Knowing the ins and outs of an organization’s security incident response can be strenuous and time-consuming as it requires a deep understanding of an organization’s IT infrastructure, business processes, and regulatory requirements. This can be a challenging task, especially for larger organizations with complex organizational structures and multiple stakeholders.
The key solution to this challenge is to partner with a trusted provider of security incident response services.
ServiceNow has recently released a suite of impressive updates designed to streamline and improve the security incident response process and major security incident response process. This new update not only allows for improved security incident reopening, task linkages and tag toolbar placement, but also quick start tests, text answers word wrapping and Threat Intelligence updates. Join us as we explore these incredible features in depth.
Continue Reading
In addition, if you want to learn even more about ServiceNow’s SecOps suite, be sure to check out our previous blog on the topic. It goes in-depth into other important updates (Vulnerability Response Updates, Configuration Compliance Updates, and Vulnerability Integration Updates) released. Be aware of how your security is being managed and monitored as effectively as possible.
An Overview
- Security Incident Response Updates
- Major Security Incident Response Updates
- Threat Intelligence Updates
Security Incident Response Updates
Rectified – Security Incident Reopening
Reopening an SIR linked with a problem or incident is an essential part of keeping security incidents up-to-date and correctly monitored. By performing this action, organizations are able to ensure that incidents do not slip through the cracks by unintentionally being reopened if a linked incident or problem is closed. This is one of the key updates in the SecOps app suite.
Rectified – Security Incident Tags Toolbar Placement
Ensuring the Security Incident Tags toolbar on a form remains neat and symmetric is now easier. The issue which caused the sizing of the security tags toolbar to become distorted when it was moved onto a different location on the form is sorted. Now, you have the ability to configure the security tags toolbar placement for an aesthetically pleasing arrangement every time.
Rectified – Text Answers are Word-Wrapped
After submitting a Post Incident Review form, text answers are word-wrapped and displayed as one statement despite being entered on different lines. By word-wrapping the text answers and displaying them as separate lines, the information becomes much easier to read and comprehend. Save time by reducing the need for stakeholders to decipher long, confusing text blocks, allowing them to quickly grasp the key information they need to know.
New Additions – Additional Quick-Start Tests
SIR’s latest update is here and it’s packed full of incredible new quick-start tests. It is possible to make ATF even more efficient with its Post Incident Reviews and Major Security Incidents-ready services, so your teams can hit the ground running. Don’t waste any more time creating these cases from scratch:
- PIR Assessments OOTB configuration test
- PIR Assessments conditional configuration tests
- PIR Run time experience
- SIR: PIR design time setup verification
- PIR Design-time experience
- SIR: Propose security incident as major security incident
Major Security Incident Response Updates
Upgraded – Major Security Incident Task Linkage
MSIM’s updated task linking capabilities give users incredible accuracy and visibility when engaging with Major Security Incidents. With the ability to link custom task tables and unlink records, alongside improved workspace linking, the possibilities are endless. This update ensures that all your use cases, even ones beyond the ordinary, will be catered for efficiently.
Threat Intelligence Updates
Rectified – Updates to Payload Parsing
Stay informed and keep your threat intelligence integration functioning smoothly by taking advantage of the latest updates available. The ServiceNow updates for MITRE ATT&CK will ensure your data is promptly ingested in the newest format – harnessing the valuable, up-to-date information that MITRE ATT&CK contains.
New Additions – Brand-New Module
A brand-new feature-rich module has been added to the threat lookup finding calculator. The calculator has been upgraded to assess findings based on responses received, making it easier and more efficient than before.
Rectified – Dark Theme and Accessibility
Additionally, all the dark theme and accessibility issues previously reported have been resolved.
Secure your SecOps with zeb
At zeb, a commitment to getting the job done right the first time is the priority. With years of successful ServiceNow implementations and excellent customer service, you can trust that we are your go-to source for all your SecOps needs. We’ll help you stay up to date on the latest releases, prioritize which updates are important, and get the most out of your security operations.
Schedule a demo with us and let us help you make sure your operations stay safe, secure—and ready for the future.