Now Assist (GenAI Core)

Skills are product-scoped packages. ServiceNow ships platform skills; enterprises extend with custom skills where the framework allows. Activation is entitlement + admin configuration + role visibility.

Packaging layers: definition → context binding → surface binding

POC discipline: enable one skill per workflow, measure adoption, then expand — not all ITSM skills on day one.

Enterprises typically do not point Now Assist at arbitrary public endpoints. ServiceNow's managed connection layer abstracts provider details while exposing admin controls for skill behaviour.

Fallback thinking: if primary model latency spikes or a region is unavailable, the platform may route to alternate capacity — exact behaviour is release-dependent. Architects document degraded mode in runbooks.

Contrast with IntegrationHub calling external LLM APIs: possible for custom apps, but Now Assist skills use the native layer — different governance path.

Pipeline stages: system layer → skill template → record context → retrieval → user input

Schema awareness: skills often receive structured field metadata so the model knows field labels vs values — reducing confusion on custom tables.

Interview tip: draw this pipeline on a whiteboard — instant senior signal.

Grounding sources: record fieldsknowledge articlessimilar records. Skills should instruct the model to prefer sources over invention.

Techniques: require citations, 'answer only from context' instructions, refusal when context insufficient, and human review on external-facing text.

Pair grounding with AI Search index quality — Ch 1 warned; Ch 2 implements.

Context window is finite. ServiceNow applies summarisation and truncation strategies to fit limits. Custom skills must explicitly limit inputs.

Cost drivers: number of assist invocations × context size × skill complexity. High-volume L1 summary on every refresh burns budget — trigger on open or on demand, not every keystroke.

Design pattern: summarise history once, store in a field, feed summary to subsequent assists — amortise tokens.

Agent workspace: typically draft in panel — never silent auto-post to customer without policy.

Portals and employee experience: shorter responses, links to KB, escalation CTAs. Developer surfaces: code blocks in Script Editor with accept/reject.

Accessibility and mobile: rendering must work on small screens — field teams adopt mobile-first designs.

Thumbs feedback aggregates to skill owners — patterns of dislike on certain categories indicate grounding or tone issues.

Implicit signals often matter more: edit distance, time-to-accept, abandon rate. High edit distance → fix template or context, not 'retrain AI.'

Close loop: weekly review with top agents; feed quotes into prompt/guardrail updates; version skills in dev → test → prod.

Patterns: Flow AI actions, scripted calls, custom UI

Same rules apply: ACL context, logging, rate limits, human approval on external output. API is not a bypass for governance.

POC: wrap GenAI call in subflow with error handling and audit field updates.

Inputs typically include short description, priority, assignment, chronology of work notes, and linked CMDB items. Output should be structured — not a prose wall.

Trigger design: on assignment change or on open — avoids regenerating on every minor edit unless agent requests refresh.

Quality gate: if incident has <3 notes, summary may add little value — consider minimum context threshold.

Skill maps resolution code and work notes into customer-appropriate and audit-ready closure text.

Guardrail: never include internal-only jargon in customer-visible fields — separate internal vs external note skills where product allows.

Metric: edit distance on resolution notes before/after assist.

Retrieval finds candidate incidents; GenAI explains shared symptoms, resolution pattern, and caveats — grounded in record fields.

Works best when historical data is labelled with good resolution codes and CI linkage.

Interview: distinguish PI similarity scores vs GenAI narrative layer.

Output: risk factors, missing information checklist, comparison to similar past changes — advisory only

Integrate with change policy: flag missing backout, blackout conflicts, high-impact CI classes.

Do not auto-approve changes from GenAI risk score — compliance nightmare.

Inputs: linked incidents, work notes, recent changes on affected CIs, known error database. Output: hypothesis tree, suggested problem statement, recommended investigations.

Human validates causation — correlation from AI is not root cause until proven.

Configure linkage discipline: incidents must relate to problems for assist to work.

Summary includes: customer goal, bot actions taken, data collected, escalation reason, open slots — attached to incident or interaction record.

Agent should see summary before first customer message — not buried in related lists.

Pair with VA containment metrics — measure handoff quality, not just handoff rate.

Step 1: Confirm Now Assist plugins/entitlements on PDI (may require developer instance AI features).

Step 2: Now Assist Admin — enable incident summary, resolution note, similar incidents per release catalog.

Step 3: Scope AI Search / knowledge sources to ITSM KB spaces.

Step 4: itil / itil_admin roles — verify skill visibility in Agent Workspace.

Step 5: Create test incidents with varied note length; document expected vs actual; file defects vs config gaps.

Architecture: AI Search cleanup → incident summary + similar incidents → resolution notes → change assist → VA handoff summaries. PI routing ran parallel — not replaced.

Metrics: handle time −17%, resolution note quality score +23%, agent NPS +11, GenAI cost per ticket tracked monthly.

Change: 6 champion agents per region, weekly office hours, feedback loop to skill owners, executive dashboard on adoption not just licenses.

Context includes account tier, product entitlements, prior cases, escalations, and comms channel. Output tone is customer-facing aware.

Integrate with Customer Service Management workspace — summary panel at case open.

ACL: agents see only accounts in their domain — summary inherits restrictions.

Configure tone guidelines and prohibited phrases (legal liability, competitor mentions).

Include case resolution steps and KB links — grounded citations reduce escalations.

Track edit distance by agent tier — juniors benefit most; tune training accordingly.

Use cases: case summarisation for HR agents, policy-aligned drafts, onboarding checklists — not performance judgment or medical advice.

Exclude: disciplinary details, medical notes, compensation fields from GenAI context unless legal approves.

Coordinate with works council / union on augmentation messaging — Ch 1 pattern applies stronger here.

Flow: employee asks question → retrieval → grounded answer → 'did this help?' → case creation on no.

Measure deflection with record truth — not chat session end.

Stale HR/policy KB kills deflection — content ops before model ops.

Ground coaching in playbooks — avoid free-form 'you should' without policy link.

Show article links alongside suggestion — agent learns while working.

Disable coaching on legal/compliance cases if policy requires specialist-only handling.

GenAI can infer sentiment from customer messages and case history — surface as field or banner: 'high frustration detected.'

Ethical guardrail: do not use sentiment to deny service or auto-close.

Combine with SLA and account tier for routing — sentiment alone is noisy.

HR persona: formal, inclusive language, mandatory KB citation, no speculation on individual compensation.

CSM persona: brand voice guide, empathy without over-apology, product terminology glossary.

Separate personas per region/language where local policy differs.

Changed: faster case summaries, policy-aligned drafts, portal deflection on FAQs, coaching on routine cases.

Unchanged: human decision on accommodations, investigations, complex grievances.

Numbers: case handle time −15%, employee CSAT +8 points on routine inquiries, zero unsupervised external sends.

Strengths: boilerplate queries, field validation stubs, simple business rules. Weaknesses: complex transactions, scope chains, performance-critical bulk operations — always review.

Always validate: addQuery ACL impact, null checks, async patterns, and update() in before rules.

Team standard: generated code goes through same peer review as human code.

Describe: 'When incident priority becomes 1, notify major incident manager and create problem task.' Assist proposes flow skeleton.

Review: error handling, subflow reuse, ACL on actions, idempotency on re-triggers.

Citizen developer policy: generated flows require admin approval before promote.

Input: flow name or script purpose. Output: ATF step sequence with suggested assertions.

Human adds: test data setup, teardown, environment constraints, flaky UI waits.

Integrate with CI pipeline — tests generated in sprint, not hoarded in draft.

Paste or point assist at script — ask for line-by-line explanation, side effects, and tables touched.

Verify explanation against execution — assist may miss dynamic table names.

Document output into technical debt register — explanation becomes spec for refactor.

Generate: flow diagram narrative, input/output contract, error paths, related tables.

Store in knowledge or Git-linked docs — version with release.

Mark auto-generated sections — human owner signs off quarterly.

Ask: 'refactor for performance' or 'replace nested GlideRecord with single query' — compare suggestions to platform best practices docs.

