ServiceNow ITSM

Overview

The Keeper Security ITSM application provides a secure and streamlined integration between Keeper Security Alerts and ServiceNow’s Security Incident Response (SIR) module. It enables enterprise customers to centrally manage and respond to Keeper-generated security alerts by automating their intake, transformation, and creation as Security Incident tickets within ServiceNow.

This integration helps security teams maintain visibility, improve response times, and ensure that Keeper Security alerts are managed consistently within existing ServiceNow SIR workflows.

ServiceNow Store Listing:

https://store.servicenow.com/store/app/e26cda5893a97a90a0f2fc1d6cba105a

Features

• Receive Keeper Security alerts and incidents through a protected webhook endpoint, ensuring that only authorized sources can submit data to the platform.

• Protect the webhook endpoint with OAuth 2.0, enabling secure, token-based access for external systems.

• Allows administrators to generate and manage bearer tokens directly within the application for seamless integration with Keeper Security alert module.

• Guided Setup to configure authentication, validate data ingestion, and ensure smooth end-to-end operation without manual coding.

• Store incoming alerts in a custom import set table and automatically transform them into Security Incident Response (SIR) records using predefined mapping rules.

• Provides custom priority mapping for Keeper Security alert types enabling SIR administrators to work on incidents on priority basis.

Setup and Configuration

Full Setup and Configuration is documented below: