ServiceNow® Security Operations (SecOps) brings data from your security tools into a structured response engine that uses intelligent workflows, automation, and a deep connection with IT to prioritize and resolve threats based on the impact they pose to your organization. Many organizations struggle with identifying security threats and vulnerabilities, prioritizing them, and coordinating with IT to remediate them. Using SecOps, security analysts and vulnerability managers can seamlessly automate their security tools and communicate with IT by working in a unified platform.

The SecOps applications and workflows fall under two broad categories:

• Attack Surface Management – Applications and tools that help you anticipate, understand, and close your vulnerabilities.
• Enterprise Security Case Management – Applications and tools that help you move quickly to respond to security incidents.

This resource library focuses on attack surface management. View the enterprise security case management resource library here.

Attack Surface Management Solutions, Features & Descriptions

• Vulnerability Response (VR) aims to guide Vulnerability Analysts and IT Remediation Owner stakeholders in effectively managing vulnerabilities identified within their environment, including increased collaboration, automated assignment, workflow-driven remediation tasks, and a business service context-aware risk scoring.
• Application Vulnerability Response (AVR) is a solution that handles vulnerabilities that arise through in-house application development operations. Application Vulnerability scanners can find security flaws in code written during build (SAST), in open-source libraries included in a software's dependencies composition (SCA), or in application behavior at runtime (DAST).
• Container Vulnerability Response (CVR) is the solution for scanning for security vulnerabilities in containerized applications and working with Application Owners and DevOps Engineers to make the changes to container images required to fix the vulnerabilities found.
• Configuration Compliance (CC) is a Secure Configuration Assessment (SCA) application that aggregates scan results from integrations with third-party configuration scanning applications.
• Security Posture Control (SPC) provides a single place to view security tool protection status and vulnerability scan coverage for cloud and infrastructure assets, allowing security teams to spot high-risk combinations and improve their security posture.
• Software Bill of Materials (SBOM) enables organizations to ingest SBOMs, view the open source and third-party software components that are being used in their application development, assess the present risk, and respond to reduce the overall risk to the attack surface.
• Software Exposure Assessment enables Security Teams to leverage data from their ServiceNow Platform Software Asset Management (SAM) application to assess their potential risk exposure based on having certain software deployed in their environment.
• The Unified Vulnerability Response and Attack Surface Dashboard is a single place to view aggregated attack surface data for all assets across an organization, providing visibility into business-critical assets, vulnerabilities, and remediation efforts to drive risk prioritization.
• The Vulnerability Response Health Dashboard highlights the areas of an organization's VR implementation (including AVR, CC, and CVR) that need improvement and provides recommendations on how to remediate identified issues.
• Penetration Testing Management in AVR can request, schedule, and execute penetration testing engagements for applications.
• Patch Orchestration enables you to manage patches and patch deployments for critical vulnerabilities for large groups of your assets with integrations in VR.

Resources

To help you understand the capabilities of many SecOps solutions and how to use them, please see the resources below. Please bookmark this article, as we will update it when new content becomes available. Whether you’re just getting started with SecOps or you need a refresher, this list of resources has something for everyone!