Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Create Lookup Request for IoC Changes workflow

Create Lookup Request for IoC Changes workflow

The Security Incident Response - Create Lookup Request for IoC Changes workflow is triggered by a business rule to run automatically when an IoC is added or changed. Malware scans are triggered only when new data is entered and only the new data is scanned.

Before you begin

Role required: sn_si.basic

About this task

If the IoC is empty, the workflow does not run. Historical scans are retained and viewable in the Security Scan Requests tab and work notes of the security incident.

Existing security incidents are automatically updated.

Workflow process activities include:
Security Incident Response - Create Lookup Request for IoC Changes workflow diagram