thank you so much for joining us today and taking the time out of your day uh we are here it is September 4th it is 1 p.m. eastern time um and we know you're all over the maps for some people it's a morning for some of us it's late in the afternoon some some it's evening thank you so much for joining us on this presentation of security Center maintaining the highest levels of security monitoring and security configurations with ease through a suite of security related tools that is a mouthful um so in reality what we want to break this down to is um working with our customers to understand what security success looks like in the platform of platforms we're going to dive into some key features and functions that will drive the ease of use and simplicity for service now admins and Security Professionals alike um so with easing that burden what we're going to be talking about is a solution to help solve some of these problems for you and hopefully by the end we'll have an idea of what great security can look like in the platform of platforms so to get some housekeeping out of the way we have our Safe Harbor notice and this is really to protect us against any forward-looking statements that might occur um or might be said throughout the presentation but in reality um I'm going to be talking about current technology now some of that technology might be related to um Utah it might be related to Vancouver it might be related to Washington or even um or even getting into some of the updates around those different packages that are installed with each of these uh with each each of these versions that are are in plat platform sorry that was a tongue twister for me my name is Joseph piso I am a security product analyst on the customer security and Trust team what we do on the customer security and Trust team is we provide tools and guidance support and services to our customers to make sure that they're maintaining the highest level of platform security that they can we're trying to ease some of the work surrounding what your responsibilities are and I am really excited to share this information to you because this is important stuff and this is stuff that we want you to take away and start using and start diving into to prevent any mishaps that might H when it might happen when it comes to sec so let's start with why why does this product exist and this product largely exists to address the shared security responsibility model now with this model we have some responsibilities with our Colo facilities that we manage things that are like vetting or access to cages where data is stored and who's allowed to do what and when and how that's handled things that happen with the service now stack and that's the Middle where we have responsibility and this is everything where our platform as a service runs in the back in the back end and you that slice that you're accessing and then there's the customer responsibility and the customer responsibility might seem to be a long list but we really want our customers to understand that what we're looking to do is assist them with getting into their journey of security when it comes to the platform of platforms now I'm a security guy some of you might be raising an eyebrow um if you're joining us you were invited to join us we were encouraged to join us and I'm telling you you can trust this QR code because this QR code will take you to the full shared responsibility model that will break down each section so I'm going to encourage you to um to go and click on this to to snap that uh that QR code and hit that document so you'll have that document saves in your back pocket I would normally tell my friends and families if you see a QR code in public don't do you know avoid it but we're not in public this isn't some random QR code in a street pole somewhere this is something you can trust us with so go ahead grab that even take a snapshot of it so you have it for future reference now when we talk about the shared responsibility model we want to think of this as a partnership between the provider and the customer both with specific responsibility service now provides customers with a secure cloud and the tools to secure your instance and workflows so when we think about this we want to think about where can we apply security Center to go out and hit um the most bang for the buck security configurations and these are the top three areas that security Center really works around and that's secure configurations of instances authentication and authorization and some data management in there as well there's other areas but some of those fall into advanced stages of your security Journey where and we'll talk about that where a security Journey might be crawl walk run this is the stuff that helps get you into that crawl and walk phase for those of you who are new to the to service now this is where you can jump in and start on that journey and start taking advantage of some of the functionality of security Center and we haven't even defined it yet we haven't even talked about what security Center is so we're going to get into that in a second but one thing I want to point out is that when we have customers come through and say well you know why are you telling me all this we're reaching back to Industry experts who are coming to us and saying things like through 2025 more than 99% of cloud breaches will be traced back to preventable misconfigurations and this is something that we take to heart because we want our customers to not have to juggle chainsaws when they're configuring the security of the product yeah there's still going to be some things that you're going to have to go in and manually accomplish but for the majority of this we're going to get you to a secure by default out of the box and then you'll be able to work through those configurations to understand what you can fix and what you can put in place to avoid those potential exploits and those potential breaches that might occur due to misconfiguration so let's talk a little bit about proactive measures and this is according to sneaks uh 20123 state of cloud security report now this was uh hit with a number of different uh different survey um survey participants who gave back this information and when we sit back and look at 80% of organization surveyed had experienced at least one serious cloud security incident within the last 12 months that's pretty big that's a lot we also have 67% of cesos that have been interviewed highlighting security misconfiguration from production environments as a key Cloud security threat misconfigurations it's huge and finally 50% of the organizations