ServiceNow Security Operations Reviews

Name: ServiceNow Security Operations
Brand: ServiceNow
Rating: 4.0 (21 reviews)

4.0 out of 5

21 reviews
95% willing to recommend

What is ServiceNow Security Operations?

ServiceNow Security Operations is a cutting-edge security solution designed to elevate organizations' security incident response (SIR) processes through automation and orchestration. Going beyond traditional SOAR, this comprehensive Security Operations Suite integrates seamlessly with other ServiceNow products and offers a wide array of features. Its components include Security Incident Response (SIR), which automates incident workflows and offers pre-built playbooks; Security Configuration Compliance (SCC), continuously scanning and automating compliance tasks; Vulnerability Response (VR), prioritizing and remediating vulnerabilities; Threat Intelligence (TI), aggregating threat data for proactive threat hunting; and additional features like IT Service Management integration, Machine Learning and AI, reporting, and a mobile app. The benefits span improved incident response speed, reduced mean time to resolution, increased security posture, enhanced compliance, collaborative synergy between security and IT teams, and operational cost reductions.

Get the ServiceNow Security Operations Buyer's Guide and find out what your peers are saying about ServiceNow Security Operations, Microsoft Sentinel, IBM Security QRadar and more!

ServiceNow Security Operations is the #1 ranked solution in top Security Incident Response solutions, #5 ranked solution in SOAR tools, and #10 ranked solution in top Risk-Based Vulnerability Management solutions. PeerSpot users give ServiceNow Security Operations an average rating of 8.0 out of 10. ServiceNow Security Operations is most commonly compared to Microsoft Sentinel: ServiceNow Security Operations vs Microsoft Sentinel. ServiceNow Security Operations is popular among the large enterprise segment, accounting for 68% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a financial services firm, accounting for 20% of all views.

Buyer's Guide

ServiceNow Security Operations

July 2025

Get the report

Helped 864,248 peers since 2012

Featured ServiceNow Security Operations reviews

KishoreKumar4

Senior QE Lead at Cognizant

If we encounter challenges while deploying, we raise incidents. These incidents are categorized by priority: high, medium, and low. We assign an incident number and notify the relevant teams to address the issue. For instance, if we experience a problem with Cloud services or any other issue, we…

Read full review

George Devasia

DevOps Team Lead at Tata Consultancy

I use ServiceNow for ticketing purposes. Specifically, I raise tickets between the support team. This is used by internal teams within the company for managing support-related tasks ServiceNow is a convenient platform to raise tickets, and the respective support team will contact us to resolve…

Read full review

Shaik_Ahmed

Integrator at Conduent (formerly Xerox Services)

The solution can be setup very easily using the available documentation around ServiceNow Security Operations. In some cases, professionals have faced challenges in integrating the product with other tools. I would rate the initial setup a seven out of ten. The deployment duration depends on multiple factors, but in my experience, it takes around three to four weeks. The deployment can be completed in two days as well based on the dependencies, but in our company, we faced some issues so it took us longer for the complete deployment of ServiceNow Security Operations. Our company faced minor issues with the firewalls that needed to be opened in various modules.

Read full review

ServiceNow Security Operations mindshare

Product category:

As of August 2025, the mindshare of ServiceNow Security Operations in the Security Incident Response category stands at 14.6%, down from 14.9% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Security Incident Response

PeerResearch reports based on ServiceNow Security Operations reviews

Type	Title	Date
Category	Security Incident Response	Aug 4, 2025	Download
Product	Reviews, tips, and advice from real users	Aug 4, 2025	Download
Comparison	ServiceNow Security Operations vs VMware Carbon Black Endpoint	Aug 4, 2025	Download
Comparison	ServiceNow Security Operations vs Proofpoint Threat Response	Aug 4, 2025	Download
Comparison	ServiceNow Security Operations vs IBM Resilient	Aug 4, 2025	Download

Title	Rating	Mindshare	Recommending
Microsoft Sentinel	4.1	N/A	93%	97 interviews Add to research
IBM Security QRadar	4.0	N/A	91%	209 interviews Add to research

Valuable Features

ServiceNow Security Operations offers integration with security tools, cloud availability, and application vulnerability scanning. It supports incremental implementation phases and automates workflows, providing seamless ITSM integration. Users appreciate its hybrid deployment options, user-friendly UI, and customizable workflows. They value vulnerability response capabilities, low-cost, no-code workflow design, and SOAR module management. The platform excels in managing security incidents and tracking SLAs while offering control over vulnerabilities, marking false positives, and handling false alarms efficiently.

