0
2.6.2
Yokohama, Xanadu, Washington DC, Vancouver
Use the Microsoft Defender Threat and Vulnerability Management (MS TVM) integration by ServiceNow to effectively identify, assess, and remediate endpoint weaknesses while running a healthy security program and reducing organizational risk. MS TVM serves as an infrastructure for reducing organizational exposure, hardening endpoint surface area, and increasing organizational resilience.
Vulnerability Response provides integrations with MS TVM endpoints to import data according to the scheduled time intervals. The following integrations are included in the base system.
- Microsoft TVM Recommendations Integration: Retrieves a list of all the actionable security recommendations to remediate the vulnerabilities.
- Microsoft TVM Vulnerability (CVE) Integration: Retrieves a list of all the vulnerabilities and their exploit information.
- Microsoft TVM Machines Integration: Retrieves the collection of assets that have communicated with MS TVM.
- Microsoft TVM Machines Vulnerabilities Integration (Full Import): Retrieves all the open vulnerabilities.
- Microsoft TVM Machines Vulnerabilities Integration (Delta Import): Retrieves all the information that has changed in the full vulnerability import of the organization, including new, fixed, and updated vulnerabilities.
Changed:
- Verify that CVSS scores are populated on the CVE records from TVM
-
The following app for Vulnerability Response must be installed and activated:
- Vulnerability Response
-
Permissions and roles:
- Roles required: sn_vul_msft_tvm.configure_integration and administrator for MS TVM Vulnerability Integration application.