Shar that they experience 50 or more Cloud misconfigurations per day and what we're learning is that organizations must take proactive measures in order to improve their security posture and to ensure and avoid any security misconfigurations Now any is probably a loaded term because we technology is const stantly changing we really want our customers to get ahead of any potential exploits that might occur and things could happen but as long as you stay on top of this and you get on your journey and you start working with your teams to build out things like quarterly meetings or monthly meetings to be able to go through and handle um what's next on on our configuration Horizon and that's where this managing all of these security controls while expanding and customizing your workflows can be challenging this is something where we have to start thinking about the security configurations the monitoring and the best practices you can go to all of the settings and make this work on your own these are things that you can take away and really adopt and really um set a stage to be more secure and this is a challenge to our admins to take this on and even get your teams involved get those teams involved your security teams involved so that they understand that there's things that they need to be concerned with now before we go any further we're going to kick off with a poll so that we get an idea of where we are because there's a lot that's going on so we have a poll out here which is currently how familiar are you with service now security Center um and we're seeing some great results popping in already you people are fantastic fantastic we're going to give it a couple of minutes um hopefully we can get a majority of the people to respond and I see uh I see a lot of great responses coming in so I'm gonna end this poll and I'm going to share the results so that you can see exactly what we're talking about here and where you are so when we think about this we have that security what we have a small percentage that are coming in and saying hey I don't know this is and that's okay that's why we're here and that's why we're talking about this I have heard of it but never used it as our largest uh response response pool and today hopefully we'll get you to a point where you'll understand it get to it start using it um and I use it occasionally that's actually a good thing occasionally is really what we want we want to make that occasionally happen on a regular basis so let's get it schedule let's get our teams involved let's go and get our um our security contacts updated so that we understand who's going to be handling information related to security that's fine if it's still you the admin of the platform you can be that person you can be that main point of contact so let's move on so this is where we're going to start defining what security success looks like we want to ease the burden and help with that heavy lift prior to this there were products like instant security Center which really covered only only a small portion of the configurations that were available and prior to that it was a m matter of hunting and pecking through your instance to find these configurations in order to set them so that you were more secure well we've changed and we've migrated and we've moved this into security Center to deliver a stronger security posture now when we break this down we want to break it down to the feature groups and the feature groups include security hardening which is going to give us a score that's sub to our organization it's also going to be the umbrella for anything that's happening in platform security scanning is where I can go out and scan my instances and understand those user modifiable Fields maybe we're an organization that takes advantage of custom tables and we need to understand what we put in those tables and how we secure them maybe we need to learn more about security as it relates to the platform of platforms maybe we need to follow best practices and get on our journey or continue on our journey or follow through with critical updates or as we call them customer actions that's where they've been named or measure success with security metrics there's a whole host of what's going on that's really really going to be powerful for us now where do we start with this well one of the top areas that we think about is security hardening and this is where we have a number of different security functions that we can go in and we can set to make sure our instance is hardened now we work with our appsc team to develop the practice of what needs to be included and they come to us they measure this constantly and when we started this there were about 175 different configurations today there's about 210 and we're able to easily go into the product and understand how each of these instances and recommended configurations come back to us and how hardened they are based on a score from 100 from one to 100% so when we go back to working on this we're identifying where we're actually successful and what's working for us it's pretty cool security scanner as I mentioned when we looked at those hexagons was this is where we can go and create a manual a scheduled scan of your instance against a suite of Security checks now I want to break this down a little bit because when we think about this our security checks are going to be inclusive of what's available out of the box which I think is around 250ish um but there's no limit to that you can go and create Security checks for anything that might be a user modifiable field like a table uh a table a column a script maybe a lter check where you can go and build these out and search for anything that could be malicious or really like go out and like you know cause us some pain if we don't if we don't identify and remediate some of these next security metrics is where we can go and measure what's going on with the platform are people logging in when are they logging in are we seeing failed logins are we seeing MFA logins are we seeing privileged users who should have MFA who aren't using MFA are we seeing people logging in locally that's where we can go and determine this and measure this and we're going to be talking about a specific use case that was brought to us by a customer that we thought was really powerful we've used this story across a lot of our demonstrations and conversations with our customers to get them excited because this stuff is really important and this is how you get ahead in security next is learning learning is a place where I can go and gather some resources to understand and identify best