Actionable Insights for External AI Integrations...
There is considerable excitement surrounding the release of ServiceNow GenAI, which now allows organizations to seamlessly integrate ServiceNow instances with large language...
Read MoreThirdera generates transformation, digitization, and automation for our customers at the speed of NOW.
We help organizations adopt better patterns of work and get more from ServiceNow. Our team unlocks enterprise potential to elevate experiences across the world of work.
We help organizations adopt better patterns of work and get more from ServiceNow. Our team unlocks enterprise potential to elevate experiences across the world of work.
Exciting news! Thirdera and Cognizant Awarded Three ServiceNow Partner Specializations
Read moreInsurance Provider Projects $75MM Gain in Business Value from Asset Management Transformation
Read moreGovernment Agency INDOT Modernizes Its Constituent Service Model with CitizenKey
Read moreBalancing mission-driven goals with operational efficiency requires innovative solutions that can streamline processes, and enhance program delivery without straining budgets.
UN Agencies Rely on Thirdera and ServiceNow to Support the Ukrainian Aid Response
Read moreDigitize and automate workflows to enhance the customer experience, online and in-store.
Global SAP on Cloud Leader, Lemongrass, Embarks on Multi-Continent ITSM Overhaul
Read moreStay up to date with the insights from ServiceNow experts and explore our blogs, news, case studies culture posts, partner updates and more.
Stay up to date with the insights from ServiceNow experts and explore our blogs, news, case studies culture posts, partner updates and more.
CISA Directive 23-01 was issued October 2022 by the Cybersecurity and Infrastructure Security Agency (CISA). The directive is aimed at ensuring the security of federal systems and networks by requiring continuous and comprehensive asset visibility and vulnerability tracking. Qualifying and complying measures that satisfy the directive requirements must be implemented by April 3, 2023. This directive is limited to federal agencies only; yet, CISA has urged private sector organizations and state governments to review and implement similar measures.
In summary, the directive requires federal agencies to:
(the above bullets are direct quotes from the official CISA website)
To satisfy these requirements, federal agencies may need to implement a variety of tools and processes depending on their current environment. Some examples of tools used are: Systems Center Configuration Manager (SCCM), Qualys, Rapid7, Tenable, Intune, SolarWinds, AWS Security Center, and other infrastructure and cloud monitoring tools.
One of the key challenges that agencies will face in complying with the directive is the manual effort involved in tracking data and then aggregating that data across these tools. The data is often not centralized, requiring manual exports and data manipulation to get a full inventory and listing of vulnerabilities and assets. The part of the directive that magnifies the importance of compliance is that agencies are required to supply this information to CISA within 72 hours of a request. This makes having data quickly accessible in a central location critical for not only compliance purposes but also for improving security posture.
Fortunately, ServiceNow is a uniquely positioned solution that can centralize all the data and tools required for this directive. Using the ITOM and Vulnerability Response applications, agencies can seamlessly aggregate data from their asset tracking and vulnerability tools into ServiceNow to make reporting easier and vulnerability remediation more efficient.
With thousands of ServiceNow implementations completed with adherence to best practices, Thirdera has successfully helped a multitude of public and private sector customers leverage ServiceNow to manage regulations and security operations. Thirdera customers that have implemented Vulnerability Response typically see a reduction of 40+ hours/week of aggregating and assigning vulnerabilities. By leveraging ITOM Discovery, Service Mapping, and the CMDB, agencies can further improve visibility into their environment and prioritize asset tracking and vulnerability remediation automatically. In addition to the improvements to vulnerability resolution, Thirdera customers that maintain a healthy and service-aware CMDB typically see 82% fewer failed changes and 38% faster incident resolution. As you can see, Thirdera can help you turn a single objective of compliance into a bounty of tangible outcomes.
If you’re a federal agency, CISA Directive 23-01 is not something that can be circumvented. Thirdera can guide you on leveraging the ServiceNow platform to not only comply but improve the efficiency of your cyber security program. If you have any questions about the directive requirements or concerns about potential impact, we are here to help!
There is considerable excitement surrounding the release of ServiceNow GenAI, which now allows organizations to seamlessly integrate ServiceNow instances with large language...
Read MoreThe retail industry has always been dynamic, but today’s landscape demands a level of operational agility and customer-centric innovation that few sectors experience. ServiceNow...
Read MoreThirdera, a Cognizant company is on a mission to be the world's most trusted and capable ServiceNow partner, delivering maximum value to our customers through deep technical...
Read MoreIn recent years, the banking, financial services, and insurance (BFSI) industry has faced an immense wave of change. Customer expectations are evolving fast, regulations are...
Read More