"ServiceNow Security Operations provides significant control over vulnerabilities, allowing users to mark false alarms as false positives and ignore them, which is important because many vulnerabilities are not real but appear as such."
"I will recommend it to others as it is an enterprise application used by large companies for ticketing purposes."
"ServiceNow is a convenient platform to raise tickets, and the respective support team will contact us to resolve any issues."

Room for Improvement

ServiceNow Security Operations needs improvement in customization ease, integration with third-party tools, and user interface intuitiveness. Its dashboards require enhancements for better threat intelligence visibility. There is also a need for improved documentation, developer support, and marketing efforts. Users experience challenges in setting up and understanding its modules, and the system can be slow to respond. Enhancements in training, security permissions integration, and transitioning between teams are also necessary to improve user experience.

"Visibility and transitions between teams present significant challenges in the SecOps space, indicating that substantial training and hand-holding are required to improve usability, which is one observation I have had."
"Report generation within ServiceNow can take some time. Additionally, there are occasional issues when raising a ticket, which can also consume time."
"Report generation within ServiceNow can take some time."

Pricing

ServiceNow Security Operations pricing is competitive in the industry, offering good value for money despite initial increases. Costs vary by client and industry, often influenced by consortiums or asset numbers. Bundled with ITSM suites, the pricing, though higher than BMC Remedy, is more affordable compared to IBM or Splunk. It's subscription-based, dependent on users and configurators. Users cite additional implementation and maintenance costs, yet find the comprehensive features justify the price.

"The product is more expensive than other solutions."
"Compared to competitor tools, ServiceNow Security Operations is more affordable"
"It is an expensive product."

Popular Use Cases

ServiceNow Security Operations is utilized for reducing security incident response times, managing vulnerabilities, integrating with helpdesk systems, and scanning operations. Users integrate it with tools like Splunk and Elasticsearch for improved security processes, including vulnerability response and threat intelligence. It supports operations like ticket management, incident resolution, and change management. Through integration with threat intelligence tools, it aids in assessing and prioritizing vulnerabilities, enhancing organizational cybersecurity efforts. Users commonly deploy in both cloud and hybrid environments.

Service and Support

ServiceNow Security Operations customer support is typically rated between 4 and 5 out of 5. They display strong security knowledge but sometimes lack expertise in integration with certain systems. While response times could improve, they are mostly effective in resolving issues. Some users report needing further investigation when detailed solutions are lacking. Various teams handle different aspects, ensuring operational functionality, and issues are usually addressed with timely recommendations and updates.

Deployment

The initial setup of ServiceNow Security Operations varies in complexity based on familiarity and organizational needs. Some find it straightforward and supported by comprehensive documentation, while others encounter moderate difficulty. Deployment time ranges from a few hours to several months, influenced by team size and customization requirements. Although generally accessible via a browser, integration and customization might require additional expertise, particularly for complex requirements. Staff needs range from a few individuals to larger teams depending on the scale.

Scalability

ServiceNow Security Operations is widely scalable, effectively handling significant expansion. Users highlight its flexibility, suited for large-scale implementations, enterprise environments, and varied user counts. It integrates efficiently with third-party tools for enhanced scalability. Users appreciate its cloud-based nature, allowing seamless adaptation to changes. Scalability is typically rated between seven to eight out of ten. ServiceNow is popular across teams, emphasizing its ability to integrate and expand to accommodate diverse organizational needs.

Stability

ServiceNow Security Operations is generally regarded as stable by users. They highlight its reliable performance, noting it operates without crashes, bugs, or significant issues when correctly implemented. While some minor stability concerns arise, these are quickly resolved, often with support team assistance. Ratings frequently reach eight or nine out of ten, reflecting high satisfaction. Users appreciate its consistent functionality, attributing rare disruptions to external factors like ISP problems.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our ServiceNow Security Operations Buyer's Guide for additional reliable information.