practices to compliance documents and service now release notes there's a whole Central repository that will help system admins and security people gain more confidence around the security of the now platform in order to stay on top of learning and information so that your org doesn't fall behind is the biggest reason of importance behind this critical updates or as we've renamed this recently to customer actions you can validate any changes that are happening in the platform where you might be able to or might need to um deprecate something like three de you know triple Dez is out there it's still being used and it's in a password two field we may be deprecating it and we may have other methodologies and protocols in place that you can go and change this up this is just a place to serve as a reminder for information um for changes uh to information that's provided in the platform it's pretty cool to have some workflow available to you one of the areas I get really excited talking about this because we talked a little bit about crawl walk run right this is where we can get on that security Journey we can jump into the crawl phase by building a foundation we can jump into the walk phrase by adding Advanced features or we can continue on with a trot slash run walk phase by optimizing the functionality and this puts the power in your hands to really understand what's going on with these products so let's talk about the key benefits and when we break this down we want to think about increasing our security posture I need to feel more confident I need to make sure that aside from my Enterprise my service now platform and the valuable data that's stored in there is secure we want to make sure that that data is secure and no one who's unauthorized is going to get to it we want to ensure compliance we want to be able to have scores available that we can share with our management teams or our internal Auditors to let them know that hey we have this functionality built in we have we've gone through and we've secured these specific settings that needed to be secured we've measured how what we need to focus on for our organization and this is where we are and deliver this data to those people that are stakeholders is in the security of your Cloud you can also get your security teams involved so that they understand this a little bit and they can answer the questions being able to identify and monitor potential threats this is where we can go and see the actual metrics of what's going on and we're going to talk about that once we get into the demo talking about embedded learning resources in the learning portion of the product addressing customer options to be able to go and make those necessary changes to things that may be deprecated or things that may need attention right out of the box and then finally following best practices to get or stay on that journey and all of this increases trust and confidence in the service now platform now this poll that we have coming up um we're gonna ask this question twice so we're going to do this now um you'll be able to answer this poll and then after the the demo we're going to come back and we're going to talk about getting into we're going to talk about getting into the product and then we're going to come back and repo because we want to see if your your mindset changes as we go through all right looking great all right I'm going to end this poll and I'm going to share this and we got some great results here we're looking at no one is coming in saying not likely um so that's just after the presentation we still see some people saying possibly I need to understand more and hopefully by the end of the demonstration we'll be able to sway you and then finally I can't wait to to use security Center that's really big that we're seeing a big jump there so I want to get into the product a little bit and then we'll come back and talk about some resources that are available so let's get this out of the way and let me open up my screen here here we are so here we are in security center now one of the things we need to know and I need to educate everyone on is that security Center is something something that we need to you know actually get to we need to jump right into this so when we break this down um how do we get there well first we go to our filter Navigator and in our filter Navigator we're going to type all available applications if you're in front of your instance now you might want to try it open it up go to all available applications I'm sorry I jumped ahead in My Demo let's go to the right place we're going to go to security Center we'll go to all available applications again later so in here if we type in security Center into our filter Navigator we see two links for security Center I chose the top one and I added that as a favorite um so that I can go right into my favorites menu and click on security Center we're going to go back to all available applications later because there's going to be some stuff we're going to be looking at on how to maintain this so I apologize I'm laughing at myself right now um but here you once it's in your favorites you click on security Center this is going to take you right into the overview page and this is just a landing page that shows us information where we can go and look at nonproduction or we can go and look at production or we can look at user metrics that are available we can see a whole host of information this is going to show me right now for production we can look at all instances if we have multiple instances we can map out to those um kind of like a hub and spoke we can also go through and we can look at things like our compliance score and this matches to our hardening settings we're going to talk about that in a second but here we can see if there's any antivirus downloaded files or customer section customer actions do metrics to look for as far as thresholds we can go in and see user metrics to identify what users are doing what we can identify login protection now a lot of these are metrics that we'll also see on the metrics page but I wanted to show you that at a glance I can go in and see what are my top non-compliant scores what are my top non-compliant hardening configurations and how do we manage this and we can go in and we can manage this and we can take advantage of this we can see we have three High and the rest are moderate and low if I treated this like vulnerabilities across my Enterprise I would focus on critical first then High then moderate then low than none and we're doing the same thing here it's a good thing that we have no criticals and we only see a