0
13.14.0
Yokohama, Xanadu, Washington DC, Vancouver
The Rapid7 Integration for Security Operations imports asset and vulnerability data into the Now Platform from the Rapid7 Data Warehouse or InsightVM products to help you determine the impact and priority of vulnerabilities for remediation.
Scheduled jobs simplify the vulnerability remediation lifecycle by keeping the instance synchronized with other vulnerability management systems. The series of scheduled jobs that invoke the integrations can be run automatically or executed manually.
The Rapid7 Vulnerability Integration imports discovery, detection, verification, risk classification, and impact analysis to manage risk and remediation. Integrate your Rapid7 Data Warehouse or Rapid7 InsightVM with ServiceNow Vulnerability Response (VR) to prioritize and remediate the most critical vulnerabilities in your environment. This integration includes the following key features:
- Data import: The Rapid7 Vulnerability Integration executes scheduled jobs, which imports vulnerabilities, vulnerable items, solutions and site data and enriches it. The scheduled jobs run automatically in the instance.
- Lookup rules: Lookup rules are used to search for configuration items (CIs) in the Configuration Management Database (CMDB) with matching information from the Rapid7 Vulnerability Integration.
- The Rapid7 Vulnerability Integration maps vulnerabilities to CIs and business services, and then displays them in a graphical overview (dashboard) to facilitate efficient remediation.
Fixed:
- Minor fixes for this release
- The Vulnerability Response application and its dependency plugins must be installed and activated.
- For more information on Vulnerability Response application compatibility, see Vulnerability Response Compatibility Matrix and Release Schema Changes in the Supporting Links and Docs section on this page.
- The following Security Operations plugins must be installed and activated:
- com.snc.sam.core
- com.snc.security_support.vul
- com.snc.secops.orchestration
- Permissions and roles
- Roles required: System Admin (admin) for installation, and Vulnerability Admin (sn_vul.vulnerability_admin) or admin for configuration