The Security Incident command, snsecincident, creates a Security
Incident in your ServiceNow instance.
||A short, one line description of the incident.
||The category of the security incident. If this category does not exist, it is
||The subcategory. If this subcategory does not exist, it is created.
||The configuration item for the security incident. Ideally, this item maps to an
existing CI within ServiceNow.
||The longer, detailed description of the incident.
There are many possible useful columns – anything in the Security Incident transform map can be
used. If new columns are added to the security incident, they too are used, as long as they are
in the transform map. Some useful columns: location, priority, assignment_group, assigned_to,
affected_user, attack_vector, and watch_list.