Bidirectional integration with Taegis™ provides the ability to synchronize select data and comments between ServiceNow SIR Incidents and Taegis XDR Investigations.
Secureworks Taegis Platform
Stop cyberattacks before they begin with superior detection and unmatched response
Organizations of all sizes are facing growing security operations challenges such as limited attack surface visibility, time, and resources. Built on over two decades of real-world threat intelligence and research, the Secureworks® Taegis™ cloud-native security platform is designed to meet today’s security’s challenges with superior detection, unmatched response and an open platform that integrates hundreds of leading technologies to deliver higher ROI. Taegis solutions include Extended Detection and Response (XDR) with Taegis™ XDR, Managed Detection and Response (MDR) with Taegis™ ManagedXDR, Vulnerability Management with Taegis™ VDR, and continuously curated threat intelligence to reduce risk, optimize existing investments and fill talent gaps.
Unlike other solutions, Taegis is designed for collaborative investigations and full attack surface visibility. The Ask an Expert feature provides direct access to security analysts in less than 60 seconds from within the console for unmatched response time and expertise.
- Create tickets for new security investigations and keep them up to date with bidirectional synchronization.
- Easily click through to ServiceNow tickets from Taegis XDR Investigations.
- Configure update settings and field value mapping from the Taegis platform.
- Synchronize comments with worknotes so that users in both systems can collaborate effectively.
- Maintain ticket and investigation hygiene by keeping closure state and priorities in sync.
First major release of the Secureworks Taegis SIR Integration
- Required Tables
- sn_si_incident
- Plug-in Dependencies: com.glide.hub.integrations, com.glide.system_import_set, com.snc.si_dep
- Install the Secureworks Taegis SIR Sync Integration app
- ServiceNow Credentials: oAuth2 or Basic auth and roles: x_secwo_taegis_sir.taegis_admin, sn_si.integration_user, sn_si.manager