1. Knowledge Base
  2. Utilizing Unified VRM

Rule Based Ticketing in Unified VRM: General Process Information


It is possible to set up automatic rule based ticketing in Unified VRM. The general approach is to:

  1. Determine search parameters
  2. Determine selection (i.e. how many rows of vulnerabilities / assets you want pushed to your ITSM)
  3. Determine scheduling by notifying your assigned NopSec CSE of when you want this rule to execute


  • A working SNOW integration


Example Approach

The following is an example customer's search parameters, selection, and scheduling:


Process #1

General Notes

  • Process #1's filter view is by vulnerability:
  • Process #1 would ultimately create one single ticket for the remediation of the "Windows Speculative..." vulnerability across 23 assets

Process #1: 2 Tickets a week for URGENT vulnerabilities

  1. Every Monday and Wednesday, 00:00
  2. Filter: vulnerability-grade:URGENT ticketed:false risk-accepted:false false-positive:false status:OPEN
  3. Order by: Total Assets, Descending
  4. Create a ticket out of only the first rowScreen_Shot_2021-06-25_at_5.30.49_PM.png

Asset Ownership:

Assets can be assigned owners by:

  1. Going to the Asset Groups Module and downloading the asset groupScreen_Shot_2021-06-25_at_5.32.38_PM__2_.png
  2. Changing the owner column accordingly in the .csvScreen_Shot_2021-06-25_at_5.34.31_PM__2_.png
  3. Uploading the .csv to INTEGRATE -> ASSETS -> ASSET VALUE UPLOAD



Asset owner information can be configured such that it is automatically assigned to the ITSM ticketing system's assignee field. An alternative option is to carry asset information to the ITSM and use the ITSM's asset ownership rules.





If a change is desired to existent rules, please notify your NopSec CSE.