Using agentic workflows in Now Assist for Vulnerability Response

Xanadu Security Management

Release

xanadu

ft:locale

en-US

ft:publication_title

Xanadu Security Management

ft:clusterId

security

bundleId

security

workflow

Technology

Using agentic workflows in Now Assist for Vulnerability Response

Release version: Xanadu

Updated April 21, 2025

1 minute to read

Use the Vulnerability Response AI agents to complete your tasks autonomously.

Table 1. Available agentic workflows for AI agents for Vulnerability Response
Agentic workflow name	Description	Available AI agents
Assess vulnerability exposure	Determine if your configuration items (CIs) and business services are exposed to known vulnerabilities. Determine the potential impact that a specific vulnerability might have throughout your environment. Check CIs for any new Cybersecurity and Infrastructure Security Agency (CISA) exploitable (zero-day) vulnerabilities. Create watch topics in the Vulnerability Manager workspace to remediate vulnerable items.	CISA vulnerability analysis AI agent Vulnerability exposure analysis AI agent Watch topic creation AI agent
Analyze vulnerability remediation status	Gain insights into your compliance metrics and statistics for how well you're meeting remediation target dates on vulnerable item (VIT) records. View your monthly VIT record remediation totals and identify missed targets. Break down remediation data on VITs by Severity, Assignment group, Configuration item, and Vulnerability for your monthly Service Level Agreement (SLA) compliance reviews.	Remediation compliance analysis AI Agent

Important:

By default, all agentic workflows and AI agent records are read-only.

To modify an agentic workflow, you must first Duplicate an agentic workflow, and then proceed with the following steps:

Activate the agentic workflow. The Now Assist for Vulnerability Response AI agents included with the application are activated by default.
If required, you can add a trigger to invoke the agentic workflow automatically.

Looking for an AI agent?

There might be AI agents installed with the Now Assist application that are not used in agentic workflows. To learn how to see all agents that are available on your instance, see Find AI agents.
To find agents that might not be installed on your instance, visit the AI Agent Marketplace on the ServiceNow Store.

Assess vulnerability exposure agentic workflow.
Chat with an AI agent from the Now Assist panel to help you assess if your configuration items and your business services are exposed to vulnerabilities.
Analyze vulnerability remediation status agentic workflow.
Chat with an AI agent from the Now Assist panel to help you gain insights into your compliance metrics for resolving vulnerable items.