SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! Mass close Remediation Tasks

Hi all, We have around 62000 remediation tasks which all need to be closed. I first tried using "update all" to update their "state" values to "closed completed." However, this times out and only closes around 3000 records before timing out. So next,...

mattystern by Kilo Sage
  • 1627 Views
  • 9 replies
  • 3 helpfuls

Risk calculator doesn't work

Hi, I have a second question related to risk calculator.As per my understanding and the knowledge I have from community, when a new Vulnerable item got created (from integration), a Business rule "Calculate risk score" got executed and the risk ratin...

find_real_file.png
kris29 by Tera Contributor
  • 1070 Views
  • 5 replies
  • 0 helpfuls

Sightings Search Affected users inverted

I am using the Security Incident Splunk Integration to do an Email sighting search and while it does find the result, it is not updating the Affected Users list. In fact it is doing the opposite. It is adding nonexistent users/email addresses to the ...

MattSN_0-1695944779693.png
MattSN by Mega Sage
  • 338 Views
  • 1 replies
  • 0 helpfuls

Resolved! Vulnerability Response - Remediation Task Rules issue

Hi We have one Remediation Task rule which will create a Remediation Task for an assignment group as long as that assignment group is not empty on the VIT. We have had some issues where the wrong team has been assigned so these VIT's have been manual...

John Gregory by Tera Contributor
  • 2305 Views
  • 2 replies
  • 1 helpfuls

On-Premise instance

Whether ServiceNow have an On-promise instance? If yes, what is the actual use of those instances in infrastructure security to perform Password2? @Tony Chatfield1 

Major Security Incident Workspace

I have few questions - 1) What is a proper way to close a major security incident because there could be linked security incidents that are still in the open state? 2) What happens to the status report in this case? 3) How to change between various s...

Resolved! Tenable.io plugin import and severity field in VR

I have a fully working vulnerability response integration with tenable.io. We have a requirement to switch from CVSS 2.0 to CVSS 3.0 for severity calculation. We had changed the settings in Tenable.io from using CVSS 2.0 to CVSS 3.0 for severity and ...

MB6 by Tera Contributor
  • 2062 Views
  • 3 replies
  • 3 helpfuls

I need your help voting up an idea!

Team,   I would like you to vote up: "Method for adding required fields for <table_name>_update.do pages"   https://support.servicenow.com/ideas?id=view_idea&sysparm_idea_id=cb8c4ea0473cb550b8a4aa25126d435e&sysparm_idea_table=x_snc_com_ideation_idea&...

Reg:Auto creation of Observables

Hello,Can anyone help me how to auto create observable in security incident. I'm going through  Securonix App for Security Incident Response  but didn't get much on how securonix is creating observable. Can I anyone help me here?