Use cases, policy examples, and supported service graph connectors in Security Posture Control

  • Release version: Yokohama
  • Updated July 31, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Use cases, policy examples, and supported service graph connectors in Security Posture Control

    The Security Posture Control application in the Yokohama release helps ServiceNow customers identify tool coverage gaps and potential security violations across their assets. It supports various predefined use cases, each requiring specific policies to audit assets for compliance and security risks. Customers can also create custom policies tailored to their internal security standards.

    Show full answer Show less

    Use Cases and Policies

    • Use cases target scenarios such as tool coverage gaps, internet exposure of cloud assets, and vulnerability combinations.
    • Preconfigured policies for these use cases come included with the product and can be activated to start monitoring.
    • The Home page in the Security Posture Control Workspace provides visibility into coverage status for key use cases.
    • Additional use cases and service graph connectors can be accessed via the Connectors and use cases setup module.
    • Before activating policies, customers must ensure all prerequisite applications are installed and configured, including Vulnerability Response and Cloud Account Scan for AWS and Azure.
    • Policies can be base, child, or cloned, allowing reusable conditions and streamlined policy management through the Policies and findings module.

    Supported Service Graph Connectors

    • Security Posture Control supports a range of hardware and software service graph connectors that import various data types.
    • Connectors fall into categories required for initial insights and optional connectors for enhanced asset coverage.
    • Activating appropriate connectors is essential to gain comprehensive visibility into asset security posture.
    • Tables detailing supported connectors and their capabilities are available within the product documentation for reference.

    Practical Guidance

    • Verify installation and configuration of all required applications before use case activation.
    • Activate relevant service graph connectors and Vulnerability Response application to enable full data collection and analysis.
    • Use predefined policies to quickly start monitoring or create custom policies to meet internal security requirements.
    • Regularly review coverage status on the Home page to identify and address security gaps.

    Use cases are different scenarios that you configure to help you identify specific types of tool coverage gaps. Each use case requires a policy or policies to audit your assets for potential violations. You can also define your own policies to help you fulfill requirements for your specific internal security standards.

    Use cases

    The Security Posture Control application supports various use cases that are included with the application. Use cases help you identify specific types of tool coverage gaps in your assets, internet exposure of cloud assets, and combinations with vulnerabilities. The policies that you need for the supported use cases are also included with the product.

    You can view the coverage status for some of the key use cases on the Home (landing) page in the Security Posture Control Workspace at Workspaces > Security Posture Control > Home on the Home module (landing page).

    Alternatively, you can view the supported service graph connectors and coverage status for some of the key use cases on the 'Service graph connectors supported' and 'Key use case setup' tabs at All > Workspaces > Security Posture Control > Connectors and use cases setup (the gear icon).

    Note:

    The Key use cases tab on the Home landing pages does not list all the possible use cases. It provides you with a few important use cases that you activate to help you get started with Security Posture Control product deployment.

    Before you activate policies for the supported use cases provided with the application verify you have completed the following tasks.

    1. You are currently using or you install and activate service graph connectors for various categories.

      Categories for the use cases include service graph connectors that you must activate to get initial insights, and  service graph connectors that you have the option to activate for improved coverage for the assets Security Posture Control  is monitoring.

    2. You are currently using or you install and activate the Vulnerability Response application.
    3. You are currently using or you configure the Cloud Account Scan for your AWS and Azure accounts under ‘Cloud Security Posture Management’.

    Specific requirements for each supported use case are described in the following sections. Additionally, you must activate one or more of the policies shipped with Security Posture Control for a use case. This concept is also covered in the following sections.

    Examples of base, child, and cloned policies

    See Examples of base, child, and cloned policies for Security Posture Control and how you can reuse the conditions of a base policy when you create other policies. Create base, child policies and cloning existing policies in these examples. These examples also help you see how the policy builder works in the Policies and findings module.

    Supported service graph connectors

    See tables of supported service graph connectors, their tool categories, and the types of data they import in Supported hardware service graph connectors for Security Posture Control and Supported software service graph connectors for Security Posture Control.