Hello everyone, I'm developing Security Incident Response module for a cliente. It's my first experience managing scopes. I have created an update set on Security Incident scope but when I do some changes I see the following records created on the up...
We are in the process of initiating the Qualys integration to ServiceNow as part of an internal VR project. What is the best practice approach to limit, or filter, income vulnerabilities based on Asset Class (CMDB Class) and then vulnerability severi...
Is there an existing method, property or widget that shows a user their last logged on time when they first log in?
Qualys integration runs show there are some duplicate values. Does this just show the message that there are duplicates or it created duplicate records in the system? Please help me to understand this. Module in App navigator : Qualys Vulnerability I...
Hi, A member of the security team has asked me if there is a way to assign a security incident to an individual, so that only they can see it. From my research, I can see that I would need to set up new groups so they are available for the Sec Ops te...
I have integrated Qualys with ServiceNow and it started created items and groups with Qualys Ids (QIDs). The issue with these QIDs is that Threat and Solution fields are coming as blank. There must be some information about this third party vulnerabi...
Does ServiceNow Qualys Integration brings asset tags into ServiceNow? I don't think so, we need Qualys CMDB Sync for bringing the asset tags into ServiceNow. Please help me if my understanding is correct.
Is there a standard architecture document for Splunk to ServiceNow integration. We know that there is a MID Server Required along with the plugin but is there anything else needed? Customer is asking for an architecture diagram but I have not been a...
At times we get multiple emails (that might not always be in the same format) for the same security issue (ex. a compromised account). We are not wanting to create Security Incidents for each email regarding the same issue, but only one. Please can a...
Can anybody help me to understand how Business Impact and Priority values are set on Vulnerable items? I do not find any calculator or matrix for this? I can see matrix only for risk calculator of Vulnerable items.
Host Detecton CIs created by qualys for vulnerability response module integration are available for selection to the other ITSM modules also or only for vulnerability application?
Can anybody explain me the difference between CVE (Common Vulnerability and exposures) & CWE (Common Weakness Enumeration) ? Also please one example of each which will help me to understand them easily.
Hi Team, Can you please explain me the below vulnerability response notifications? I am finding it hard to understand them. Appreciate your efforts and time.
I am about to embark on the task of cleaning up user granted roles directly in some cases and role changes in groups. I will be consolidating down duplicated roles given and removing roles directly given to users. I have seen the behavior of a user n...
Hi Friends, In HR case all the field are get changed to read only, when i verify that there are three TOP level ACL are running on the table so that is the reason it is changing to read only Now i want to enable only one field in child table Pleas...
