Difference in ISC and Security Center Compliance Score
Hello experts,Do you have any idea why does the Security Center shows a different compliance score compared to the Instance Security Center?
Forum Posts
Closed VITs in deferral state when re-opened do not defer
From what I understand: Vulnerabilities which are deferred using an exception rule, if they close and then open whilst deferred no longer retain the deferred status and move to open. I believe from reading the forums this is as designed and there is ...
Resolved! Is there an architecture diagram for Security Operations that shows all applications for Security Incident Response, VR, Threat Management, Configuration Compliance and Trusted Security Circles?
Checking to see if there is an architecture diagram for Security Operations that shows all applications for Security Incident Response, VR, Threat Management, Configuration Compliance and Trusted Security Circles.
Application Vulnerability Response Penetration Test Assessment Request - How to Add Fields
How can the Application Vulnerability Response Penetration Test Assessment Request form be updated to add custom fields and/or edit preexisting fields?
Security Incident Closure Codes
Hello,We recently moved to use the Security Incident response module, and wanted to know if there is a way to edit the list of closure codes, specifically remove or hide some from the list. I have included a screenshot of the list of closure codes th...
Resolved! Security Incident Response Workspace Details tab informaion
I am trying to change the fields that are display in the details tab of a Security Incident (SIR record). The current fields in the details tab display values for: Priority Risk score State in that order. I am being asked by the Security Agents to c...
Migrating from Qualys PC Result Integration to Qualys PCRS Test Results Integration
We are migrating from the Qualys PC Result Integration to the new "Tokyo" integrations Qualys PCRS Policy Host Integration and Qualys PCRS Test Results Integration. And would like somr help. 1) For the current integrations we setup the Server URL, ...
Vulnerability Response Recommended Practices webinars - Q2 2023 program now available.
Hello SecOps Community, The ServiceNow VR team has run a very tight schedule of "VR success recommended practices" webinars in Q1. The feedback from participants has been very strongly positive and the majority asked for more. So, please find bel...
IT Remediation Workspace - Create Change UI button does not show up
Hello,I've encountered the issue with the IT Remediation Workspace in my Customer DEV instance - UI Button "Create Change" is missing, though the roles are assigned properly.I can see the button on Remediation Task form, but on IT Remediation Workspa...
File size X MB exceeded the max size allowed - Lesson Learned
I wanted to drop a quick note on what not to do.... and what to do... A customer's imports were failing, and it was getting the error:"File size X MB exceeded the max size allowed...."I found KB0564441 in Support.servicenow.com:https://support.servic...
Resolved! Training course: Security Operations Fundamentals
Hello Community, I just completed this 2 day virtual course, expertly led by Sean McLean. I highly recommend it . Great balance of teaching and hands on labs. Whether you are new to Security Operations, or simply new to NOW's Security suite, this is ...
Resolved! How Priority and Risk Score calculated on Vul Groups
I can see risk score calculated for vulnerable items through risk calculator but how it is calculated for vul groups? There is no calculator for vul groups. Does it consider the risk scores for all associated Vul items? And how is the priority is set...
How to create a playbook for Security incident response (phishing category)
Hi, I am new to SIR and playbooks can you guys guide how can I create a playbook for Security incident response (phishing category) As mentioned below Security incident workspace there is any an option to add playbook how can i add playbook for that ...
Have you registered for Risk Calculator and Remediation Target Rule success webinar (Mar 15-16)?
Hello all, Ther "Success with Vulnerability Response" series of recommended practices deep-dive webinars continues. After the great feedback from the VR Performance, CI Matching and Assignment & Classification rules calls earlier this year, I am no...
Can not deactivate a record in sys_choice table for Configuration Compliance Test Result Group form,
Issue Facing : I am trying to make an option inactive present in "Request Exception" UI action present in Test Result Group form. The option comes in a dropdown after clicking Request Exception button named as False Positive. Steps Performed for dea...
