Hi, After the vulnerable items are closed, something is triggering business rules that run assignment rules and setting the assignment group to empty on closed VIs. Our assignment rules are configured as follows:Discovered item.Resource Tag contains ...
Hey Folks, I'm hoping that the hive mind can help guide me a bit here. We have recently been reviewing records in the CMDB and have identified that the VR.System is creating thousands of CI's. My understanding was that, if the host that is imported f...
We are looking to onboard responsible disclosures to be created as a request in servicenow. Which is the right place to put this in servicenow. Can it be put into vulnerability management app. OR security incident request table (sn_si_request) ? If...
Hello, I would like to know how does the auto scan happen from Servicenow to Qualys and on which states is the scan triggered ? What are the jobs that run and where can we monitor the/m? Update: i see that when the state changes to Resolved the auto...
I would like to make use of this but instead of some one doing the job. is it possible to automate this process and patch Vulnerability Assignment Recommendations uses ServiceNow® Predictive Intelligence and machine learning to recommend assignment ...
For a record producer that is linked to an execution plan. I added two new execution plan tasks, which are running regardless of a specific yes or no field in the record producer. I have tried adding conditions to the execution plan tasks that SHOULD...
i understand from servicenow it is able to perform patching using bigfix from Qualys data. i know now you need to submit change. is it possible to make use automated / or using AI and send a notification to the user to allow patch and notify once the...
Hi Everyone We have a discussion going on for enabling Splunk ES & Sentinal OOB plugin for SIR creation The question now is whether aggregation will occur for SIRs created from different sources. I mean if an SIR is created by Splunk and if the same ...
Having an issue with the MAC Address match for our Tenable and Microsoft TVM integrations. As far as I can tell, our CMDB has a format of 0E1234ABD423 and the integrations are bringing them in as 0E:12:34:AB:D4:23. Can anyone suggest code that I ca...
I want to create a Ui action to copy security incident similar to the one we have on Incident. Can anyone please help with the script.
Hi all, Does anyone know what the filter is based on for the "Asset Category" when using the Watch Topics? The entries are "Infrastructure" and "Cloud" however I'm not sure how those are setup or what the actual filters are based on. Thanks!Nate
Hi I need a assessment on incident resolution. How can i achieve this?
Hello,Splunk has created 1900 notables whereas only 950 security incidents were created in ServiceNow. What could be the reason for all the notables not getting created on SIR, is there any rate limit?
During the Qualys ingestion and CI Lookup Process if there is no matching CI in the CMDB an Unmatched CI, Unclassed hardware and Incomplete IP record is create their associated tables (sn_sec_cmn_unmatched_ci or cmdb_ci_incomplete_ip or cmdb_ci_uncla...
We're looking into moving from custom flow of ingesting Tenable.io WAS scans to the OOTB integration.For those customers who are already using the OOTB integration, what are the challenges you are facing in Tenable.io WAS? Thanks!
| User | Count |
|---|---|
| 4 | |
| 3 | |
| 2 | |
| 2 | |
| 2 |
