In this article:
Note:This integration is available with a paid SecurityScorecard plan. See our plans page for more information about levels of features and access.
If you have ServiceNow ITSM access, use this integration to import SecurityScorecard information into your ServiceNow instance.
Your IT or cybersecurity management teams view SecurityScorecard findings and scores right from within your ServiceNow instance and use automation rules to react more quickly to new issue findings or core changes.
This integration is designed for self monitoring, and takes in information for your organization's domain as it appears in your Scorecard.
What you need to use this integration
Before setting up, make sure to:
- Have the x_sesri_ssc_itsm.admin role in ServiceNow ITSM.
- Create a SecurityScorecard bot user with an API token, so ServiceNow can access SecurityScorecard.
Set up the integration
Tip: For detailed setup instructions, please see the integration integration listing page in ServiceNow’s store.
- In ServiceNow, go to All under System Applications.
- Enter SecurityScorecard in the search.
- Click Install next to the application labeled SecurityScorecard for IT Service Management.
- After installation, locate SecurityScorecard for ITSM in the left pane, or use search to find it.
- Select Settings under Application Setup.
- In the second field, enter your organization's domain that appears in your Scorecard, as shown in the following screenshot:
- In the third field enter the API token you created with your SecurityScorecard bot user.
- Click Save.
ServiceNow ITSM imports your Scorecard data within a few minutes after installation.
Monitor your Scorecard activity
View and monitor several data sets with this integration:
- View your domain’s Scorecard data by selecting My Scorecard.
- View your domain’s historical scores by selecting My Scorecard History under Historical Data.
- View your domain’s event log by selecting Scorecard Event Log.
Create incidents based on Scorecard activity
- Select Incident Creation Rules under Application Setup.
- Click New to create a new rule.
- Enter a name for the rule and select the source of the trigger in the Basis drop-down list:
-
- Overall score represents triggers based on score changes.
- Factor level score represents triggers based on factor score changes.
- New issue findings represents triggers based on new issue findings.
- Using the Variation type drop-down, select additional details for your rule:
-
- Score-based triggers can handle a decrease in points, in percentage, or below a threshold.
- Issue-based triggers can handle a new finding for a specific issue type or issue type within a factor category.
- Set a priority level and assign the rule to a person or group as desired.
- Click Submit.
View incidents based on your rules under Active Incidents.
Learn more
See the following resources for more information:
- Solution Brief (in progress)
- ServiceNow Store Listing, which includes guidance on customizing rules
- SecurityScorecard's marketplace listing for ServiceNow ITSM
Get help
If you need help or have questions about the integration, submit a Support request.
Comments
0 comments
Please sign in to leave a comment.