Now Assist for Security Operations (SecOps) release notes

  • Release version: Store
  • Updated June 11, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Now Assist for Security Operations (SecOps) Release Notes

    Now Assist for Security Operations (SecOps) enhances your Security Incident Response capabilities by integrating generative AI features on the ServiceNow Platform. These updates empower SOC teams to streamline incident management through AI-generated insights, quality assessments, and recommended actions, improving operational efficiency and security outcomes.

    Show full answer Show less

    Key Features

    • Generative AI Skills and Agentic Workflows: Introduced product tiers offering AI skills and workflows that use generative AI to assist with incident resolution, analysis, and correlation insights.
    • Post-Incident Analysis Skill: Automatically generates detailed post-incident reports including root cause analysis, impact assessment, and recommendations, editable and savable within the Security Incident Response Workspace and legacy UI16.
    • Recommended Actions Skill: Provides AI-generated next steps for analysts to close incidents efficiently, with options to edit, save to worknotes, or create response tasks.
    • Quality Assessment Reports: Uses natural language rule-sets to create detailed quality assessment summaries for security incidents.
    • Correlation Insights: Enhanced AI-driven correlation of configuration items (CIs) with improved summarization respecting event chronology and weighting recent activity.
    • Role Masking and Security: Enabled role masking across agentic workflows to support secure and appropriate access control.
    • Performance Improvements and Bug Fixes: Various fixes including support for feedback submission by non-admin users, visibility corrections for features, and UI enhancements for correlation insights and workflows.

    Key Outcomes for ServiceNow Customers

    • Improved SOC productivity through AI-assisted incident analysis, recommendations, and workflow automation.
    • Enhanced quality and consistency of incident assessments with AI-generated reports based on predefined rules.
    • Greater flexibility and customization by allowing edits to AI-generated content and integration with existing incident management interfaces.
    • Stronger security and access control with role masking for AI-driven workflows.
    • Ongoing enhancements ensure compatibility with the latest ServiceNow platform versions and improved user experience.

    Version history for the Now Assist for Security Operations (SecOps) application on the ServiceNow Store.

    Important:
    For details on system requirements and family compatibility, view the application listing on the ServiceNow Store website.

    Version history

    Version 6.1.2 - June 2026
    • Fixed:
      • Submitting feedback on AI-generated recommended actions fails for non-admin users (e.g., analysts).
      • Correlation Insights - No output for certain CIs.
      • Generate Insights action visible even when Now Assist for Security Incident Response was not installed.
    • Changed:
      • Summarization skill enhancement to honor chronological order of events and to give more weightage to recent activity.
      • AI Gradient styling for Correlation Insights and Summarization.
    Version 6.0.1 - May 2026
    Changed: Removed install as a dependency check.
    Version 6.0.0 - April 2026
    New: Created product tiers to offer generative AI skills agents, agentic workflows, and features to help customers start with generative AI on the ServiceNow Platform.
    Version 4.3.5 - April 2026
    Fixed: Role masking Gap: Added generative AI request/response validators and preprocessor/postprocessor for the Correlation Insights feature.
    Version 4.3.1 - March 2026
    • New: Skill to evaluate natural language conditions.
    • Changed:
      • Security Incident Resolver v2 - AI Runbooks.
      • Extending security incident resolver agentic workflow capabilities.
    Version 4.2.1 - January 2026
    Fixed: Pre-run enabled tool fixed for the Shift Handover workflow.
    Version 4.1.5 - December 2025 (Zurich)
    • New:
      • Use generative AI to create a quality assessment report of a security incident. The reports are generated using a predefined, natural language rule-set. The quality assessment report provides an overall assessment summary followed by a detailed assessment for all the rules.
      • Provided support for all existing skills and agentic workflows with the new Now LLM LTS model.
      • Enabled Role Masking for all existing agentic workflows.
    • Changed:
      • All the skills under Now Assist for Security Incident Response are now turned ON by default.
      • Performance improvement for the Wrap Up Security Incident use case.
      • Improved Performance for Generating Correlation Insights.
    • Fixed: Bug fixes for Correlation Insights.
    Version 4.0.1 - November 2025
    Fixed: Change Requests were not getting displayed on the correlation insights modal
    Version 1.1.2 - November 2024
    • New:
      • Generate post-incident analysis skill:
        • Automatically generate a post-incident analysis for a security incident that includes a root cause analysis, impact assessment, and learning and recommendations information.
        • You have the option to edit and save generated analysis details.
        • Post-incident analysis is supported for security incidents in the Security Incident Response Workspace and in UI16 (legacy).
          • The generated post-incident analysis is saved in the Post incident analysis field on the Details tab and on the Overview tab on security incidents after you close them in the Security Incident Response Workspace.
          • InUI16 (legacy), the generated post-incident analysis is displayed on the Post Incident Review tab of the security incidents.
    • Generate security incident recommended actions skill:
      • Within the workflow and upon request, generate the next recommended steps your analysts can follow to help them close a security incident.
      • You have the option to edit and save recommended steps to worknotes or create a response task.
      • This skill is supported for security incidents in the Security Incident Response Workspace and in UI16 (legacy).
    Version 1.0.0 - August 2024
    Empower your SOC team with Generative AI capabilities for Security Incident Response.