# ServiceNow ITSM ## Overview The Keeper Security ITSM application provides a secure and streamlined integration between Keeper Security Alerts and ServiceNow’s Security Incident Response (SIR) module. It enables enterprise customers to centrally manage and respond to Keeper-generated security alerts by automating their intake, transformation, and creation as Security Incident tickets within ServiceNow. This integration helps security teams maintain visibility, improve response times, and ensure that Keeper Security alerts are managed consistently within existing ServiceNow SIR workflows. ServiceNow Store Listing: ## Features * Receive Keeper Security alerts and incidents through a protected webhook endpoint, ensuring that only authorized sources can submit data to the platform. * Protect the webhook endpoint with OAuth 2.0, enabling secure, token-based access for external systems. * Allows administrators to generate and manage bearer tokens directly within the application for seamless integration with Keeper Security alert module. * Guided Setup to configure authentication, validate data ingestion, and ensure smooth end-to-end operation without manual coding. * Store incoming alerts in a custom import set table and automatically transform them into Security Incident Response (SIR) records using predefined mapping rules. * Provides custom priority mapping for Keeper Security alert types enabling SIR administrators to work on incidents on priority basis. ## Setup and Configuration Full Setup and Configuration is documented below: {% content-ref url="/spaces/-MJXOXEifAmpyvNVL1to/pages/2kmbyDNWvMuqHE1nD8cf" %} [ServiceNow ITSM](/en/keeperpam/secrets-manager/integrations/servicenow-itsm.md) {% endcontent-ref %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.keeper.io/en/enterprise-guide/event-reporting/servicenow-itsm.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.