Security Center release notes

Xanadu Release Notes

Release

xanadu

ft:locale

en-US

ft:publication_title

Xanadu Release Notes

ft:clusterId

bundleId

Security Center release notes

Release version: Xanadu

Updated August 1, 2024

3 minutes to read

Summarize

Summarized using AI

Summary of Security Center release notes - Xanadu Release

The ServiceNow® Security Center is a comprehensive application designed to enhance your organization's security posture and compliance by leveraging multiple integrated security tools. The Xanadu release introduces significant updates and new features to improve security monitoring, notifications, data classification, and hardening capabilities.

Show full answer Show less

Key Features

Security Event Notifications: Configure notifications to promptly alert designated users via email when specific user behaviors trigger security policies. This enables quick remediation of potential security issues.
Security Posture Dashboards: Monitor the security health of single or multiple instances using graphical and tabular dashboards. These dashboards display key security KPIs and can be cloned and customized to fit your monitoring needs.
Security Banner Announcements: Receive important, urgent security messages directly within your instance, visible to system administrators, with links to detailed information. This prepares you for upcoming ServiceNow security advisories.
Data Classification Metrics: Enhanced monitoring of sensitive data within your instances, including metrics on the amount of classifiable data versus already classified data, and breakdowns by classification labels.
Security Center Version 2.0 Hardening Tool: Introduces new and updated hardening settings to restrict access control lists (ACLs), especially for human resources applications, enforce strict code signing, reduce sensitive data exposure in service portal widgets, and implement role-based app restrictions.
Updated Auditor Suite: The Auditor Suite has been streamlined to focus solely on access control configurations (renamed Access Control Auditor Suite). It produces more targeted findings related to potential security vulnerabilities based on expert analysis.
Modernized Workflows: Legacy workflows have been converted to Flow Designer low-code workflows, improving scalability, ease of updates, and troubleshooting.

Key Outcomes

Enhanced visibility into security posture across all ServiceNow instances via intuitive dashboards.
Improved responsiveness to security incidents through configurable event notifications and urgent banner announcements.
Greater control over sensitive data exposure through advanced classification metrics and hardening settings aligned with the principle of least privilege.
Streamlined security scans focused on access control settings to identify and remediate vulnerabilities efficiently.
Standardized and modernized workflows that simplify administration and maintenance of security processes.
Preparation for future ServiceNow security advisories with built-in banner announcements to keep administrators informed.
Transition guidance noting that support for the older Instance Security Center will end starting with the Xanadu release.

Activation and Availability

Security Center version 1.5 is installed by default with the Xanadu release family. To access the enhanced features in version 1.6, customers should obtain it from the ServiceNow Store.

The ServiceNow® Security Center application is composed of multiple distinct tools designed to help you improve your security posture and strengthen your compliance with ServiceNow curated security recommendations. Security Center was enhanced and updated in the Xanadu release.

Security Center highlights for the Xanadu release

Receive prompt notifications for user behaviors that you specify with the Security Event Notifications tool.
Monitor the security health of all your instances and take rapid action using the new Security posture dashboards.
Be prepared for potential future security announcements from ServiceNow with Security Banner Announcement capabilities.
Schedule security scans with the updated Auditor Suite to monitor access control configurations in the Security Scanner tool.
Use the improved Security Center version 2.0 hardening tool to minimize data exposure within your instance.

See Security Best Practices, Customer Actions, and Hardening settings baseline versions, Security Event Notifications, and Data Classification for more information.

New in the Xanadu release

Security Event Notifications: Receive prompt notifications on user behaviors that you specify with the Security Event Notifications tool. Users that you choose receive email notifications when a policy is triggered, enabling you to promptly remediate issues.
Security Posture Dashboards: Monitor the security health of all your instances with the Security posture dashboards. The single instance dashboard provides graphical widgets for key security key process indicators (KPIs). The multi-instance dashboard, only available on production instances, shows the same KPIs for all instances in a table format. The dashboards can be cloned and then fully customized.
Security banner announcements: Prepare for potential future security announcements from ServiceNow using the Security Banner Announcements. This feature enables ServiceNow to trigger new banners in customer instances that are visible to system administrators. These messages inform them of new and urgent potential security issues and include a link to more details.
Data Classification: Monitor your sensitive data with the Data Classification metrics in the Security Metrics tool. Updates to the tool include two new metrics. Classifiable Data metrics displays the amount of data that is available for classification and what portion has been already classified. The Classified Data metrics displays the breakdown of the classified data across your classification labels.
Security Center version 2.0 introduces a new set of hardening settings: Security Center version 2.0, introduced in the November store release, includes several new hardening settings, updates to existing ones, and the removal of some unnecessary settings. The new hardening settings come with recommended configurations to restrict access control lists (ACLs) for human resources apps, minimizing data exposure and enforcing the principle of least privilege. Additional settings help configure service portal widgets to reduce sensitive data exposure in tables, enforce strict code signing, and set role-based restrictions on apps. Several technical configuration names and descriptions have been updated for clarity, and outdated hardening settings have been removed.
Improved Security Center architecture: The Security Center has been redesigned to help admins understand what tasks they can accomplish with Security Center and to pick the right tools for their tasks.

Changed in this release

Scan checks: Schedule security scans with the updated Auditor Suite to monitor access control configurations in the Security Scanner tool. The Auditor Scan suite has been streamlined to contain only access control checks and renamed to Access Control Auditor Suite. The updated access control checks generate a smaller, more focused number of findings that reflect potential security vulnerabilities according to ServiceNow security experts.
Legacy workflows have been converted to Flow Designer workflows: Legacy base system Workflows have been converted to modern Flow Designer workflows to standardize ServiceNow flows onto the modern technology. The updated low-code flows are designed to be more scalable and make updating and troubleshooting easier.

Deprecations

Beginning with the ServiceNow AI Platform Xanadu release, ServiceNow will end support for Instance Security Center.

For details, see the Deprecation Process article (KB 0867184) in the Now Support Knowledge Base.

Activation information

Security Center v1.5 is installed by default with the Xanadu family release. Version 1.6 provides significant enhancements. To get Security Center v1,6, visit the ServiceNow store.