ServiceNow Security Operations Overview

ServiceNow Security Operations is the #6 ranked solution in our list of SOAR tools. It is most often compared to Splunk Phantom: ServiceNow Security Operations vs Splunk Phantom

What is ServiceNow Security Operations?

ServiceNow Security Operations is an Enterprise Security Response engine offering security incident response, vulnerability response, and threat intelligence. It’s built on the intelligent workflows, automation, orchestration, and deep connection with IT of the ServiceNow platform.

Buyer's Guide

Download the Security Orchestration Automation and Response (SOAR) Buyer's Guide including reviews and more. Updated: June 2021

ServiceNow Security Operations Customers

DXC Technology, Freedom Security Alliance, Prime Therapeutics, Seton Hall University, York Risk Services

ServiceNow Security Operations Video

Pricing Advice

What users are saying about ServiceNow Security Operations pricing:
  • "This product is a good value for the money."

Filter Reviews

Filter by:
Filter Reviews
Filter Unavailable
Company Size
Filter Unavailable
Job Level
Filter Unavailable
Filter Unavailable
Filter Unavailable
Order by:
  • Date
  • Highest Rating
  • Lowest Rating
  • Review Length
Showingreviews based on the current filters. Reset all filters
Raj Bartakke
Director Customer Success and ServiceNow Practice Lead at CoreSphere, LLC
Real User
Top 10
SN SecOps offers a great set of features to better ingest information from Detection, SIEM, Vulnerability, and Threat Intelligent apps to better manage SecOps and ITSM.

What is our primary use case?

We are contracted by a federal organization to lead an engagement to integrate their existing Vulnerability scanner with ServiceNow SecOps Vulnerability Response with their existing ServiceNow ITSM solution. The use case is to manage scan results from Tenable and help this organization better manage how these vulnerabilities are grouped, prioritized, assigned, processed, monitored and remediated. Integration with the existing Request, Incident, Change and Configuration Management processes are key. Once a vulnerability is remediated, it needs to be confirmed via rescan and closed. This process… more »

Pros and Cons

    • "They should stick to the roadmap and continue to build plugins and integrations with other third parties, enhance the UI, and enhance the reporting. It's all good. They should just continue enhancing the releases."

    What other advice do I have?

    My advice would be that you have to be ready for the cultural change. ServiceNow offers organizations a great opportunity to transform the way they do things and break down silos for customers, employees, partners, and others. Organizations implementing ServiceNow should invest in training their teams and seeking certifications. We provide knowledge transfer when we implement ServiceNow, but if organizations want to take over O&M, they need to ensure they have qualified, experienced administrators and developers. I would rate ServiceNow a nine and a half out of ten.
    Prem Raj
    Technical Consultant / IT Architect at Alpha Data
    Top 5
    Available over the cloud, doesn't require much physical infrastructure and easy to manage

    Pros and Cons

    • "The solution is available over the cloud and is easy to manage."
    • "The solution needs to make customization easier. You cannot do much customization immediately. It requires an extensive workload. If the customization process was user-friendly, it would be much better."

    What other advice do I have?

    We use the on-premises deployment model. I'd rate the solution nine out of ten. It would help to offer global infrastructure monitoring. It doesn't give much visibility on the satellite or other infrastructure monitoring such as monitoring of servers, and applications, etc.
    Find out what your peers are saying about ServiceNow, Splunk, Palo Alto Networks and others in Security Orchestration Automation and Response (SOAR). Updated: June 2021.
    512,711 professionals have used our research since 2012.
    Sr Manager - Delivery Head (ANZ & South Africa) at a computer software company with 1,001-5,000 employees
    Top 10
    Powerful application vulnerability scanner, good support, and good value for the money

    What is our primary use case?

    We are a solution provider and ServiceNow is one of the products that we implement for our clients. Of the different ServiceNow modules, we are familiar with several, including Security Operations. ServiceNow integrates with the helpdesk and our clients use it to manage their tickets. It is also used to keep track of security incidents and run periodic scans.  

    What is most valuable?

    My favorite feature is the application vulnerability scanner.

    What needs improvement?

    The threat intelligence module needs a better dashboard. Having a single, unified dashboard that gives me a 360-degree view of all of the modules would be very useful.

    What do I think about the stability of the solution?

    I have not noticed any issues with stability.

    What do I

    Buyer's Guide
    Download our free Security Orchestration Automation and Response (SOAR) Report and find out what your peers are saying about ServiceNow, Splunk, Palo Alto Networks, and more!