My team and I are looking to revamp our categories from the current OOB ones and looking for recommendations or what others are using. I know there are already several OOB Categories with subcategories. We have discussed the possibility of using the ...
Hi, When should I need to install MID Server during VR Tenable integration? What do they mean by the "same environment"? I'm not sure about that. Tenable.sc is an on-premises integration that gives you the option to use a MID Server if the Tenable.sc...
Hey team! Any chance that ServiceNow is looking to integrate the Exploit Prediction Scoring System (EPSS) scoring into ServiceNow to enhance vulnerability data? https://www.first.org/epss/ What is EPSS? EPSS provides a fundamentally new capability fo...
Hi, team! Customer question: "We are using Tenable.sc as our scanner (plugin ver. 3.6.4). We are seeing some detections associated to Vulnerable Items like this:VIT0113003 We have the detections come in with much of the same information but it ...
So, I'm not sure how possible this is, but my IS teams are asking if there is any way to add description field to the list of vulnerable items in related. They want to use this to filter out things easily to split task for appropriate teams For inst...
Hi- I would like you to consider voting up my idea. How can it help you? This simple business rule condition change will help keep your Remediation Target Rule and Remediation Target Date fields in sync with your risk rating when it changes. SN suppo...
Hello all we are setting up the MS exchange online integration to enable search and delete of emails but after running through all the SNOW documentation when we hit validate for the connection the state of the validate certificate authentication sta...
MSIM workspace has a tab called "Collaboration" once you open a major security incident. On this tab I can not get the SharePoint library to display despite having configured it correctly. If I open the workspace in UI Building, this section has a de...
We are running two integration instances in our environment, one for Qualys Vulnerability Response and one for Qualys Configuration Compliance. Below are the jobs running for Qualys VR and Qualys CC. We started seeing duplicate VITs in our production...
In the Security Incidents application. I’m looking for a technique on how to restrict access to the records. A user who is currently login can see and edit only records that he assigned to.
What does the "Mark Deprecated" UI Action do on the Test Group (formerly Policy) form? The UI Action is present on both "Active" and "Inactive" Test Groups. Does this UI Action just deactivate the Test Group or is this another action?
Within our integration of Qualys and Qualys SCA into Vulnerability Response and Configuration Compliance, we are experiencing some VIT duplications that correspond with the starting of Configuration Compliance jobs starting. Since Qualys uses the sam...
Thoughts on the following configuration for incident and problem handling. The tool has been configured so that a major incident can be placed on hold Pending Problem. When you link an Incident to a Problem and set this status, the cause and fix info...
Hi,Our team is looking for an option to reopen a Security Incident which is in closed state. Currently once you close the Security incident you cant reopen or edit any fields. Basically team is looking for an option to edit fields on a security inci...
