Hi Community,
I’m currently configuring the Security Incident Response (SIR) Risk Score in ServiceNow and have observed that the score is influenced by several factors including Business Impact, Priority, Severity, and Affected User.
For our use case, we would like to exclude the "Affected User" attribute from contributing to the risk score calculation.
- Is there a supported way to achieve this within the platform?
- If not, what would be the recommended alternative approach to customize or override this behavior?
Any guidance or best practices would be greatly appreciated.
Thanks in advance!
