Service Graph Connectors for Security Posture Control
Summarize
Summary of Service Graph Connectors for Security Posture Control
Service Graph Connectors (SGCs) are essential for Security Posture Control, providing API integrations that enable the identification of security gaps through comprehensive asset data. These connectors are available in the ServiceNow Store and can be downloaded and activated based on your needs.
Show less
Key Features
- Wide variety of data sources including Digital Employee Experience, IT Asset Management, and more.
- Support for various management categories such as Endpoint Management (Microsoft Intune or Jamf), Configuration and Patch Management (Microsoft SCCM or IBM Bigfix), and Vulnerability Assessment (Qualys, Rapid7, or Tenable).
- Integration with major cloud providers like Amazon AWS, Microsoft Azure, and GCP.
- Compatibility with ServiceNow products, including Software Asset Management (SAM) and Hardware Asset Management (HAM).
- Ability to view connectors and their categories through dedicated tables in your instance.
Key Outcomes
By leveraging Service Graph Connectors, you can effectively identify discrepancies between installed software reported by vulnerability scanners and those accounted for in SAM. This helps enhance your overall security posture by ensuring accurate asset management and vulnerability assessment. For detailed guidance on downloading and configuring the connectors, refer to the relevant ServiceNow documentation.
Security Posture Control relies on API integrations or Service Graph Connectors as a key source for the asset data used to identify security gaps.
Security Posture Control currently supports service graph connectors (SGC)s that can provide you with a wide variety of data about your assets. These integration applications are available from the ServiceNow Store.
Choose the connectors you want to use and download the applications and activate them. The list of supported connectors in the Store will grow as Security Posture Control supports more connectors.
To take full advantage of Security Posture Control features, you might want to download and activate the following Service Graph Connector products to support the categories listed below.
Service graph connectors supported by Security Posture Control currently include the following categories:
- Digital Employee Experience
- Discovery
- Endpoint Management: Microsoft Intune or Jamf Device and Endpoint Management.
- IT Asset Management
- Infrastructure Monitoring
- Networking
- Network Security
- Network Performance Monitoring
- Configuration and Patch Management: Microsoft SCCM or IBM Bigfix.
- Endpoint Protection: CrowdStrike or SentinelOne.
- Cloud Provider: Amazon AWS Cloud, Microsoft Azure, GCP. Note:If Cloud Discovery is activated, these service graph connector products are not required.
- Application Performance Monitoring
- Directory Services (Active Directory) Microsoft Active Directory
- Vulnerability Assessment: Qualys, Rapid7, or Tenable.
After you install them, you can view the connectors and their categories on the connector table [sn_sec_spc_core_connector] in your instance.
You can view Asset types and how they map to CI classes and Connectors on the [sn_sec_spc_core_asset_type_connector] table.
See Supported hardware service graph connectors for Security Posture Control and Supported software service graph connectors for Security Posture Control for more information and examples of these tables. Although not extensive lists, you can see how the supported connectors provide a wide variety of data.
Security Posture Control supports ServiceNow products such as Software Asset Management (SAM) and Hardware Asset Management (HAM) that you can use along with service graph connectors to help you to look for any discrepancies that exist between the installed software reported by your vulnerability scanner products and the software reported by scanners that is already accounted for in SAM and other ServiceNow products.