ServiceNow Delivers New Security Integrations with Microsoft to Help Organizations Stay Protected and Resilient in the Hybrid Era of Work - Seite 2
“In an increasingly hostile world, the only real competition is the bad actors and nation state adversaries,” said Eric Doerr, VP Cloud Security at Microsoft Corp. “Our integrations with Microsoft Security Solutions and ServiceNow Security Operations products enables customers to gain system-wide visibility, automate security workflows, and respond rapidly to incidents to build a safer and more secure world for all.”
Making smarter decisions across security planning, management, and incident response
As organizations settle into hybrid work, they can save millions of dollars with fully deployed and automated security solutions. For example, one healthcare organization with experience using ServiceNow Security Operations experienced a three-year benefit of $2.4 million 2. Integrating Microsoft Azure Sentinel with ServiceNow Security Incident Response (SIR) puts this into practice by facilitating automated knowledge and evidence sharing to catch security incidents early and prevent them from impacting customers.
The entire process across investigation, management, and response is simplified by deploying central platforms for detection and response, reducing the burden on the security operations teams, and potential errors by automating and orchestrating end-to-end incident response workflows. This approach provides critical information and context through an enhanced view of an organization’s security posture for security operations teams to accelerate investigation of security threats and reduce overall response times.
“With COVID accelerating movement to the cloud, we’ve seen Microsoft Azure Sentinel take off with customers in all industries who need a cloud-native SIEM to enable their remote workforce while improving their security posture,” said Brian Rizman, Partner - Risk and Security Practice, Edgile. “Our customers see ServiceNow Security Incident Response as a strategic platform that enables a scalable data and workflow bridge to security, risk and IT tools. As a longtime partner of both Microsoft and ServiceNow, we see better operational resiliency and greater cost savings when these two worlds are integrated.”
Other ServiceNow Security Operations integrations with Microsoft announced today include:
- Microsoft Teams integration with Major Security Incident Management (a feature of ServiceNow Security Incident Response) that streamlines and improves collaboration on critical security incidents through automated setup of dedicated Teams channels and sharing of collaboration and chat activities to the major security incident case record to maintain transparency of communications.
- SharePoint integration with Major Security Incident Management (a feature of ServiceNow Security Incident Response) centralizes the evidence gathered by teams during critical security incidents by automating the creation of SharePoint folder structures. The artefacts created by the different incident response groups are consolidated for visibility in the major security incident case record.
- Microsoft Threat & Vulnerability Management integration with ServiceNow Vulnerability Response takes in asset information, vulnerabilities, and recommendations by prioritizing vulnerabilities using asset and business context and driving remediation workflows. Remediation owners are able to action the highest risk items using pre-populated solution details to improve the security posture of an organization.
General availability of Azure Sentinel and Microsoft Threat & Vulnerability Management integrations is expected starting June 2021. Limited availability of Microsoft Teams and SharePoint integrations is expected in June 2021, with general availability planned later in the year.