SecurityScorecard and ServiceNow Expand Partnership with New Capabilities for TPRM and Security Incident Response (SIR)

ServiceNow and SecurityScorecard have been longtime strategic partners, helping mutual customers measure and manage cyber risk. Today we’re highlighting the next phase of our partnership and innovation to help customers tackle the complex challenges associated with managing cyber risk in the third party ecosystem. Organizations struggle with prioritization, resource constraints, and the need to act quickly when responding to threats. We’re excited to share with you how ServiceNow and SecurityScorecard are powering the intelligent workflow automation needed to address these gaps and drive improvements throughout supply chain cyber risk management. 

Today, we’re announcing two important updates that will soon be going live.

ServiceNow Security and Incident Response (SIR) Module

We are excited to support the ServiceNow Security and Incident Response (SIR) module which extends the capability of ITSM to support security specific workflows. With this module, users can:

• Automatically create ServiceNow Security Incident tickets for any changes in overall and/or factor level scores, as well as new issues added to your scorecard
• Get the detailed information needed to resolve and remediate new findings on your scorecard directly in ServiceNow SIR
• Monitor your company’s scorecard automatically on a daily basis with no manual effort required, as well as receive a breakdown of all active issues
• Customize the type of Security Incident tickets created, enabling you to focus on the security events you consider critical for your organization
• Leverage the no-code Security Incident Creation process using ServiceNowFlow Designer

ServiceNow TPRM Module

SecurityScorecard breach incident response data is now integrated into the ServiceNow TPRM module. WIth this data, security teams gain visibility into breach events and can automate alerts and workflows in the platform when critical incidents happen in their supplier ecosystem — accelerating the time to response.

• Automatically receive breach incident information to ServiceNow for all companies you monitor in Securityscorecard.
• Get details on the breaches for your vendors across your supply chain including the disclosure date, source and type of breach to help you assess business impact.
• Create workflows with ServiceNow Flow Designer and issue automated breach assessments to vendors across your supply chain allowing you act fast to mitigate risk.
• Report on active and historical breach risk across your supply chain.

SecurityScorecard’s goal is to continue to pioneer and lead the Supply Chain Cyber Risk Management category. With over 98% of organizations doing business with a third party who has suffered a breach in the last two years, the time is now to bridge the Security Operations and Third Party Cyber Risk Management functions. It’s no longer just your attack surface. It’s your attack surface, PLUS the attack surface of your suppliers.

These updates are an important step to allow our customers to leverage the powerful tools that ServiceNow offers for stakeholders in Security Operations and Third Party Cyber Risk Management. 

How to Learn More

To learn more, please visit the ServiceNow App Store to download and leverage these enhanced integrations. 

• SecurityScorecard TPRM app
• SecurityScorecard ITSM with SIR app