couple highs that might mean that we have a conversation coming up with our security team to discuss how to handle these maybe we have compensating controls and we don't need to worry about this maybe these are functions that we're really not using that we you know don't need to worry about at this point it's a matter of our our organization's preferences as it ties to our policies as to how we handle a lot of this we can see how we are with access controls um we can go and look at specific classified data and what we're looking at as far as that classified data and then we can identify table columns pii classifi columns and total pii columns this puts us in a position to really understand what's going on with our with anything that's stored in stored within our service now environment now when we go into security hardening this is where we can go and we can identify things like our um any any hardening score so we can look at our hardening score from June 10th to September 1st and we can see exactly what's changed and right now we're looking at a change of 87% to 89% but we can also identify the specific low hardening settings that have been changed what specific domain they fall into is has it been set to compliant or non-compliant and we could do the same thing with individual domains and go and identify the specific three settings that have been that have been adjusted to jump up the score now my score that reflects up here on the first remember today's the fourth we can go in and we can see that that that score jumped up today it's a 90% if we go and modify these and add a couple of these that'll bring the score up to 91% so that score and the score that we see over here this 91% is related to what's going on with my settings and there are my three settings right there and if we go in and look at our hardening settings we can go in and see exactly what's going on here and start doing some work against them and we can use platform functionality so if you're used to using workspaces this should be really exciting where you can go in and say just show me the non-compliant the compliant stuff the stuff that we've already fixed and here are my three top high scores that are out there my highest priority now I can go in and we can turn anything on or off and we can go in and configure this however it needs to be configured and here we have something that's saying waiting on discussion with security team so that's telling me that the description is something that we need to go and and talk to our team about we also have functional impact that's related and documentation we can add in activity in here as well and additional com comments but this is where we can go and take advantage of toggle switches we can take advantage of configuring multiactor so clicking on and being taken to a specific configuration page we can go and add in a numerical value or text value depending on what that setting is and we can go through and install plugins if that's going to be the security functionality that we need to include so there's very easy methodologies to all of this and all the information is in the in the documentation so you can go and track back to what's going on there it's actually really cool stuff now if we keep going and we start looking at our security scan comparison this is where we're looking at scans from one date to another so from the 23rd of May to the 7th of August we can see that some scans came back with some information if we click on them it's going to take us down to this field down here that's going to show us exactly which field came back and this is a critical priority we can go in and we can click on this and we can see exactly what our need is to um to basically disable passwordless authentication and this is telling us what we need to do here so I can go and copy this and we can go through and grab a specific task and in that task we can assign this to a specific person and with abl tutor is our person that we're working with we want this to be set as a new state we want to give a short description to disable password less off and then put in the description and the work notes so that they know which field to go and to go and work on and when I save this this will go into able tutors cue so they'll see this and they'll see they have a job that's there and they'll be able to take advantage of that that's really cool stuff but let's take a step back because if I maybe I'm solving a but how do I get to that problem well we have sweets and these sweets are groups of checks now with a suite I can go in and I can schedule this right I can build out a schedule and say that I want to do this the fourth Tuesday of every month um track this through build this out no big deal it'll come back and it'll give us a way to really measure this stuff we can go and see the checks that are involved and I can edit this and add checks to this and we have a whole list of checks that are here and we can go and start building this out based on what we want but I might have additional checks that I want to include maybe we do a lot of customization and we want to go and check for any type of malicious code that might be thrown in there so maybe we want to do a linter check maybe we want to look at scripts and see if there's any potential for any type of exploit to run against these scripts I can go and build these out or a table or a column check and these are the checks that you're going to be limited to within this functionality but there really isn't a limit to how you're going to handle this stuff because when we break this down we're going to have things like um our short description our description our resolution details any run command that's out there any column that we're going after and specific function that we're looking at and any code that might exist there so we can build these out so that we can take advantage of this and keep moving and keep things working so that's so what we're doing is we're building scripts we're adding checks to them and then our results are coming back grouped based on the scan we were in so if we go through and say well let's look at the access control audio auditor we'll be able to see just the basic info and then we'll be able to see the scan findings and in the scan findings we'll be able to go through and map to individual fields that are here to see what's going on now this is where I encourage my service now admins to communicate with our with your security people because you'll know specifically how to handle things in the service now um in the service now world your security people may not we want to get them