Skip to content
  • There are no suggestions because the search field is empty.

How do I set up notifications through Webhooks?

After you've enabled webhook integration in Security Center, you need to configure which types of events should trigger webhook notifications. This article guides you through selecting notification types, such as scan completion or ticket updates, so your external system receives the right alerts at the right time.

Before you start

To complete this task, you need to have already:

  • Set up basic webhook integration (enabled webhooks and configured the webhook endpoint URL)
  • Successfully tested the connection to your webhook endpoint
  • Administrator access to Security Center

📝 Note: If you haven't set up the basic webhook integration yet, see the related article "How do I integrate with Webhooks?" for setup instructions.

Configure notification types

Follow these steps to enable webhook notifications for specific event types:

Step 1: Log in to Security Center

  1. Open Security Center and log in with your administrator account.

Step 2: Navigate to webhook integration settings

  1. Click the Menu icon in the top-right corner.
  2. Click Integrations.
  3. Click Webhooks.
  4. Verify that Enable Webhooks is checked (if not, check it now).
  5. Verify your Webhook endpoint URL is configured.

Step 3: Test your connection

  1. Click Test Connection to verify that Security Center can reach your webhook endpoint.
  2. If the test fails, verify:
    • Your webhook endpoint URL is correct
    • Your endpoint is accessible from Security Center's network
    • Your endpoint is running and listening for POST requests

Step 4: Select notification types

Under the Notifications section, you can enable or disable individual notification types using the toggles. Security Center provides granular control so you can choose exactly which events trigger webhooks.

SCANS notifications

The SCANS tab allows you to enable notifications for specific scan events. You can select individual notification types:

System & Network scan notifications

  • Started network vulnerability scan
  • Finished network vulnerability scan
  • Started network discovery scan
  • Finished network discovery scan
  • Started policy scan
  • Finished policy scan

Web application scan notifications

  • Started web vulnerability scan
  • Finished web vulnerability scan
  • Started web discovery scan
  • Finished web discovery scan

Cloud scan notifications

  • Started cloud scan
  • Finished cloud scan

Enable the notifications you need by toggling them on. For example, you might only enable "Finished network vulnerability scan" if you want to be notified when vulnerability scans complete, but not when they start.

TICKETS notifications

The TICKETS tab allows you to enable notifications for ticket status changes. You can select individual notification types:

Ticket notifications

  • New ticket - Triggered when a new remediation ticket is created
  • Ticket fixed - Triggered when a ticket is marked as fixed/closed

Enable the notifications you need. For example, you might enable both to track when vulnerabilities need remediation and when they're fixed, or enable only "Ticket fixed" if you only care about completed remediation.

💡 Tip: Start by enabling only the notifications most critical to your workflow. You can always add more later. For example, enable only "Finished" scan notifications if you only need to know when scans complete, not when they start.

Step 5: Save your configuration

  1. After selecting your notification types, click Update settings to save.
  2. You should see a confirmation message indicating the settings were saved.

Verify your notifications are working

After enabling notifications, verify they're working:

  • For SCANS: Run a scan and confirm your external system receives a webhook notification when it completes.
  • For TICKETS: Create a new ticket (by finding a vulnerability and creating a ticket) and confirm your system receives the notification.
  • If you don't receive notifications, check:
    • That notification types are enabled in the Webhooks settings
    • That your webhook endpoint is running and accessible
    • Your endpoint logs or monitoring to see if POST requests are being received

Customizing webhook payloads

By default, Security Center sends webhooks with a standard payload structure. If you want to customize which data is included in webhook notifications, you can use placeholders to format the payload exactly as you need.

See the related article "Which placeholders are available for the Webhooks integration?" for details on customizing your webhook payloads.

Disabling or changing notifications

To disable notifications or change which types are enabled:

  1. Go to Integrations > Webhooks.
  2. Under Notifications, uncheck the notification type you want to disable (SCANS or TICKETS).
  3. Click Update settings.

Related information

For initial webhook setup, see:
How do I integrate with Webhooks?

For customizing webhook payloads with placeholders, see:
Which placeholders are available for the Webhooks integration?

For understanding how webhooks work technically, see:
How does the Webhooks integration work?