If you have ServiceNow ITSM access, you can use this integration to import SecurityScorecard data into your ServiceNow instance.
This allows your IT and cybersecurity teams to view findings and scores directly in ServiceNow and use automation rules to respond to new findings and score changes more quickly.
This integration is designed for self-monitoring and collects data for your organization’s domain as it appears in your Scorecard.
Prerequisites
Before setting up, make sure you:
-
Have the
x_sesri_ssc_itsm.adminrole in ServiceNow ITSM. - Create a SecurityScorecard bot user with an API token so ServiceNow can access your data.
Set up the integration
For detailed setup instructions, see the integration listing in the ServiceNow store.
- In ServiceNow, go to All under System Applications.
- Search for SecurityScorecard.
- Select Install next to SecurityScorecard for IT Service Management.
- After installation, open SecurityScorecard for ITSM from the left pane or search for it.
- Select Settings under Application Setup.
-
Enter your organization's domain as it appears in your Scorecard (for example, securityscorecardcsm.com).
- Enter the API token you created with your SecurityScorecard bot user.
- Select Save.
ServiceNow ITSM imports your Scorecard data within a few minutes.
Monitor your Scorecard activity
You can view and monitor the following data:
-
My Scorecard: your current Scorecard data
-
My Scorecard History (under Historical Data): your historical scores
-
Scorecard Event Log: your event activity
Create incidents based on Scorecard activity
- Go to Application Setup > Incident Creation Rules.
- Select New to create a new rule.
-
Enter a name for the rule and choose a trigger source from the Basis drop-down list:
- Overall score: Triggers based on score changes.
- Factor level score: Triggers based on factor score changes.
- New issue findings: Triggers based on new issue findings.
-
In the Variation type drop-down menu, define how rules should behave:
- Score-based triggers: Decrease in points, percentage change, or threshold.
- Issue-based triggers: Specific issue type or issue category.
- Set a priority level and assign the rule to a user or group.
- Select Submit.
View incidents based on your rules under Active Incidents.
Additional resources
See the following resources for more information:
- ServiceNow Store Listing, which includes guidance on customizing rules
- SecurityScorecard's marketplace listing for ServiceNow ITSM