educated on what do we worry about with UI page setup here's where we can go in and identify information we can identify the resolution we can identify um you know Advanced scripting that exists in there we can see exactly what's happening and then we can go we can take these findings and build these findings out so that we have that workflow that we can include there so we can see exactly what findings exist what Suites exist what checks have been completed if there are failure scan log scan statistics and targets I want to point out failures because these are things that you might identify or might be associating with things like configuration compliance where you can determine what exactly is going on when you see these checks and when they when the tests pass and when the tests fail it's actually pretty cool now if you want to go after findings aloc cart you absolutely can by just going to the findings menu and clicking on any of these and this will take you down that same path where you can say hey we have this finding we can make a task we can pass this information to those users and they can start moving they can start moving and taking advantage of what's going on with that specific functionality I'm just doing a quick view of what's going on in my in my space now let's go into metrics metrics is where we can see what's happened now I promised you a use case when I was going through the presentation and one of the things want to point out are some of the things we can look at and here we're just looking at users we can also look at privileged identity and see who out there is um basically accessing things without having maybe a you know a MFA Associated we might be able to see exactly who's using a lot of impersonations these might be important uh maybe there's someone who's impersonating that shouldn't be impersonating we can see who's logged out what x 509 certificates are expiring in 30 days rest apis without access policies these are all important but if we go to users one of the things I want to point out is failed logins now my environment's a demo environment so I'm not gonna have a lot of data in here but one of our customers came to us a few months back and they said you know we were actively working on some stuff and we went in and we noticed that we were seeing a large number of failed login attempts occurring at you know 2: a.m. on a Wednesday now if this was happening on a Monday morning they normally wouldn't be concerned because Monday morning maybe I haven't had my coffee yet I'm logging in for the first time and when I log in um you know I might fat finger my password no big deal or I might fat finger my MFA um but what they noticed was on a Wednesday morning they were seeing thousand of failed logins and they went and looked through and they couldn't find anything successful in fact they had password resets set up that were going to specific emails and customers weren't or users weren't reporting what was going on that there were any problems so nothing was really triggering there were no password failures but they went and passed this information over to their security team and their security team took a look at service now and couldn't find anything but then went and looked at other Cloud products that they have and other internal products that they have and they were able to identify that yeah there was some success in some places maybe not huge but some users who you know somehow got around using a hard password a more difficult password to guess or more complex password or some users who weren't using MFA um they were able to identify in these other products that there was something going on so it puts me into a a real sense of Pride to know that and I get really excited to share this with my customers to know that this is important Beyond service now alone because these are things that you can identify that can help your entire organization and I think that's a pretty powerful story to tell now if I was uh you know a little bit of an egotist maybe I dropped the mic at that point but I got a lot more to show so let's go into a couple of the other areas and make sure that we uh cover what's necessary now one area critical Updates this is where we will alert you to things that are end of lifing or things that are changing that you might need to pay attention to and this is where you might go in and say oh wow I need to you know deprecate my triple Dez because there's something going on and we can go into the steps specifically to understand what's happening and have a workflow built around this so we would go into one step one mark that as a as complete go into step two follow those instructions Mark that as complete go into step three and follow follow those instructions and Mark that as complete and then validate your update and Mark it as complete so that we can move on we can also track the activity of what's going on and see who's been changing things and I can add some activity updates as well and with the with all of security Center if you look you can see that we have the ability to use platform functionality which I think is a fantastic way to get people to start using this especially those who are really ad Dept using the platform you could take advantage of this treat it like your other workspaces and get things done next I get really really excited to share this one because I find this to be one of the really fun areas to like jump into and this is where we can get on that journey and we have three areas the crawl walk and the run now when I talk to my customers I really want them to be on a walk Trot I don't want them to get to a run because a lot of times we treat that run as a Sprint so let's avoid sprinting and let's make sure that we're able to breathe while we go through this so let's start by building a foundation and if you look at building a foundation we can go through and we can do things like change the default login credentials well that's something that you can easily do we can go through and you know identify password complex complexity and build that out so we can see exactly what's happening there we can go through and we can identify things like um enable uh table auditing so we can go through and know what's going on there once we build that Foundation that's where we can go into the enhance and the optimize and these are all really where we can go and build out and follow a workflow to be able to complete all of this functionality to create a password policy so that we have those difficult passwords those complex passwords we can set that strength so we can understand exactly what's going on we