Resolved! Vulnerability is closed but remediation status is in-flight
Hi, I have few vulnerabilities where VIT is closed but remediation status is still showing In-flight, isnt it suppose to be either target missed or target met?
Forum Posts
Reapply vulnerability item assignment rules and vulnerability group rules
Hi All, We have a requirement where we need to reapply vulnerability assignment group rules since cmdb records are changing continuously. I noticed that if we activate OOTB scheduled job "Reapply all vulnerability assignment rules" (in inactive stat...
Resolved! Scan Coverage - VR
Is there an easier way to see which CI's have not been assessed by our third party scanner? Scan coverage is great in theory, but it does nothing to help you identify the actual CI's that have not been scanned. Looking to identify the CI's that make ...
Which course to learn GRC or Secops
Hello Team I am working in ITSM and ITOM Module , but also interested to learn GRC or Secops Please suggest me which one should I learn , keeping he point in mind that we have ample job opportunity post doing this one of the course.
Threat Intelligence observable enrichment issue
Hi All, So I'm getting Security Operations setup and running into an issue with threat intelligence and observable enrichment. I have our IoC getting data from various sources and I have activated the workflows for automated phishing template and use...
Application Registry - Client secret Password2 type
Hi, I would like to know if the field Password2 of Client Secret is visible to Admin role unlock the padlock beside the field. Thanks in advance Alex.
Resolved! Vulnerable software in Vulnerability response
i can see Vulnerability software table is keep on updating daily however i thought it shows data after qualys integration scan. I checked existing integration however it dows not have any other integration. What can be the possible cause.
Qualys Jobs time out after a while when pulling historical data
Hello All, We have a situation where in we have integrated Configuration Compliance with Qualys on OOB parameters. It works fine when we pull in present data. The job times out when historical data is being pulled. When we put start time more than a ...
Resolved! How do you cancel a Playbook that was triggered for a SIR record when a second Playbook is triggered, so that they are not both running simultaneously?
For example, Playbook A is triggered, then the SIR record's Category changes, which triggers Playbook B. When this happens, I want Playbook A to stop running.
Resolved! Event Management and SIR
Hi , how does Event Management works with SIR module in Sec ops? end to end guidance is helpful
Fortify Integration with ServicenNow Application Vulnerability Response
Hi All, I am looking to get a reference doc for any integration done with Fortify SSC with ServiceNow .
has anybody used tag_exclude_selector parameter in Qualys integration with ServiceNow
Hello All, We have a requirement where in we do not want certain CI record to be created in Configuration Compliance and Vulnerability Response. We are thinking to make the filteration at API level. I read and found out that we can use tag_exclude_se...
Resolved! How to give write access to specific field on form
Hello Friends, I have a requirement to give write access to a specific field on form. I have created three acls for a role 1. Write --> table name --> --None-- 2.Write --> table name --> * 3.write -- >table name --> field_name But the user is able to...
How to exclude those Test Results and Discovered Items to ServiceNow from Qualys, which meet some DNS or IP Address?
Hi All, We want to exclude those Test Results and Discovered Items to ServiceNow from Qualys, which meet some DNS or IP Address. We checked Qualys PC Results, where we found Rest Message "Qualys PC Posture Info" and its method "List". In the "List" m...
Resolved! CI Lookup Process - Match on "Retired" Status for CIs in CMDB
In the CI Lookup process we want to match on "Retired" status for CI not just "In Use". There are scenarios even when the status is "Retired" the server is still operational on the network.
