Installation of Vulnerability Response and supported applications
Summarize
Summary of Installation of Vulnerability Response and supported applications
The Vulnerability Response application in ServiceNow Zurich release enables comprehensive vulnerability management by integrating with supported ServiceNow and third-party applications. It serves as the foundation for identifying, assessing, and remediating vulnerabilities within your environment.
Show less
Installation begins by acquiring the Vulnerability Response application from the ServiceNow Store, followed by configuring the application using the Setup Assistant. This process facilitates user access assignment, creation of assignment and remediation rules, risk calculator setup, and integration with external vulnerability data sources.
Key Features
- Setup Assistant: Streamlines configuration by guiding through user and group assignments, rule creation, and risk calculator setup.
- Third-party Integrations: Supports importing vulnerability data from external vendors; initial setup requires running the NVD and CWE integrations and scheduled jobs.
- Analytics Integration: Optional installation of the Performance Analytics Content Pack provides lifecycle reporting for vulnerability management.
- Solution Management: Optional application to correlate vulnerabilities with remediation solutions, including integrations for Microsoft and Red Hat, requiring separate subscription.
- Mobile Experience: Optional installation of ServiceNow Agent and Vulnerability Response Mobile apps to manage vulnerabilities on mobile devices.
Additional Setup and Advanced Configuration
Beyond the basic setup, customers can perform additional configuration tasks such as reporting enhancements, email notifications, native integration settings, and vulnerability item management. These tasks typically occur outside the Setup Assistant.
Advanced configurations involving coding or specialized ServiceNow knowledge are also available but are not part of the basic setup and should be approached with appropriate expertise.
Practical Guidance for Customers
- Start by installing the Vulnerability Response application from the ServiceNow Store.
- Use the Setup Assistant to configure core settings and enable necessary integrations.
- Run the NVD and CWE integrations early to import essential vulnerability data.
- Consider optional modules like Performance Analytics and Solution Management based on your reporting and remediation needs.
- Plan for additional and advanced configurations as your vulnerability management program matures.
The Vulnerability Response application is available from the ServiceNow Store. The application supports other ServiceNow applications and third-party integrations that you also download from the ServiceNow Store. More options also are available to extend the basic setup.
Tasks for basic setup
The Vulnerability Response application is required as a first step. For more information about installing it, see Implementation checklist for the Vulnerability Response application and Install the Vulnerability Response application.
- After installation is completed, you can Configure Vulnerability Response using
Setup Assistant.
With the Setup Assistant, assign users and groups for access to the application, create or edit assignment rules, remediation task rules, and target dates, set up risk calculators.
- You can also select, install, and configure one or more supported third-party integrations from the Setup Assistant. These integrations retrieve vulnerability data from external systems and vendors. For more information about how integrations work and the integrations supported by Vulnerability Response, see Vulnerability Response integrations.
- Prior to implementing any third-party integrations, run the NVD integration and CWE
scheduled job as part of your initial setup of Vulnerability Response.
See Importing data with the NVD and CWE integrations and managing third-party libraries and Configure and run the scheduled job for updating CWE records for more information about installing, configuring, and viewing the NVD and CWE libraries.
- Select an analytics application, when applicable. The Performance Analytics Content Pack
for Vulnerability Response application contains reports that cover all stages of the
vulnerability management lifecycle.
[Optional] Install and configure the Performance Analytics for Vulnerability Response [PA] application application.
- Select a solutions application, when applicable. Solution management helps you correlate
the vulnerabilities in your environment with the solutions that could remediate them.
[Optional] Install the Solution Management for Vulnerability Response application.Note:
- When the Vulnerability Solution Management application is enabled, the Microsoft Security Response Center Solution Integration and the Red Hat Solution Integration are available to edit in Setup Assistant.
Vulnerability Solution Management requires a separate subscription. For more information, see Vulnerability Solution Management.
- [Optional] Install the ServiceNow Agent app and the Vulnerability Response Mobile app for the Mobile experience for Vulnerability Response.
Other setup tasks you can perform
These additional setup tasks add to your basic configuration and support remediation with options for reporting, email notifications, native integration configuration, and working with vulnerable items. Most of these tasks are performed outside of the Setup Assistant. See Additional Vulnerability Response setup and configuration tasks.
Advanced tasks outside of the basic setup
These optional configuration tasks are performed outside of Setup Assistant and require coding or advanced ServiceNow expertise and are not considered part of the basic configuration. See Advanced Vulnerability Response configuration tasks.