can go go and uh set those fields in the password policy form and then finally test the password and go through to make sure that we have that now this is just one setting there are about 16 different settings in best practices that we could take advantage of so we can go through and say well let's just go and look at and filter on the specific field for building out those configurations and we can say let's build out a foundation and let's focus on that today and apply that so that we can actually see what's going on and know how many different settings we have to adjust here so there are 16 different settings if we sat down and we did the research on all of these functions and followed each of these settings within a couple of days maybe a week we could be at a point where we are well on our journey and well into the walk phase and this is important this is really important to get this stuff in the crawl phase out of the way these are the first things you should be doing in order to make sure that your data is protected in the platform of platforms now we're going to go into one last area and that's the learning area learning is where we can go and take advantage of a whole host of information that's available to us so we can actively see what's going on we can go and see where we are as far as platform version we can go and identify product documentations we can hit the portals so that we can go into core and update things like our security contact we can go and ACC uh figure out how to access service now core if we haven't done that maybe we want to get our sock reports so that we can understand that and share that with our teams we might want to go and read up on our best practices or instant security hardening settings we might want to go and learn a little bit about encryption and Key Management to determine what do we need for encryption and Key Management we can see Security in depth and go through the data encryption book the customer application pen testing email spam and scoring and then finally go through our regional and Industry specifics specific documentation so that we can identify where we stand with regional um Regional responsibilities that we have to maintain so there's going to be some stuff that we really need to stay on top of and this is where we can go and do that sorry um I was just getting my screen set up so let's go back to that poll and let's open up this poll now after you saw a little bit of the demo and how to get there and then we'll wrap this up we'll go into a couple of other things within the product so you can take a look at how to maintain this and why I mentioned those all available applications before so in the poll after this presentation and demonstration what is it what is the likelihood you will use the security Center moving forward fantastic we're seeing some great numbers we're seeing that possibly number dropping down um this is looking great I'm G to stop this in a second so that everyone can uh see what's going on see what we've identified what I'm really thrilled about is that there are no longer any not likelies this is fantastic because this is something that we can really sink our teeth into and get security done let's end this poll I'll share this real quick and then we'll go back into a couple of things because I really want you to understand how to use this and how to maintain this so let's go back into the interface and we're going to look at one thing specifically because there's uh there's some cool stuff that we can focus on now before I flubbed and I typed in all available applications now one thing I want to point out that I may not have mentioned is that this is part of platform there is no additional charge so this is something that we started out as a small product it started out really as a replacement for our previous version of in instant security Center and prior to instant security Center you'd hunt and pec for these settings so we've built this product up to include so many more settings and so many more features and functions to provide for more enhanced security but we need to stay on top of this update so one of the things I'm going to walk you through right now is going in and actually identifying how to know where you are with security Center and this is where if we search on security Center we go to all ad available applications we search on security Center then we go to installed we'll see that security Center is there but one of the things we want to do is we want to sync now so when we sync this this is going to go out and it's going to look to see if there is an updated version now I'm pretty sure I'm at the latest version but I could have something that I maybe it's something that was released that I missed we typically release four versions a year so one with each family version and then uh one H each quarter um each quarter post family version release so we'll be able to see this stuff now once we have that we can go in and we'll see if there's the ability to install a a new version we can track our installed versions and we can see our install logs we can see our installed files we can see our customized files and we can also go into and update any details that we might be looking at as well and see what changes have applied based on those updates so this gives us a really good view of what's happening again we want to go to all available applications go to all and then in all we want to be able to see exactly what's happening out there so that's application manager we want to look for security Center go to installed and then from there we can check exactly what's going on and we can see that we're up to date here you may not be if you're on if you're on Utah Utah you'll have to go out install security center from the store for Vancouver and Beyond it is included in platform and you will need to go for each one and search for latest versions so I want to point that out so that you have that ability to go and do that you stay on top of those updates now let's go back and let's hit that presentation and wrap this up because I want to share some resources that we have available now we've talked about a lot of things I had that QR code up so that you can go and grab that shared security responsibility model here's where we can go and identify the security Center documentation we can identify the now learning security center training which is huge go and talk to your admins talk to your team make sure you have a now learning account go and look at this and grab this there's also a video library where you can go and view videos around service now security Center and these