Can anyone provide me some important questions on Secoops(SIR)?
Interview Questions on SIR ?
Forum Posts
Resolved! I want to delete a record of Discovered Item
The linked CI from a third party scanner (Tenable.io) is imported into the "Discovered Item", but I would like to know how to remove it.The state of the record is "unmatched".The reason is that there is a request from the customer to delete the CI th...
Application Vulnerability - OWASP Top 10 Category
We have a requirement to correlate identified vulnerability with the OWASP Top category. For e.g. While manually creating vulnerability ( pen test) when a specific CWE is selected, if the selected CWE is mapped to one of OWASP Top 10 then the OWASP c...
Resolved! Tenable.io - rescan VIs
I'm trying to set up and test the manual rescan for a single VI using the Tenable.io integration with SNow. I have updated the SN w/ Tenable plugin to version 3.0.5 and activated the scheduled integration. When I open the setup assistant for VR I see...
Resolved! Vulnerable Item Age information on database view
Hi There I'm not able to view Age data in OOTB Database View - sn_vul_impacted_services ( which is a View connecting Vis to the services that have been impacted by the vulnerability ) I am able to see the age for the VIT but the same age value is not...
KEV's in Service-Now?
Hey experts, Is anyone bringing in or ingesting KEV's(Known Exploited Vulnerability) in their Service-Now? We have been tasked to bring this data in so we know which Vulnerabilities have a KEV attached to them. This is the website where they all res...
Resolved! In Vulnerability Response, how do you handle non-persistent VDI's?
We have a large number of non-persistent VDI's. This is causing our Discovered Items matching percentage to suffer, what is the Service-Now best approach in handling non-persistent VDI's?Additional notes on how VDI's work:In VDI, a hypervisor segment...
Possible to run splunk query from servicenow?
Hi All, Is there is any possibilities to run the Splunk query from ServiceNow end and get the results in some related list or in work notes section? For example below is the query we use in the splunk end to view the specific event by adding the even...
CI Lookup Rules for Tenable.sc?
Hi, I have CI lookup rules OOTB for Tenable.io (type Host Name, Tenable.io) I want to create a CI lookup rule HOSTNAME and DNS for Tenable.sc. What type should I use, custom? Should it be the same script shown here?
Resolved! Business Use Case/Scenario - Remediation Effort
ServiceNow provides a feature to create "Remediation Effort" from the watch topic. When created this "Remediation Effort" in turn creates a Vulnerability Group ( Remediation Task) and assigned to the respective group. Traditionally Vulnerability Grou...
Resolved! User getting "Invalid attempt. Encrypted data could not be saved" when entering data in an encrypted field
We have a portal form that has a special multi-line encrypted box to put information that my company requires to be encrypted. However non-itil users are getting "Invalid attempt. Encrypted data could not be saved". We are thinking maybe for these n...
Resolved! Roles for creating reports and dashboards?
Hi community, What roles are required to create reports and dashboards in the VR module?Are additional roles required or is sn_vul.vulnerability_admin sufficient?
How are the scanned applications mapped to the existing cmdb applications in AVR
How are the scanned applications mapped to the existing cmdb applications in AVR
How to trigger the risk calculator when VI is imported?
Hi, How can I trigger risk calculator when Vulnerable items are imported from Tenable integration. When data is imported in Vulnerable items table, "Risk rating" should be updated based on conditions I set in calculator. I can do that manually but l...
Resolved! reassign Vulnerable item to another assignment group?
Hi, I wonder what happens if a vulnerable items were automatically assigned to the wrong assignment group during import? What type of functionality should be implemented or configured when a Vulnerable item needs to be reassigned to another assignmen...