17 minutes to clarify and disambiguate once and for all the concepts and terminology around Controls, Attestations and Tests. These are so important to make the best of ServiceNow's GRC solution.This video tutorial is essential before GRC Fundamental...
It's time to accelerate your BCM adoption journey Welcome to the Getting Started page for Business Continuity Management (BCM), where you can find the resources you need to be successful with ServiceNow BCM, including the IT Disaster Recovery domai...
Overview When undertaking Business Continuity Management (BCM) implementation on the ServiceNow AI Platform, you must consider establishing a solid foundation by connecting and structuring foundational data. To do this using a configuration managem...
We have some pretty cool new Risk capabilities being launched in the May 2025 store release. Thanks to feedback from users like you, we are adding Gen AI and agentic AI features that will reduce the time it takes to do manual, time-intensive tasks. ...
To learn more about implementing IRM Risk Management, including setting up libraries, visit our IRM Risk Management Speed Learning Series on YouTube. Risk libraries contain your organization’s risk frameworks and risk statements. In short, they enabl...
To learn more about implementing IRM Risk Management, including the different types of assessments, visit our IRM Risk Management Speed Learning Series on YouTube. ServiceNow provides two approaches to risk assessments that support organizations a...
The GRC Licensing Summary Dashboard enables you to track, forecast, and optimize your GRC usage. As organizations expand their governance, risk, and compliance (GRC) programs, monitoring license consumption becomes important to manage costs, mainta...
Compliance does not work when it lives in spreadsheets and inboxes. It needs clear ownership, real-time status, and a direct line from requirements to evidence. That is why I use the ServiceNow Policy and Compliance Workspace as the command center fo...
Modern enterprise workflows are becoming increasingly data-driven and decision-heavy — and with that, the need for intelligent assessments has never been more critical. Whether you're measuring service quality, assessing user satisfaction, collecting...
Now Assist for IRM can make your day-to-day risk and compliance work a lot smoother. It's not a separate tool to juggle—it's built right into your ServiceNow Integrated Risk Management (IRM) workflows. The idea is to move beyond manual, time-consumin...
One of the most overlooked parts of IRM implementations is the taxonomy that sits underneath everything. We often talk about Authority Documents (regulations, frameworks, standards) and Risk Statements (potential events that may impact objectives) ...
In response to the question “GRC/IRM – How to find entities and controls tied to Authority Documents ” on the ServiceNow Community I wanted to share something I built in the past. This is exactly where Content Reference comes in. Its designed to tag ...
Original article was placed as a question in the GRC forum. Thanks @Rafael Cardoso for your suggestion. Dear All, Docs doesn't elaborate much on how to use code snippet for Smart Assessment and at times customers find it confusing. For one of my ...
The Risk Zurich release is here! Get a first look at the new Risk GenAI-powered capabilities to improve your risk team’s productivity and efficiency. Here are the latest demos for Now Assist in our Risk portfolio. Now Assist for IRM: Common Contro...
You've come to the right place to start your risk product adoption journey. The Welcome Guide for Risk Customers (attached below) provides valuable guidance on the initial steps of your implementation journey, including an overview of the ServiceNow ...
Introduction The ServiceNow AI Control Tower is a centralized platform designed to govern, manage, secure, and optimize AI agents, models, and workflows across an enterprise. This blueprint outlines how the AI Control Tower supports organizations in ...
Hello Community Members, I have been working on GRC for quite sometime and prepared this presentation to introduce the GRC to our users to give them overview and confidence to start with GRC. This covers most of the basic aspects of GRC and various t...
Scoring Configuration for Model Risk Assessments Required role: To configure scoring for model risk assessments, the sn_model_risk_mgmt.admin role is required. Note: The scoring in model risk assessments is done only for model risk task of type "...
Every organization has information silos, with scattered third-party data--from contact details to risk data and criticality levels--across multiple, disconnected sources. When managing thousands of third parties and engagements, the risk team will l...
ServiceNow’s new Digital Operational Resilience Management app enables customers to manage their activities associated with new operational resilience regulations such as the EU Digital Operational Resilience Act (DORA). (A PDF version is available...
Mary Hain
LisaLatour
Sarah Wood
Dan Bruhn
Steph Morillo