are small bytes these are bite-sized videos that you can watch in some cases 3 minutes some five some eight there there are a longer form demonstration and they're constantly being updated and added to so go and hit these because on top of that there's support from the service now customer security and Trust team as well as your partners get your partners involved if you don't have the resources or the time to work on this stuff now let me move into the next couple of slides and let's talk about the takeaways security Center is part of platform if you're on Utah go to the store and download it if you're on Vancouver or Beyond you can go and you can download it's already part of your your platform it's there just go to your filter Navigator search security Center and that's how you'll get to it security Center improves organization security postures with embedded security best practices and recommendations get on your journey start talking about what you need to include in that get your teams involved your security teams get your infrastructure teams get your your Cloud teams involved to talk about this to understand hold your other Cloud vendors responsible get them to step up to what service now is doing for our customers because security is going to be important to everyone and then finally we want our admins to leverage the detailed learning resources to gain more control of your instances because realistically I want my security Center admins to really understand and be able to carry that conversation with the Security Professionals I don't want you to feel intimidated by this and if you're a security professional encourage those admins to start learning a little bit more a little bit of security doesn't hurt it really helps it helps Drive the security of the platform it'll help drive your career as well and that's why these things are important so I'm going to open up to questions and I know that we have some in the uh in the chat so let me look at this are scans executed against a recent backup or are they executed against the live instance they are executed against the live instance and let me break this down a little bit because realistically you should be doing um some uat right so you want that user acceptance testing and you want to do this in subpro so you want to get this running in subpro to understand what the impacts are and what the specific functions of that security event or security protection might be offering you want to get this to a point where you feel really comfortable you have your uat your your endusers can get through using the products that they have out there they can get get through their workflows they can start jumping into Ai and this isn't going to stop them but you want to test it so you want to get this out there and you want to run those scans against your your subpro environment now once you have that and you know what's going on in subr you're G to make those changes in both subr and prod so you'll continue running that scan scans if I were to scan every single check out there might take about 45 minutes so it might be something that we might want to do you know once a month on a you know on a Saturday when we're in a a blackout period or we're in a you know maybe we're in a maintenance period that we can go and do this hope that answers your question um my security Center app is up to date but I do not see best practices or notifications so for that question I'm gonna ask if you were on um if you have moved to Washington right so um so in Vancouver and in Utah not every new feature is backwards compatible and that's why we really want our customers to plan out their family upgrades that's why we suggest n minus one as being the minimum so if you're in Vancouver you're on N minus one once you go to Washington or when zanadoo comes out that's when you'll see those upgrades coming in now we're working on making that a little bit better because we we will have customers that will stay on Vancouver for a long time or they'll stay in Utah for a long time and they'll plan their updates to be you know once every you know two years maybe they'll have their updates because their uat takes some time or their you know implementation of itom Discovery took some time and they really need to discover what's going on their Network and build their cmdb so this is where we start seeing that you know sometimes there's a lack of that um but that's going to be dependent because not every version includes the latest and it all also doesn't have have complete parad with what you might see with your Health Scan results so we want you to stay on top we want you to to make sure you update make sure if you have a subpro environment you can test this and you can start working on this and get up to those n minus one family releases so you can take advantage of the newest stuff you are on v160 I have 134 and it says I am up to date we are running Washington well that's a little weird um pardon me that might be something that you need to work with permissions around maybe you just don't have permissions or maybe you need to sync again because I've seen that happen with my instance where when I sync it's not going to map uh it's not going to map directly at that time so I've had to go and run a sync a couple of times in order to get that if you're still running into that I encourage you to reach out to your account team and open up a case with us get your partner involved they may need some may need some uh additional support involved to to assist you getting over that hump there um I don't see any other questions there's nothing else in the chat No Hands being raised all right I'll give it another uh another minute I give it another couple of seconds all right if there's no other questions again my name is Joseph piso on behalf of myself and my partner on the call Chris Dinger who's been handling all the stuff in the back end from getting the polls up to answering questions when I my eyes weren't on that screen to making sure that I was on time and keeping good time we both want to thank you so much for joining us and again if there is anything that you need reach out to your account team they can open What's called a field security request and get us involved um go and hit those QRS hit the the hit the the the documentation go take the training go and look at those videos and start consuming that because this is going to be something that's going to help you avoid any of those exploits that are tied to those specific hardening settings scanning settings and give you the metrics that you really need thank you again and make it a great day