0
2.0.1
Australia, Zurich
Standalone Application
Vulnerability management teams can use AI Security Exposure Management to help them import various types of security exposures in the AI assets including AI model vulnerabilities, AI model validation (automated red teaming) alerts, and AI posture findings (configuration issues in AI agents or tools, etc.) and manage these issues along with other types of exposures in the Unified Security Exposure Management workspace.
The AI Exposures dashboard provides you with a view into the critical security vulnerabilities of your AI attack surface. You have the option to use a generative AI skill to help you determine if any of the threats might be already mitigated and help you prioritize high risk exposures and defer lower risk exposures that have mitigations or guardrails already in place.
- Filter three categories of AI exposures that are displayed on a dedicated dashboard in the AI Exposures module in the Unified Security Exposure Management workspace:
- AI vulnerabilities - Vulnerabilities discovered in open source AI models that are published in repositories. These vulnerabilities are detected by third-party AI security tools and imported into AI security exposure management.
- AI validation findings - Findings from third-party automated penetration testing or automated red teaming done to verify the behavior of some of these models.
- AI posture findings - Configuration risks identified in AI agents, tools, instruction prompts etc. by third-party AI security tools in platforms such as Microsoft Copilot Studio, AWS, Google Vertex AI etc.
- Use automated response workflows for prioritization and remediation of AI exposures.
- Supports AI security platform integrations: Cisco AI Defense and Palo Alto Networks Prisma AIRS.
- For customers using Now Assist for Vulnerability response:
- Ingest data related to runtime guardrails enabled in AI security platforms.
- Use a Now Assist skill to help you determine if any of the model validation findings are mitigated by these guardrails. This generative AI skill can help explain why a guardrail helps mitigate a threat for a particular validation finding.
- Use an AI agent to help you defer and request exceptions for validation findings with eligible guardrails already in place as identified by the Now Assist skill. You can also chat with the AI agent to help you create exception rules to automatically defer similar findings in the future.
- Supported AI security platforms for this functionality: Cisco AI Defense.
Initial release
Required applications:
- Unified Security Exposure Management (sn_vul) v30.4.4
- If you want to use the AI guardrails helper skills you must install the Now Assist for Vulnerability Response application (sn_vul_ai).
- AI Security Common (sn_sec_ai_cmn) v1.0.0
Supported family releases:
- Australia
- Zurich
Supported integrations:
- The Prisma AIRS Integration for AI Security Exposure Management, a third-party integration supported by AI Security Exposure Management to import model scan results, model configuration rule violations, and model validation/attack data for AI models.
- The Palo Alto Prisma AIRS Service Graph Connector imports AI inventory data from Palo Alto Prisma AIRS and populates the ServiceNow CMDB.
- The Cisco AI Defense application is a third-party integration supported by AI Security Exposure Management to import AI Defense scan results and AI model validation data for AI and machine learning models.
- The HiddenLayer Service Graph Connector and the HiddenLayer Integration for AI Security Exposure Management are third-party integrations supported by AI Security Exposure Management to import AI model vulnerability data.