New VulnDB Integration for ServiceNow Enables Better Vulnerability Response

The ServiceNow® Vulnerability Response application is a powerful way for organizations to track, prioritize and resolve vulnerabilities. However, depending on data from vulnerability scanning processes can add time to remediation activities and unnecessarily increase risk exposure. In addition, many of the sources of vulnerability data available for use within ServiceNow are incomplete, limiting visibility to many potentially critical issues.

That’s why we’re excited to introduce the VulnDB® Vulnerability Integration for ServiceNow. With this integration, developed by ITS Partners, organizations can access data for over 200,000 vulnerabilities catalogued by VulnDB directly within ServiceNow, including over 68,000 vulnerabilities not found in the National Vulnerability Database (NVD / CVE).

“Successful vulnerability management involves understanding the assets and software in your environment, determining the vulnerabilities associated with that software, and using asset and vulnerability criticality information to inform risk-based prioritization and remediation decisions.  The VulnDB Vulnerability Integration app for ServiceNow is designed to help customers accomplish that goal” – Eric Paxton, Director of Business Operations, Risk Based Security.

 

Better Processes Powered by Better Data

 

Better data matters when it comes to helping organizations understand and mitigate the risks that could impact them. That’s why we our product, VulnDB, is the most comprehensive and timely source for vulnerability intelligence available. VulnDB revolutionizes vulnerability identification and remediation processes, arming customers with fast, current insights about the vulnerabilities associated with the technologies they use, without the need for repeated vulnerability scans.

“The VulnDB Vulnerability Integration app provides additional info about the solution to a vulnerability, whether the vulnerability is actually exploitable or not, and classification data indicating how the vulnerability might be exploited. This rich metadata allows you to filter out the noise and make better decisions about which vulnerabilities you remediate and which you can safely ignore, which makes VulnDB a great supplement to your scanner-based solutions and other vulnerability data providers like the NVD.” – Josh Bernson, CTO, ITS Partners

With the VulnDB Vulnerability Integration app for ServiceNow, available as a free download* from the ServiceNow Store, organizations can leverage asset information and workflow within ServiceNow to quickly identify the vulnerabilities that are relevant to their organization, prioritize them using rich vulnerability and asset criticality information, and implement strong workflows and processes to facilitate quick remediation. The app features a fully guided setup process that makes configuration quick and simple.

 

Download the VulnDB Vulnerability Integration app from the ServiceNow store today

 

* VulnDB subscription required

 

About VulnDB

VulnDB is the most comprehensive and timely vulnerability intelligence available and provides actionable information about the latest in security vulnerabilities via an easy-to-use SaaS Portal, or a RESTful API for easy integration into GRC tools and ticketing systems. VulnDB allows organizations to search on and be alerted to the latest vulnerabilities, both in end-user software and the third-party libraries or dependencies that help build applications. A subscription to VulnDB provides organizations with simple to understand ratings and metrics on their vendors and products, and how each contributes to the organization’s risk-profile and cost of ownership.

For more information visit vulndb.cyberriskanalytics.com or call 855-RBS-RISK

 

ServiceNow, the ServiceNow logo, Now, Now Platform, and other ServiceNow marks are trademarks and/or registered trademarks of ServiceNow, Inc. in the United States and/or other countries. Other company names, product names, and logos may be trademarks of the respective companies with which they are associated.