The Rapid7 InsightAppSec ServiceNow Application Vulnerability Response (AVR) is a bi-directional integration which fetches data from the Rapid7 InsightAppSec platform such as Apps, Scans, Vulnerabilities, Attacks and Attack Module details and ingests that data into the Application Vulnerability Response tables.
The status of vulnerabilities can be updated in either InsightAppSec or ServiceNow and changes will be reflected in both applications. Having this data in ServiceNow enables security teams to prioritize vulnerabilities, speed up ticket assignments and fix issues quicker to reduce risk across the software development lifecycle (SDLC).
The Rapid7 InsightAppSec Application Vulnerability Response Integration is a bi-directional integration providing the following capabilities:
-
Ability to fetch all data of apps, scans, vulnerabilities, attack modules and their attack details from the AppSec platform.
-
Get updated status vulnerabilities from the AppSec platform.
-
Update the status of the vulnerabilities on AppSec if the AVIT Ticket status is changed on ServiceNow.
-
The AVIT Ticket will be linked with the latest Attack Module and their details.
-
The AVIT will get updated with the latest scan in which the vulnerability was identified.
-
The integration can be triggered manually or can be scheduled to execute periodically.
Rapid7 InsightAppSec Application VR Integration
V1.0.0
Functionality Implemented:
Bi-directional integration between InsightAppSec and ServiceNow Application Vulnerability Response (AVR) module.
Any existing vulnerabilities that are fixed or changed or newly introduced in Rapid7 InsightAppSec will be automatically updated or created in ServiceNow Application Vulnerability Response data model, respectively.
Users will have better user experience, prioritization, and risk details in one place in ServiceNow where users can assign the AVITs to a specific user/group and get it resolved.
-
Ability to Authenticate with Rapid7 InsightAppSec from ServiceNow Authentication of Rapid7 InsightAppSec platform with ServiceNow.
-
Ability to pull all Apps, Scans and Vulnerabilities into ServiceNow from Rapid7 InsightAppSec
-
Provide filtering for Vulnerability Ingestion - customize the filter to fetch vulnerabilities based on Apps, Scans, Severity, Status, First Discovered and Last Discovered.
- Ability to auto close AVIT in ServiceNow and also closing vulnerabilities on the Rapid7 Platform if they are closed from ServiceNow.
InsightAppSec License
ServiceNow Vulnerability Response- v22.1.3