I wanted to drop a quick note on what not to do.... and what to do... A customer's imports were failing, and it was getting the error:"File size X MB exceeded the max size allowed...."I found KB0564441 in Support.servicenow.com:https://support.servic...
Hello Community, I just completed this 2 day virtual course, expertly led by Sean McLean. I highly recommend it . Great balance of teaching and hands on labs. Whether you are new to Security Operations, or simply new to NOW's Security suite, this is ...
I can see risk score calculated for vulnerable items through risk calculator but how it is calculated for vul groups? There is no calculator for vul groups. Does it consider the risk scores for all associated Vul items? And how is the priority is set...
Hi, I am new to SIR and playbooks can you guys guide how can I create a playbook for Security incident response (phishing category) As mentioned below Security incident workspace there is any an option to add playbook how can i add playbook for that ...
Hello all, Ther "Success with Vulnerability Response" series of recommended practices deep-dive webinars continues. After the great feedback from the VR Performance, CI Matching and Assignment & Classification rules calls earlier this year, I am no...
Issue Facing : I am trying to make an option inactive present in "Request Exception" UI action present in Test Result Group form. The option comes in a dropdown after clicking Request Exception button named as False Positive. Steps Performed for dea...
Hi guys,I am using Vulnerability Response with integration with Tenable.I have a need to allow Vulnerability Analysts to tag a VIT/CI using the Security Tags functionality.That part is fine, I have configured the tags they want and they can go to a V...
Hi guys, TLDR: Mac Address CI Lookup Rule returning Network Adapter as CI to populate VIT's when it is meant to be the parent CI. I have integrated Vulnerability Response with Tenable and am having some issues with the CI Lookup Roles - specifically ...
Hi, we are currently in the process of implementing Prisma Cloud integration with Config Compliance. Seeing strange issues with Test Result Groups (TRGs). Throughout the course of the day, TRGs (Test Result Groups) are being deleted and created. Cons...
Dear All, Kindly note I've followed the below steps but still I'm unable to achieve my target to Allow Group Managers to Manage Group Members, even the admin is unable to edit the group members when we added " https://www.servicenowguru.com/system-de...
We are testing importing scan data from multiple sources ( Crowdstrike Spotlight and Tenable) into our Dev instance. Is there an easy way to see if any duplicate VITs are created for the same assets.The only way the documentation shows is using the w...
When and what makes threat lookup trigger? In what all case the threat lookup gets triggered? Is there some out-of-the box which can make the threat lookup trigger automatically?
Hello, I'm working on the VR items and I want to write the BR for the records to restrict the access of visibility for the records that are groups based on users and groups. For eg: records only visible tot he users having access to specific group. ...
I have a requirement to show the schema map to non-admin users for only few users. I am not able to find a solution to this. Did anyone find a way to give access to schema map to non-admin users. This post explains adding as a UI Action but its only ...
Wondering how other folks out there are using the details from Qualys to import and utilize Information Gathered QIDs, and how you might use those to highlight if the last vulnerability scan properly authenticated (or not) to set expectations of how ...
