SQL Injection Security

Tom Callaghan · ‎11-26-2019

Hi guys,

Not sure if I've chosen the correct topic so apologies if not. The IT security team at my company have asked what Service Now has in place to prevent SQL Injection attacks. I've had a look on Google and could not find anything specific. Do any of you know? And preferably have a source I can show them to put their minds at ease?

Cheers!

Alex Cox · ‎11-26-2019

Hi there,

ServiceNow has a large number of defensive processes and toolsets deployed to protect our customers, however the specific details are generally confidential.

That said, your account or partner manager may be able to arrange a meeting with our internal security team in order to chat about these details in a more protected setting.

View solution in original post

SanjivMeher · ‎11-26-2019

Below link has some info on SQL injection, which may help

https://docs.servicenow.com/bundle/newyork-servicenow-platform/page/administer/flow-designer/referen...

Please mark this response as correct or helpful if it assisted you with your question.

Alex Cox · ‎11-26-2019

Hi there,

ServiceNow has a large number of defensive processes and toolsets deployed to protect our customers, however the specific details are generally confidential.

That said, your account or partner manager may be able to arrange a meeting with our internal security team in order to chat about these details in a more protected setting.

Tom Callaghan · ‎11-27-2019

Thanks both for the replies. I speak to our account manager.