SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! MSIM Workspace

Hi,Need to change default value for priority field in MSIM workspace. created UI policy to do the same but it's not working. And we can not change it from dictionary level as it is inherited from task table.Please suggest.Thanks, 

Pranali18 by Tera Expert
  • 474 Views
  • 8 replies
  • 0 helpfuls

VR or SIR and a Phase 2

All, I am doing some planning... so a question for everyone: Once VR or SIR are up and running successfully, what is important enough to start a Phase 2 project? What I mean is... Would you like additional configurations, new integrations, new OOB ca...

remediation

i have a few questions on the vulnerability remediation :  1. other than submitting a change to push for a large amount of machines and it is closed when all the machines have been remediation, but what happens if one machine happens to have the old ...

chercm by Mega Sage
  • 212 Views
  • 1 replies
  • 0 helpfuls

Tenable.io integrate with Service now

I have a question. We want to integrate Tenable.io  with ServiceNow CMDB to manage the client asset. Is there any requirement from the ServiceNow side? I found some content on the screenshot (Tenable and ServiceNow Integration Guide), "Service Graph ...

HannaJ by Kilo Contributor
  • 836 Views
  • 1 replies
  • 0 helpfuls

Resolved! Can't install SIR v. 13.4.3 on PDI

Hi SecOps experts,   I'm trying to install the latest version of SIR (13.4.3) on my PDI but it's stuck as per the attached screen shot:     V. 13.4.3 has only been in GA for a couple of days, so I'm wondering if that's the problem. Interested to hea...

sir_install.png

Resolved! Major Security Incident Promotion Grayed Out ?

Hello All, I am banging my head against the wall with this one. I am in the MSIM workspace. I have the sn_msi.worksapce_admin and the sn_msi.workspace_manager roles. I can propose that a security incident become a major incident. But then cannot prom...

PSCWILLEY by Tera Contributor
  • 737 Views
  • 4 replies
  • 2 helpfuls

Remediation Target on some VIT not getting populated

We are on Vulnerability Response Vulnerability Response 21.1.2.  What we are seeing is that some VITs although they meet the remediation target rule condition(s) they are not getting remediation target dates populated on the VIT.   The remediation ta...

Resolved! Technical Delivery/Engagement Manager Resources for SOAR

Is there a Technical Delivery/Engagement Manager whose role is to manage ServiceNow SecOps initiatives (Security Orchestration Automation and Response) and can speak about their experience and provide tips/resources I can leverage?

RedmondL by Tera Contributor
  • 686 Views
  • 7 replies
  • 1 helpfuls

New View For Different Team In SecOps Module

Hi SecOps Experts,I have query, where we need to create a separate view for different team inside SIR Module. Completely Different From Default View (Currently in use by Security Team). Need your suggestions, is it recommended/how feasible it will be...

DKSINGH by Tera Contributor
  • 213 Views
  • 2 replies
  • 0 helpfuls

Metric Definition for Security Incident state

Hello, I want to create a Metric Definition that calculates the state duration of a SIR from when it was opened till its state changed from 'Contain'. By now I have the following script : // variables available// current: GlideRecord -  target incide...

TiberiuZ by Giga Contributor
  • 270 Views
  • 2 replies
  • 0 helpfuls