Watch for: over-abstraction, breaking subtle business logic, deprecated APIs.

Pair with ATF — refactor without tests is gambling.

Measure: story points, cycle time, defect escape rate, ATF coverage — before/after assist adoption.

Biggest gains: onboarding new developers, documentation debt, repetitive ATF.

Smallest gains: net-new architecture, complex integrations — still human-led.

Enable Now Assist for Development in instance settings (per release documentation).

Verify roles: admin, developer, or custom role with assist entitlement.

Exercise: generate GlideRecord, explain script, draft ATF, generate flow — four labs in one afternoon.

Input contract: which fields, max note count, related lists. Prompt template: task instruction and format. Output schema: bullets, JSON, max length.

Tone parameters: formal, concise, empathetic — map to brand or HR policy.

Version all components in dev — diff before promote.

Examples: always use 'colleague' not 'user' in HR; include ticket number in summaries; spell product names correctly from glossary.

Avoid conflict: org instructions should not fight skill-specific tasks — layer general → specific.

Review quarterly with comms and legal — stale org prompts cause drift.

Techniques: prohibited topic lists, required citations, max length, refusal instructions when context empty, block on restricted field patterns.

Test guardrails with red-team prompts monthly.

Log guardrail triggers — high rate means retrieval or policy gap, not just attacks.

Legal: no contract interpretation; cite only approved playbooks; privilege-aware field exclusion.

Finance: numbers must match record fields — instruct model never to calculate independently.

Healthcare: HIPAA-aligned context minimisation.

Configure language preference on user or portal profile where supported.

Maintain parallel KB — translated articles, not machine-translated stale content.

UAT with native speakers for tone and policy accuracy.

Design: hypothesis, metric, duration, sample size, ethical approval for employee-facing tests.

Compare variant B only if statistically better on primary metric without harming quality guardrails.

Document winner in skill version notes.

Weekly dashboard: feedback rate, top negative themes, correlation with missing KB, agent tenure.

Qualitative: sample 10 negative cases — root cause tag: grounding, tone, length, wrong task.

Close loop with release notes to agents — visibility builds trust.

Store: version id, change summary, approver, rollback steps, ATF/UAT evidence.

Use update sets or platform deployment tools per your release practice.

Never hot-edit prod skill during business hours without rollback ready.

Work with account executive on Now Assist entitlements — map skills to purchased products. PDI may differ from prod entitlements.

Document entitlement matrix in architecture wiki — which region/instance has which pack.

Renewal: align skill roadmap to licensed products — don't design HR assist without HR SKU.

Map skills to roles: itil, sn_customerservice_agent, sn_hr_core.admin, admin/developer.

Custom roles for pilots — narrow cohort before enterprise rollout.

Review quarterly as roles proliferate in large orgs.

Adoption metrics: % agents using assist weekly, invocations per ticket, skill ranking.

Cost metrics: consumption trends vs ticket volume — spot runaway auto-triggers.

Value metrics: handle time, edit distance, CSAT — tie to business case.

Clarify with ServiceNow trust docs: customer data isolation, subprocessors, region residency.

Minimise sensitive fields in context — design choice, not only product default.

Retention: align AI logs with corporate records policy — may differ from incident retention.

Enable platform logging features per release; integrate with SIEM if required.

Quarterly audit sample: random 50 accepted outputs — verify policy compliance.

Map controls to framework: SOC2 CC, ISO 27001, internal AI policy.

Tools: Now Assist admin module, AI Search admin, update sets, feedback reports, skill version log.

Escalation: platform issues to ServiceNow support; harmful output to security; policy to legal.

Partner with: ITSM/CSM/HR product owners, knowledge manager, finops.

Severity levels: P1 harmful external comms; P2 widespread wrong policy; P3 isolated bad draft.

Contain: kill switch skill, force manual workflow, comms to agents.

Postmortem: grounding gap, guardrail miss, or user bypass — action items to skill owner.

Align policy with Ch 1 trust model and Ch 2 admin practices — one coherent program.

Board and works council review for employee-facing AI.

Annual policy refresh minimum; quarterly for fast-moving agent features.