[Music] greetings my name is Sam nardella and I am a solution consultant at service now today we'll be discussing the Washington DC release and the epss integration this presentation may contain forward-looking statements that reflect the beliefs of service now they should not be relied upon to make any purchasing decisions the Washington DC release adds in the ability to integrate with the exploit prediction scoring system also known as epss the epss integration Imports epss data related to Common vulnerabilities and exposures from first.org to prioritize and remediate vulner vulnerabilities you will be able to include this data in your vulnerability calculators to enhance risk scoring service now's vulnerability response epss provides a fundamentally new capability for efficient datadriven vulnerability management it's a data driven effort that uses current threat information from cve and real world exploit data the epss model produces a probability score between 0 and one where the high higher the score the greater the probability that a vulnerability will be exploited asset owners should consider many other aspects of the vulnerability their Network the asset and so on before making a final decision to remediate or delay remediation now we've logged into our service now instance and here we're looking at the national vulnerability database entries table this is where the epss data will be imported into and associated with the cve ID now you see these three columns have been added epss last modified date epss percentile and epss score this becomes incredibly useful that we can now incorporate these into our vulnerability calculators so on this tab I have my vulnerability risk rule default risk rule pulled up and I have now Incorporated our vulnerability epss score into this calculator I've assigned a weightage of 30% and I've accounted for the ranges from 0 to 89 and I've said that that's going to assign zero and anything above that 0.9 to1 I'm going to assign full weightage for that calculation so here you could see the new calculator set up with the vulnerability epss score accounting for 30% of the weightage this allows me to better prioritize my vulnerabilities using this new epss integration a full list of additional features and fixes for our existing products can be found at our product documentation website at docs. servicenow.com thank you for listening and don't forget to check out our other Washington DC release videos