SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Threat Intelligence Tables Mindmap

Below you'll find a mindmap I've made, breaking down all of the many tables that come along with the ServieNow Threat Intelligence offering. My hope is that this provides value to ServiceNow developers and implementers new to the Security Operations ...

NickSessa_0-1705620518868.png
Nick Sessa by Kilo Sage
  • 984 Views
  • 2 replies
  • 3 helpfuls

Resolved! Qualys upgrade deleted custom fields added to VUL

Hi, any Qualys experts out here who can help explain potentially why the plugin upgrade to version 12.10.1 would cause custom fields to disappear? My understanding was that upgrades will not overwrite custom work like additional fields. (But maybe a ...

nancym_0-1705600112194.jpeg
nancym by ServiceNow Employee
  • 381 Views
  • 1 replies
  • 0 helpfuls

Security Incident Response - are integrations necessary

Hi SecOps community, We are exploring the Security Incident Response module in our DEV environment, we are looking to track phishing emails and vulnerabilities for patching. It seems like tracking vulnerabilities is part of the Vulnerability Response...

zynsn by Tera Expert
  • 1028 Views
  • 1 replies
  • 2 helpfuls

Classification Rules, a Guide.

All, As the year winds down, I found that I had a bit of time and thought that a Whitepaper on Classification Rules would be a good use of my time.     See attached   -Chris

Resolved! Update Description of SIT

Hello, I am working on a playbook in the flow designer. I am creating a SIT task for the playbook, however it does not let me set the Description of the task, only the Short Description. see example screenshot.This causes the description of the task ...

festeves1_0-1700156304892.png festeves1_1-1700156356156.png
festeves1 by Tera Contributor
  • 967 Views
  • 2 replies
  • 2 helpfuls

Splunk to ServiceNow incident ( ITSM) integration.

Hello Team,  I need to integrate Splunk to ServiceNow incident ( ITSM)  This integration should pull Splunk for certain alerts, to generate ITSM Incidents.This should handle automatically creating ITSM Incident based on alerts firing in Splunk. Pleas...

B Ashok by Tera Guru
  • 1201 Views
  • 1 replies
  • 0 helpfuls

SIR and VR dependent app compatibility to app updates

I administer SIR and VR. To update the SIR app to a new version, sometimes there are dependent apps that also need updated, i.e. Security Support Common. Security Support Common (SSC) is also used by VR and according to the Compatibility Matrix KB (l...