Using generative AI skills

Release version: Australia

Updated June 4, 2026

3 minutes to read

Summarize

Summarized using AI

Summary of Using generative AI skills

ServiceNow’s generative AI skills for Vulnerability Response empower vulnerability managers, analysts, and security teams to efficiently manage and remediate vulnerabilities within their workflow. These AI-driven capabilities provide natural language querying, insights, recommendations, and automation to streamline vulnerability assessment, approval processes, and solution identification. Depending on licensing, users gain access to specific AI features, workflows, and agents tailored to their security operations.

Show full answer Show less

Key Features

Domain Separation and Data Security: Generative AI skills operate within domain-separated environments, ensuring users access only data within their domain. Data remains on the instance, and AI services do not retain prompts or responses, maintaining strict data privacy.
Security Exposure 360: Enables users to ask plain language questions about various vulnerability findings (hosts, containers, tests) and receive detailed answers to aid analysis.
AI Guardrails Helper Skill (USEM Workspace): Assists in identifying finding types, mapped guardrails, and rationale behind mitigation or deferral decisions, enhancing vulnerability triage.
Vulnerability Insights and Recommendations: AI generates contextual summaries and actionable recommendations to help prioritize and address critical vulnerabilities effectively.
Approval Recommendations: Provides on-demand suggestions for exception and false positive approvals, expediting decision-making for security approvers.
API Connector Builder Assistance: AI automatically populates steps in creating API connectors, simplifying integration tasks for developers and security admins (requires additional applications).
Duplicate Vulnerable Item Identification: Detects and groups duplicate vulnerability items from multiple scanners, helping to close redundant records and focus remediation efforts.
Vulnerability Solution Suggestions: Recommends preferred remediation solutions for active host vulnerabilities using imported third-party data, requiring the Vulnerability Solution Management application.
Approval Impact Analysis Recommendations: Streamlines exception and false positive request approvals with AI-generated impact analysis insights.

Practical Benefits for ServiceNow Customers

Integrate AI-powered assistance directly into vulnerability workflows to improve accuracy and speed of remediation.
Maintain strict data governance and privacy with domain separation, ensuring compliance in multi-domain environments.
Reduce manual effort and errors in vulnerability assessment, approval processes, and connector creation.
Leverage advanced AI-generated insights to prioritize vulnerabilities and make informed security decisions.
Enhance collaboration among vulnerability managers, analysts, CISOs, and developers through AI-driven recommendations and automation.

Vulnerability managers and analysts can resolve remediation tasks from within their flow of work with the generative AI skills.

Note:

Depending on your license, you will have access to certain application features, generative AI skills, agentic workflows, and AI agents. For more information, see ServiceNow product tiers.

Skills in global domain reuse

By default, all skills exist in the global domain. When you use Now Assist in a domain-separated environment, users are only able to access data in their domain. For example, if a user uses the summarization skill, Now Assist only uses material that exists in the user's domain when generating that summary. Additionally, there is no co-mingling of data for domain-separated instances when using generative AI skills. The data resides only on the instance, and the shared services used for generative AI do not persist any requests (prompts) and responses. For more information, see Domain separation in the Now Assist Admin console. (Note that global domain is not the same as global scope. For more information, see Exploring Next Experience pickers.)

Overview of Now Assist for Vulnerability Response skills

With generative AI skills with Now Assist for Vulnerability Response, your vulnerability managers and analysts have the option to use generative AI skills to help them with the following tasks. Unless otherwise noted, these generative AI skills are supported by the legacy and Unified Security Exposure Management (USEM) workspaces.


Generative AI skill	Description	Users
Evaluate vulnerability exposure data with Security Exposure 360	Use generative AI to enter questions in plain language and receive comprehensive answers about all types of findings that include host, container, and test results vulnerabilities.	Vulnerability managers and analysts
Using the AI guardrails helper skill and agentic workflow	Use an AI skill to help you identify finding types, understand the guardrails that might be already mapped to findings, and see why they were selected by the skill to map to specific findings. This information can help you determine which findings might be already mitigated or deferred for later review or remediation. Note: Supported only in the Unified Security Exposure Management (USEM) workspace.	Vulnerability analysts, vulnerability managers, and Chief Information Security Officers (CISO)s
Generate vulnerability insights with generative AI	Use generative AI to provide insights based on contextual summaries and provide actionable recommendations.	Vulnerability managers and analysts
Get exception and false positive approval recommendations	Use generative AI to provide on-demand approval and false positive recommendations.	Exception and false positive approvers
Create an API connector with generative AI	Use generative AI to automatically populate steps in the API Connector builder. Note: You must install and activate the required applications in addition to Now Assist for Vulnerability Response to use the generative AI skill to help you create your own API connector.	Developers in your organization, vulnerability and security admins
Identify duplicate vulnerable items with generative AI	Identify and group duplicate vulnerable items (VITs) created from multiple scanners. Identify the primary vulnerable item and remove (close) duplicates.	Vulnerability managers and analysts
Suggest vulnerability solutions with generative AI	Identify the most appropriate preferred solution for a given vulnerable item (VIT). Note: You must install and activate Vulnerability Solution Management [sn_vul_solution] to import and view preferred and available vulnerability solutions. This application provides you with current solutions with scheduled imports. Vulnerability Solution Management is available on the ServiceNow® Store. This generative AI skill supports only active host vulnerable items (VITs). VITs must be in the Open, Under Investigation, Awaiting Implementation, or In Review states. Current solutions that most effectively address vulnerabilities, also referred to as solutions of the highest supersedence, must be available for you to import from third-party vendors. See Vulnerability Solution Management for more information about Vulnerability Solution Management and supported integrations for more information. The Configuration item field on a VIT must be populated with a value from the Configuration Item [cmdb_ci] table. The Vulnerability field on a VIT must be populated.	Vulnerability managers and analysts
Generate vulnerability insights with generative AI	Understand your security posture with AI-generated summaries and recommendations to help you prioritize and act on critical findings.	Vulnerability managers and analysts
Generate a recommendation for approval impact analysis	Streamline the approval process for exceptions and false positive requests with AI-driven recommendations.	Vulnerability managers and analysts