We're on Quebec, and I followed this article to integrate SIR playbooks with Workspace: https://docs.servicenow.com/bundle/quebec-servicenow-platform/page/administer/workspace/task/integrate-playbook-workspace.html I've activated this out of box flow...
HelloFirst, I'd like confirmation that my assumption about VIT assignment rules is correct - by default they only execute when a VIT is first created? Second, if that is true, is there a job/business we can configure to re-run the assigment rules bas...
Hi, my organization is working to mature our Security incident process and are a relatively new team in terms of using Security Incident Response. I'm wondering if there's an "out of box" list of security incident categories (like malware, email, vu...
How to remove change type "Emergency" from create change in Test result group in CC.only change type "Normal & Standard" should be visible.
Good morning, I'm trying to figure out a scenario that involves remediation task (grouping) rules, manual splitting and updates when new VITs come in. A remediation team member reported that he split one of his (rule-generated) remediation tasks to...
Is there a way to manually create an AVIT in Application Vulnerability Response? Our Pen testers are looking for a way to manually create an AVIT without a Penetration Assessment Request. I don't see that functionality, any suggestions?
Hi , how do we get Pen test findings for Application Vulnerability Items
We recently added the Vulnerability Response module to our ServiceNow instance at our company. During our early days of figuring out how to properly create VULs to group similar VITs, we now have 3 VCAs with no VIT or VUL included. How do we delete...
Hi, kindly guide how to check the the Maturity level of *Vulnerability Response* for one our clients.
I have created a custom checkbox in test table and also added ACL for that field but only the sn_vulc_write role access to it but still i was not able to edit the checkbox i was getting security constraint error message, Then I have edited table leve...
We are trying to sanitze feedback from web page, that is comming into a Comment field (string). The documentation mentiones the html_sanitize attribute can be used on all fields to fix that, however still after activating the attribute in dictionary,...
Hi all, I'm trying to integrate Splunk ES with Servicenow. The objective is to let Splunk ES open SIR on SNow and, when the SIR is closed, let it know to Splunk ES. I'm basically following this guide: https://docs.servicenow.com/bundle/orlando-securi...
Interview Questions on SIR ?
The linked CI from a third party scanner (Tenable.io) is imported into the "Discovered Item", but I would like to know how to remove it.The state of the record is "unmatched".The reason is that there is a request from the customer to delete the CI th...
We have a requirement to correlate identified vulnerability with the OWASP Top category. For e.g. While manually creating vulnerability ( pen test) when a specific CWE is selected, if the selected CWE is mapped to one of OWASP Top 10 then the OWASP c...
