Use cases, policy examples, and supported service graph connectors in Security Posture Control

  • Release version: Zurich
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Use cases, policy examples, and supported service graph connectors in Security Posture Control

    The Security Posture Control application helps ServiceNow customers identify and manage security tool coverage gaps across their assets, including cloud exposure and vulnerabilities. It provides predefined use cases and associated policies to audit assets for potential security violations. Customers can also create custom policies tailored to their internal security requirements.

    Show full answer Show less

    Use Cases and Policies

    • Predefined use cases focus on uncovering tool coverage gaps, internet exposure of cloud assets, and vulnerability combinations.
    • Policies necessary for these use cases are included with the application and can be activated to start monitoring.
    • Customers can view coverage status for key use cases on the Security Posture Control Home page or via the Connectors and Use Cases Setup workspace.
    • Only a subset of important use cases is shown on the Home page to facilitate initial deployment.
    • Before activating policies, customers must ensure prerequisite applications are installed and configured, such as Vulnerability Response and Cloud Account Scan for AWS and Azure.
    • Activation of relevant service graph connectors is required. Some connectors provide initial insights, while others can be optionally activated for enhanced asset coverage.
    • Policy examples—including base, child, and cloned policies—demonstrate how to reuse and customize policy conditions using the policy builder in the Policies and Findings module.

    Supported Service Graph Connectors

    • Service graph connectors import data about hardware and software assets from various tools.
    • Tables listing supported connectors by tool category and data type are available to guide configuration.
    • Activating these connectors is critical to gaining comprehensive visibility and improving monitoring coverage within Security Posture Control.

    Practical Guidance

    • Verify installation and configuration of all prerequisite applications before activating use case policies.
    • Enable appropriate service graph connectors based on asset types and tools in use to ensure accurate and comprehensive data collection.
    • Use the built-in policy examples as templates to create custom policies aligning with your organization’s security standards.
    • Leverage the Security Posture Control workspace to monitor coverage status and manage use case activations effectively.

    Use cases are different scenarios that you configure to help you identify specific types of tool coverage gaps. Each use case requires a policy or policies to audit your assets for potential violations. You can also define your own policies to help you fulfill requirements for your specific internal security standards.

    Use cases

    The Security Posture Control application supports various use cases that are included with the application. Use cases help you identify specific types of tool coverage gaps in your assets, internet exposure of cloud assets, and combinations with vulnerabilities. The policies that you need for the supported use cases are also included with the product.

    You can view the coverage status for some of the key use cases on the Home (landing) page in the Security Posture Control Workspace at Workspaces > Security Posture Control > Home on the Home module (landing page).

    Alternatively, you can view the supported service graph connectors and coverage status for some of the key use cases on the 'Service graph connectors supported' and 'Key use case setup' tabs at All > Workspaces > Security Posture Control > Connectors and use cases setup (the gear icon).

    Note:

    The Key use cases tab on the Home landing pages does not list all the possible use cases. It provides you with a few important use cases that you activate to help you get started with Security Posture Control product deployment.

    Before you activate policies for the supported use cases provided with the application verify you have completed the following tasks.

    1. You are currently using or you install and activate service graph connectors for various categories.

      Categories for the use cases include service graph connectors that you must activate to get initial insights, and  service graph connectors that you have the option to activate for improved coverage for the assets Security Posture Control  is monitoring.

    2. You are currently using or you install and activate the Vulnerability Response application.
    3. You are currently using or you configure the Cloud Account Scan for your AWS and Azure accounts under ‘Cloud Security Posture Management’.

    Specific requirements for each supported use case are described in the following sections. Additionally, you must activate one or more of the policies shipped with Security Posture Control for a use case. This concept is also covered in the following sections.

    Examples of base, child, and cloned policies

    See Examples of base, child, and cloned policies for Security Posture Control and how you can reuse the conditions of a base policy when you create other policies. Create base, child policies and cloning existing policies in these examples. These examples also help you see how the policy builder works in the Policies and findings module.

    Supported service graph connectors

    See tables of supported service graph connectors, their tool categories, and the types of data they import in Supported hardware service graph connectors for Security Posture Control and Supported software service graph connectors for Security Posture Control.