Exploring Now Assist for Vulnerability Response
Get information about how your vulnerability managers, analysts, and cybersecurity teams can use Now Assist skills and AI agents with Now Assist for Vulnerability Response.
Now Assist for Vulnerability Response overview
With Now Assist skills provided with the Now Assist for Vulnerability Response application, use generative AI to help you with the following tasks:
- Security Exposure Management (SEM) Important Insights
- Surface AI-generated, high-impact insights directly in the SEM Findings view to help teams quickly prioritize remediation and notify affected groups.
- Natural language data queries
- Ask questions in natural language to retrieve vulnerability and exposure data across legacy systems and Security Exposure Management.
- Agentic AI exposure assessment
- Assess exposure to known and CISA-listed vulnerabilities, identify affected assets, understand business impact, and create watch topics.
- Smarter remediation guidance
- Compare remediation options that are based on asset context and receive AI-recommended fixes to accelerate execution.
- Remediation and SLA visibility
- Monitor remediation progress, SLA compliance, and missed targets by severity, team, and asset type.
- Exception approvals with impact analysis
- Approve or reject exception change requests with on-demand analysis of risk and business impact.
- Create custom API connectors (Security Posture Control)
- Create your own API connectors in the Security Posture Control workspace with the Connector builder framework module. Note: Security Posture Control and its supported applications are required for this generative AI feature.
Now Assist for Vulnerability Response users
| User | Description |
|---|---|
| Vulnerability managers, vulnerability admins, and analysts | Chat with an AI agent using natural language to retrieve host (Vulnerability Response) and Application Vulnerability Response (AVR) data in the Unified Security Exposure Management (USEM) and legacy Vulnerability Response workspaces. |
| Vulnerability managers and analysts | Determine your exposure to vulnerabilities in your environment and their potential impact to your configuration items (CIs) and business services. |
| Vulnerability managers and analysts | Get insights into how well you're achieving your remediation targets for vulnerabilities according to your Service Level Agreements (SLAs). |
| Vulnerability managers and analysts | Provide steps for analysts to remediate vulnerable items (VITs) that are assigned to them with watch topics and remediation efforts. |
| Vulnerability managers and analysts | Get clear remediation assistance for how to resolve remediation tasks that includes potential, preferred solutions, if they are available. |
| Vulnerability managers and analysts | Identify and review duplicate vulnerable items that are imported by your vulnerability scanners. Identify the primary vulnerable item that is associated with a configuration item. |
| Vulnerability managers and analysts | Generate insights to prioritize findings that are based on contextual summaries, actionable recommendations, and quick links in the Security Exposure Management (SEM) workspace. |
| Vulnerability managers and analysts | Get on-demand recommendations to approve or reject exception requests directly from the Exception Change Approval record in the Security Exposure Management (SEM) workspace. |
| Developers and cybersecurity teams | Get guidance for how to accelerate the creation of custom API connectors for the Security Posture Control workspace. |
Now Assist for Vulnerability Response benefits
| Benefit | Feature | Users |
|---|---|---|
| Ask questions in natural language to help you quickly retrieve vulnerability and exposure data across legacy sources and Unified Security Exposure Management (USEM). | Retrieve VR data | Vulnerability (host) and Application Vulnerability Response (AVR) managers, admins, and analysts |
| Understand your security posture with AI-generated contextual summaries, recommendations, and insights to help you prioritize critical findings and take action directly from the findings view. | SEM Insights skill | Vulnerability managers, admins, and analysts |
| Enable exception and false positive approvers to make faster, more consistent decisions while reducing manual analysis effort. | Approval Recommendation skill | Vulnerability managers, admins, and analysts |
| Get guidance for how to accelerate the creation of custom API connectors for the Security Posture Control workspace. | SPC Setup Connector skill | Developers and cybersecurity teams |
| Identify the primary (first-found) vulnerable item for a configuration item and remove duplicate Host Vulnerable items (VITs). | Vulnerable item deduplication skill | Vulnerability managers and analysts |
| Get guidance for how to resolve remediation tasks that includes available potential, preferred solutions from third-party vendors. | Recommend preferred solution for VIT skill | Vulnerability managers and analysts |
|
Assess vulnerability exposure agentic workflow | Vulnerability managers and analysts |
| Gain insight into the progress of your Service Level Agreement (SLA) compliance summary for the past 30 days. View Groups and Asset Types that missed SLAs to help you track and adjust targets. | Analyze vulnerability remediation status agentic workflow | Vulnerability managers and analysts |
| Retrieve relevant context and details for the vulnerable items assigned to you. Analyze, plan, and create steps for remediation. | Steps for issue resolution | Vulnerability analysts |
What to explore next
To learn more about configuring and using Now Assist for Vulnerability Response, see: