Hi all, We have around 62000 remediation tasks which all need to be closed. I first tried using "update all" to update their "state" values to "closed completed." However, this times out and only closes around 3000 records before timing out. So next,...
Hi, I have a second question related to risk calculator.As per my understanding and the knowledge I have from community, when a new Vulnerable item got created (from integration), a Business rule "Calculate risk score" got executed and the risk ratin...
My Configuration Compliance integration with Qualys is pulling in test results with the CI's but it is not populating the Technology field or the technology field is filled in with a value of random numbers and letters. Please see image below which s...
Hi All, happy to share we've released a Rapid7 InsightVM on Demand course today in Now Learning as part of the VR Learning Bytes series. This course walks you through all the available integrations and also throws light on where all of the data sit...
I am using the Security Incident Splunk Integration to do an Email sighting search and while it does find the result, it is not updating the Affected Users list. In fact it is doing the opposite. It is adding nonexistent users/email addresses to the ...
Hi We have one Remediation Task rule which will create a Remediation Task for an assignment group as long as that assignment group is not empty on the VIT. We have had some issues where the wrong team has been assigned so these VIT's have been manual...
Whether ServiceNow have an On-promise instance? If yes, what is the actual use of those instances in infrastructure security to perform Password2? @Tony Chatfield1
Hi, team, a large customer is challenging me on the technical and business benefits of the Splunk plugin vs. just using event management to create security incidents. Anyone have any concrete evidence that the plugin is "better?"
Hello professionals!I have a question regarding notifications in the SIR module. I noticed that triggering notifications for the "Send when Record is inserted or updated" option is not working (the requirement is sending particular notification if as...
I have few questions - 1) What is a proper way to close a major security incident because there could be linked security incidents that are still in the open state? 2) What happens to the status report in this case? 3) How to change between various s...
I have a fully working vulnerability response integration with tenable.io. We have a requirement to switch from CVSS 2.0 to CVSS 3.0 for severity calculation. We had changed the settings in Tenable.io from using CVSS 2.0 to CVSS 3.0 for severity and ...
Team, I would like you to vote up: "Method for adding required fields for <table_name>_update.do pages" https://support.servicenow.com/ideas?id=view_idea&sysparm_idea_id=cb8c4ea0473cb550b8a4aa25126d435e&sysparm_idea_table=x_snc_com_ideation_idea&...
Hello,Can anyone help me how to auto create observable in security incident. I'm going through Securonix App for Security Incident Response but didn't get much on how securonix is creating observable. Can I anyone help me here?
Hi,If a CI is deleted in Tenable those associated VITs should be closed in ServiceNow. How to achieve this requirement?
