Hi Community,I have an issue that i'm wondering if anyone else has seen.ScenarioA server that has multiple network adapters and ip addresses, say a cluster node.CI has both IP's listed in ServiceNow CMDBTenable scans both IP addresses and records the...
Hey The OOTB notifications aren't getting triggered for SIR. All the events are triggering sir.request.changed event for Security Incident update notification. When I create an incident the sir.incident.email.creation event should get triggered but i...
I am working to implement Tenable.io with Vulnerability Response. We are normally filtering out vulnerabilities that are medium-severity or below. However, a new requirement popped up for us to also import medium-severity vulnerabilities, only if t...
When creating manual AVIT records, if an Ethical Hacker creates a new AVIT, even an App-Sec manager cannot edit that record. This works the other way around too. Is this by design? Even members of the same role cannot edit records that other members ...
Hi Team, Currently working with a customer for SecOps VR implementation. SIR is not implemented and not a purchased mdule as of now. The Vulnerability scanner details shared are as below along with the available integrations.1. Trend Micro - Incident...
Scenario 1:On the Remediation task need to create a UI action button , on click of UI action 2 buttons (ok,cancel) should be visible. On click of Ok, it should chnage a substate field value .Scenario 2:In the Ui page few fields of records should be p...
Hello, I would like to use a script rule to calculate risk ratings for VITs. Does someone has an example of a script to get me started? I'm not sure how the function should look like and which objects are available and what to return.
Hello,Is there any way to process the records from a table batch wise in a flow or a subflow?In my case I have a flow which is internally calling a subflow in which I need to fetch the records from a table e.g. "sn_si_incident" and in one go I should...
This question has been asked before. I am not asking for a solution.Just wondering if the Re-open feature is there on the Security Incident Response (SIR) roadmap for Security Incidents? Trying to figure out if its worth developing or will be availab...
Hello, we have an issue where we had deleted several Remediation Tasks and it has left a large number of VIT's in an Under Investigation state. Because of that Assignment Rules will not apply to the VIT's. Is there a way to change the state of a VIT ...
Hi, Doing some testing on VR Solution Mgmt I was wanting to get the preferred solution to populate for our Vulnerabilities and VIT's.Looking at the documentation, they mention a system property sn_vul.latest_solutions_fieldDo we know what type of pro...
Hello, We are using Qualys Service Integration for VR (Qualys Integration for Security Operations: v12.1.1) I am looking at modifying the API to exclude non-running kernels and superseded patches. looking at this article, and Qualys API documentation...
Hi everyone,I am trying to build a report to show case the metrics definition (for example: Mean time to triage/acknowledge). I used the performance analytics to generate this report because we need to showcase the target value. The issue which is ha...
Hi all,We are implementing MITRE framework. We tried configuring auto extraction rule but they dont seem to be working. Has anybody implemented that or can share some insights. That will be really helpful @andy_ojha
Qualys web application scan has reported a Low vulnerability which was not synched with snow.We couldn't find any VIT record created for this vulnerability.Do we have any specific criteria to create VIT records