Hello All, I have Qualys integration running for importing vulnerabilities. Please let me know if I am wrong about this:Vulnerable Items are imported through scanner into Discovered Items table.There items are mapped to CIs.The vulnerable items are g...
We reinstalled the VR integration with Tenable and now all our existing Vulnerable items and Discovered items have empty integration source. Integration source is empty as it was tied to the previous integration. The effect of this is that all existi...
Hi Everyone, Wanted to understand how the "Trusted Security Circle" works in ServiceNow and how to configure that.There is no clear documentation available in docs.servicenow for this specific topic/functionality. Hence seeking community help. Please...
We are having issues with Exception Requests (Vulnerability CHange Approval) expiring. We have setup out of the box approval rules with expiry set to 7 days. But the Vulnerability Change Approval were expiring prior to 7 days. Seems to be related to ...
Hi all, We're implementing VR for one of our client that has already CC implemented, they are using the same source data which is Qualys.What is the recommendation of sharing the same integration ?1- create two instances one for CC and the other for ...
Our vulnerability response users have recently been telling us that vulnerability remediators are looking to get vulnerabilities into ServiceNow from Qualys faster than our current timeframe. We currently just run the Qualys jobs overnight to import...
Hi Everyone, Can anyone please help me on enabling the data metrics - records for Vulnerability Management PA dashboard. Currently vulnerability management PA dashboard available in graphical view, and I can be able to see the trends, but I want to s...
Hi Guys, I want to send the template html of the Post Incident Review (after complete) for email notifications, but I can't because ${templatescript: } don't work. What is the best way?
how I can split SAST AND SCA projects or How I can make project name user friendly like prefix it with the asset ID AND project name
Hello,I am trying to determine if a dynamic incident assignment is possible in the Security Incident Response (SIR) Module.by dynamic, I mean by using the current time and on-call member of an assignment group Here is the use case:During core busines...
Starter Story order #16:CI Matching - Unmatched CIs DescriptionAs a Vulnerability Manager, I need the ability to review and adjust the baseline Lookup Rules in order to address items found in the Unmatched CI table. This allows me to analyze these re...
Hello community,RE: Qualys to ServiceNow Integration via the Qualys Integration for Security OperationsI'm getting an error for the 'Qualys Host List Integration' with the following error message: {"code":"1980","url":"https://qualysapi.qualys.com/a...
How can I receive automated notifications regarding security vulnerabilities from ServiceNow?
Hello,Is it possible in the ServiceNow instance to integrate the Vulnerability Response module with two separate scanners (for example, Qualys and Wiz integration with VR)? Is there any standard connector to handle two scanners? Regards,Gaurav
Initial Condition for Business rule to trigger : (current.active == true && (current.cmdb_ci.changes() || current.source_risk_score.changes() || previous.active != true || ((new sn_vul.vulUtils())).shouldRefershRiskScore(current)))) Updated Conditio...
