich content in E...

DevSecOps