SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

KEV's in Service-Now?

Hey experts, Is anyone bringing in or ingesting KEV's(Known Exploited Vulnerability) in their Service-Now? We have been tasked to bring this data in so we know which Vulnerabilities have a KEV attached to them.  This is the website where they all res...

Resolved! In Vulnerability Response, how do you handle non-persistent VDI's?

We have a large number of non-persistent VDI's. This is causing our Discovered Items matching percentage to suffer, what is the Service-Now best approach in handling non-persistent VDI's?Additional notes on how VDI's work:In VDI, a hypervisor segment...

Egide by Tera Contributor
  • 1776 Views
  • 4 replies
  • 2 helpfuls

How do others address changes in VIT Assignments?

Trying to gain better understanding on what all actions can be, should be, cannot be taken when a VIT is reassigned to a different Assignment Group.  I have tried searching for relevant other forum posts and have not yet found one that really covers ...

Joe Kline by Kilo Guru
  • 687 Views
  • 2 replies
  • 0 helpfuls

Possible to run splunk query from servicenow?

Hi All, Is there is any possibilities to run the Splunk query from ServiceNow end and get the results in some related list or in work notes section? For example below is the query we use in the splunk end to view the specific event by adding the even...

Venkatesh4 by Tera Expert
  • 831 Views
  • 1 replies
  • 0 helpfuls

Resolved! Incomplete IP Identified Device - Tenable.sc integration?

Hi, I have more than 3000 unmatched Discovered Items ( Incomplete IP Identified Device ). No CI lookup rule was applied to these records. What should I do with this number of Discovered items? Should I change something in the CI lookup rule or add so...

kris29 by Tera Contributor
  • 1150 Views
  • 1 replies
  • 2 helpfuls

Resolved! Licensing and roles for Application Vulnerability Response.

Hi, i want information/Contact details to reachout on Licensing cost and roles required for Application Vulnerability Response Module, in order to operate the module do we require License? if yes kindly share contact details of someone from ServiceNo...

Ravi63 by Giga Contributor
  • 1320 Views
  • 1 replies
  • 1 helpfuls

CI Lookup Rules for Tenable.sc?

Hi, I have CI lookup rules OOTB for Tenable.io (type Host Name, Tenable.io) I want to create a CI lookup rule HOSTNAME and DNS for Tenable.sc. What type should I use, custom? Should it be the same script shown here?

find_real_file.png
kris29 by Tera Contributor
  • 1001 Views
  • 5 replies
  • 1 helpfuls

Resolved! Business Use Case/Scenario - Remediation Effort

ServiceNow provides a feature to create "Remediation Effort" from the watch topic. When created this "Remediation Effort" in turn creates a Vulnerability Group ( Remediation Task) and assigned to the respective group. Traditionally Vulnerability Grou...

Chetan21 by Tera Contributor
  • 1747 Views
  • 2 replies
  • 1 helpfuls

Resolved! Roles for creating reports and dashboards?

Hi community, What roles are required to create reports and dashboards in the VR module?Are additional roles required or is sn_vul.vulnerability_admin sufficient?  

kris29 by Tera Contributor
  • 6347 Views
  • 1 replies
  • 2 helpfuls

How to trigger the risk calculator when VI is imported?

Hi, How can I trigger risk calculator when Vulnerable items are imported from Tenable integration.  When data is imported in Vulnerable items table, "Risk rating" should be updated based on conditions I set in calculator. I can do that manually but l...

kris29 by Tera Contributor
  • 1151 Views
  • 8 replies
  • 2 helpfuls

Resolved! reassign Vulnerable item to another assignment group?

Hi, I wonder what happens if a vulnerable items were automatically assigned to the wrong assignment group during import? What type of functionality should be implemented or configured when a Vulnerable item needs to be reassigned to another assignmen...

kris29 by Tera Contributor
  • 1624 Views
  • 8 replies
  • 6 helpfuls

Resolved! Role for "Request Exception" on Vulnerable item?

Hi,   What kind of roles do I need to see on the "Request Exception" button for vulnerable items?According to docs I created a user with sn_vul.remediation_owner role, but I cannot see VI and "Request Exception" button in form view.    

kris29 by Tera Contributor
  • 1174 Views
  • 1 replies
  • 1 helpfuls