How Falcon Shield helps secure ServiceNow

ServiceNow contains sensitive data and secures it through a series of system configurations. However, if the application isn’t configured correctly there is an increased risk of data exposure and malware insertion.

CrowdStrike Falcon® Shield automatically reviews each of the application’s security settings in ServiceNow, confirming that each is set correctly and alerting the team when settings change. With security checks on access control, data leakage protection, malware prevention, and more, you can count on Falcon Shield to prevent unauthorized access of your ServiceNow application.

Secure your platform

Secure your instance, protect data, and authenticate users:

  • Turn on Single Sign On, require basic authentication for SOAP, and disable passwordless authentication
  • Limit web service accounts to 10 failed login attempts
  • Limit file types that can be downloaded
  • Prevent expired CSRF tokens from identifying and validating incoming requests

Protect against data leakage

A misconfigured ServiceNow instance can increase risks of data leakage — take these steps to prevent that risk:

  • Require basic authentication before users can download Excel files, PDFs, and XML files
  • Disable ability to expose modules to public without a password
  • Disable access to attachments by unauthorized users

Prevent malware from entering ServiceNow

Confirm that files stored within ServiceNow are free from malware:

  • Set escape XML to false to prevent foreign scripts attacks
  • Restrict dangerous file extensions from being uploaded and downloaded into and out of ServiceNow
  • Enable usage of CSRF token to prevent cross-site forgery attacks

Secure mobile devices

Secure data appearing on mobile devices:

  • Enable mobile app blurring when the app is not in focus
  • Blur screenshots taken when the app is in the background