Hello Team i want know about how to integrate Solar Winds,Rapid7,Manage Engine, MS Defender EDR this event management tools with servicenow, and what are pre-requisites for this, please explain step by step for this and do the needful.
Hi SecOps Experts,I have query, where we need to create a separate view for different team inside SIR Module. Completely Different From Default View (Currently in use by Security Team). Need your suggestions, is it recommended/how feasible it will be...
Hello, I want to create a Metric Definition that calculates the state duration of a SIR from when it was opened till its state changed from 'Contain'. By now I have the following script : // variables available// current: GlideRecord - target incide...
Application vulnerable item [sn_vul_app_vulnerable_item] record in servicenow make readonly the remediation target and Last opened field when user doesn't have pentester role.if pentester role there for other group or group members they are able to e...
I want to add manually a new item in servicenow Security integration item dashboard. How can i do that in my personal servicenow instance?
Hi all, I am trying to install the Security Incident Response Workspace plugin in my instance. I first installed all the dependent plugins, and when I proceeded to install the Security Incident Response Workspace plugin, I could not find it in the Pl...
Hello! I have been using the Microsoft Defender Endpoint plugin for the Security Incident Response application, I am using it to create IoC in the MDE.My question was if there is a way to change the status of the alerts that the MDE generates automat...
Is tenable.sc can be integrated with Servicenow configuration compliance application, if there are any custom integration doc regarding this would be helpful?
Hello ServiceNow Community! I am doing an integration of ServiceNow VR with Qualys, and encountered an issue where KB import works fine, but Host import fails with error 400 (Bad Request).We've dug through all the logs we could find, but the most des...
Hi Everyone, Greetings, While exploring the plugins available in the ServiceNow store concerning the vulnerability response application, I came across another plugin called "Qualys Core" that appears quite similar to "Qualys Integration for Security ...
Hello All We are receiving some errors on Rescan attempts from ServiceNow, for just some specific IPs. Error code: 999. A virtual or physical scanner appliance is needed As a result of the error message, we have mapped some specific asset groups that...
Hi Everyone, Can we have Remediation Task Rules created for Application Vulnerability Response? Please clarify. Thanks
Step 1: The scheduled job “Evaluate remediation targets” will run daily at 7am EST. It will trigger the remediation targets rule and update the “Remediation Target” Date field, based on the “last_opened” as Sec common system.Step 2: After that, Backg...
Hello experts,I encountered this behavior but I am not sure if this is changes in Washington Version.For both Utah and Vancouver version (based on PDI test), there is no added role for survey_reader when the itil role is added to a user. But in the W...
There is a pop-up message as shown in the attached screenshot that is triggered when the state of the security incident is changed to closed in the Security Incident Response Workspace. I need to modify the trigger condition for this message. However...
