Ordr makes it easy to secure every connected device, from traditional IT devices to newer and more vulnerable IoT, IoMT, and OT.
The Vulnerability Response Integration with Ordr allows you to import vulnerabilities not only from the NVD, but also IoMT vulnerabilities related to FDA Recalls, OT/ICS vulnerabilities from ICS Advisories and zero-day vulnerabilities.
Organizations of all sizes trust Ordr as a single source of truth for vulnerability management. Ordr monitors and detects vulnerabilities for every single connected device, including agentless and unscannable devices. Ordr consolidates vulnerabilities from multiple feeds including publicly available vulnerability databases and leading scanners via integrations.
Additionally, Ordr makes prioritizing and addressing vulnerabilities easier by providing a comprehensive risk score for every device based on additional deep understanding of the device, its operating context, and traffic flows.
Ordr’s integration with ServiceNow Vulnerability Response provides comprehensive and continuous visibility into vulnerabilities effecting every connected asset. Organizations can automatically gather the complete range of vulnerabilities impacting all devices across the entire organization, prioritize remediation based on severity and business impact, and proactively reduce the attack surface.
- Import vulnerabilities and associate them to Medical, IoT, IoMT, and OT devices imported from Ordr via the Service Graph Connector
- Import vulnerabilities from sources like FDA Recall and ICS Advisories in addition to traditional NVD CVE vulnerabilities
- Track and remediate Ordr vulnerabilities using the Vulnerability Response application
- Easily get up and running in minutes using the guided setup
- Filter the vulnerability import by severity, device categories, and vulnerability categories so you have full control of what data from Ordr is imported into ServiceNow
- Configure the vulnerability import to run after the Service Graph Connector import so that "unmatched" CIs are minimized
- Enable or disable creation of "unmatched" CIs
- Optionally, push vulnerability state information from ServiceNow to Ordr to keep data in-sync and minimize swivel chair
- Optionally, automatically close detections that are stale and have not been seen in a configured number of days
- Designed with ServiceNow best practices using the ServiceNow Vulnerability Integration Framework
Version 1.0.02
This patch release adds additional cross-scope permissions to fix a bug regarding connections that use MID Server. The patch also adds an additional request header X-external-service with the value ServiceNow on outbound API requests sent to Ordr.
Version 1.0.01
This patch release adds a mapping to import the Ordr riskScore as the ServiceNow VR source_detection_score. The platform will then bubble the highest score up to the related Vulnerable Item record, allowing the Vulnerable Item risk score to be influenced by Ordr's knowledge of the device and its context.
Version 1.0.0
This is the initial release of the integration, and it includes the following functionality:
- Import vulnerabilities and associate them to Medical, IoT, IoMT, and OT devices imported from Ordr via the Service Graph Connector
- Track and remediate Ordr vulnerabilities using ServiceNow Vulnerability Response
- Easily get up and running in minutes using the guided setup
- Filter the vulnerability import by severity, device categories, and vulnerability categories so you have full control of what data from Ordr is imported into ServiceNow
- Configure the vulnerability import to run after the Service Graph Connector import so that "unmatched" CIs are minimized
- Enable or disable creation of "unmatched" CIs
- Optionally, enable bi-directional integration to push vulnerability state information from ServiceNow to Ordr to keep data in-sync and minimize swivel chair
- Optionally, automatically close detections that are stale and have not been seen in a configured number of days
- Designed with ServiceNow best practices using the ServiceNow Vulnerability Integration Framework
The following applications / plugins are required as prerequisite:
- ServiceNow Vulnerability Response
- Service Graph Connector for Ordr
- Vulnerability Response Integration with NVD
- CMDB CI Class Models
- Data Lookup and Record Matching Support
- System Import Sets