Implement Vulnerability Response with our RapidStart

AI has lowered the barriers for attackers; your team needs a single source of truth. It’s more important than ever to get vulnerabilities assigned to the right person, with the right SLA, and the right solution.

Book a Demo

2 weeks

See your vulnerability scanner data within ServiceNow

6 weeks

From start to finish, your enhanced process goes live quickly

1 year

We will resolve any issues with the integrations at no cost to you

Our RapidStart Approach

Built on the ServiceNow® platform, our delivery method has been fine-tuned through years of successful implementations across organizations of all sizes. We’ve eliminated common roadblocks to help you accelerate time-to-value and achieve meaningful results—faster, and with fewer surprises.

Week 1: Alignment

We introduce you to our process and we understand where you are today. Gaps can be identified and triaged.

Week 2: Intake

We configure and ensure data is flowing from your vulnerability scanner into ServiceNow in a consistent manner.

Week 3: Assignment

Getting your CVE's into the right hands instantly isn't a utopia. We will guide you through it.

Weeks 4-5: Enablement

Final configurations wrap. We deliver live training to your remediation owners - using your own data inside your instance.

Week 6: Go Live

We push to production, validate the deployment, and ensure everyone is able to appropriately access.

Weeks 7-8: Support

Find something wrong? We fix it fast. We also continue to support your team members with training.

We're built different

For us, SecOps isn’t one service among many—it’s the whole focus. We don’t spread ourselves thin across dozens of practice areas. Our work begins and ends with ServiceNow Security Operations, so every project benefits from the depth and clarity that comes from doing one thing really well.

Frequently Asked Questions

How much does it cost to implement Vulnerability Response using the Singletruth RapidStart methodology?

While Singletruth reserves the right to adjust pricing to accommodate unique scenarios or respond to dynamic market conditions, the majority of clients will be operational within six weeks at a cost lower than 70k. Our RapidStart is the perfect way to kickstart your SecOps journey at half the cost of typical partners. As a further commitment to our transparency, here are the most common reasons which may necessitate a revisit of the RapidStart approach or pricing:

  1. Additional scanners (or if you have the same vendor but multiple, disconnected appliances)
  2. Custom scanner / using a scanner not officially offered by the vendor
  3. Requesting onsite workshops or configuration
  4. Atypical use cases that require customization to the platform
  5. Complex organizations who are unable to accommodate an accelerated offering or work within the parameters of our RapidStart

Pricing shown is for services rendered by Singletruth and assumes you have purchased licensing (or plan to).

Singletruth will lead a series of workshops directly with your team to develop a solution that aligns with your organization’s goals:

  1. Process alignment with best practices and common terminology
  2. Assignment working sessions where we reverse engineer your current spreadsheet
  3. Scoring working sessions where we leverage the NVD and your CMDB to provide tailored SLA’s that make sense

We also provide the following enablement and training sessions:

  1. Remediation Owner training
  2. Security Team training
  3. Platform Team Knowledge Transfer

All the above trainings will be recorded* for future access for your team. All training is done in your platform with your data.

Your team will also receive access to the Singletruth training library. We created videos for each persona walking through the process within our demo environment. To future proof our RapidStart enablement, we will also provide you with updated videos for the next version when it is released. 

*If you do not wish for any session to be recorded, please make us aware. For reference material, our training library is likely suitable as it only contains demonstration data.

Our current lead time after a sales agreement is two to three weeks.

We support all vulnerability scanners through their official integrations. Most commonly, we work with Tenable, CrowdStrike, and Rapid7. If your scanner does not have a current integration, we can certainly build one from scratch prior to your RapidStart engagement kicking off and typically requires a few additional weeks.

RapidStart is a fixed fee engagement focused on the following:

  1. Ingestion of one vulnerability scanner officially supported by the vendor.
  2. Assignment rules for the imported vulnerabilities. This includes the working sessions for your teams which we will lead.
  3. Automated scoring for your vulnerabilities; remediation target dates will also be established based on your policies and needs.
  4. An exception workflow for remediation owners to invoke if they need to dispute a remediation date or vulnerability. It’s backed by approvals within the platform.
  5. Enablement of platform analytics to track performance of the process over time. 
  6. Training sessions for the remediation owners.
  7. Training sessions for the vulnerability management team.
  8. Two weeks of critical care support where we ensure everything is running smoothly, defects are resolved, and questions are answered.
  9. One year of support on the following: Issues arising from upgrades, rework required on configuration Singletruth provided, and support for your vulnerability integration in case you need to make changes to your scanner during that time.

If you have multiple scanners or other needs as listed above, we can still make RapidStart work for you. Singletruth simply needs to talk through any changes to understand how that may impact the overall timeline and effort.

Yes! While our RapidStart is geared toward new implementations, our managed or enhancement services are available for existing users of SecOps:

  1. Quarterly Improvement Program
  2. Playbook Development
  3. Retainers and Staff Augmentation

From building playbooks for you as new use cases are identified, to building out new complex integrations, our team can work with any current SecOps customer.

Contact Us

We'd love to walk through our process or demonstrate the platform.

Request a Demo