If you’ve spent any time wrangling permissions or building risk and compliance workflows in IRM, you’ve probably run into tricky situations where managing user access feels more complicated than just assigning roles. Maybe you’re supporting multipl...
Enterprise IT governance breaks in a familiar way. Leadership sets direction, teams stay busy, and yet nobody can say with confidence if the intent is being delivered. When that happens, governance starts to feel heavy, slow, and disconnected. Decisi...
Understanding how to access and interact with risk data is the foundation of a strong Integrated Risk Management (IRM) strategy. In ServiceNow, your experience changes based on your role, whether you're a compliance officer, a risk owner, or an admin...
Risk identification in ServiceNow Risk Management is the process of systematically capturing potential risks related to business entities. It ensures that risks are identified early, recorded, monitored, and reported on consistently. Risk Identific...
Grab a few minutes to get a firsthand look at demos of the latest ServiceNow Risk capabilities, including Now Assist (#GenAI) and Agentic AI features that build an integrated view of risk and compliance by enhancing risk visibility and automating wor...
You deal with risk every day, whether you call it that or not. Systems fail, services go down, regulations change, and new threats appear faster than your team can respond. If you do not have a clear risk strategy planning approach, you end up reacti...
Overview: If you want to optimize the Risk Workspace in ServiceNow by adding your own tabs (such as pre-details or post-details), you can do this by leveraging page collections in UI Builder. This guide walks you through customizing the risk record p...
Keeping up with thousands of new and updated regulations each year feels impossible without the right system. If you work in a highly regulated industry, you know the stakes. Miss an update, and you face audit findings, delays, and real business risk...
17 minutes to clarify and disambiguate once and for all the concepts and terminology around Controls, Attestations and Tests. These are so important to make the best of ServiceNow's GRC solution.This video tutorial is essential before GRC Fundamental...
It's time to accelerate your BCM adoption journey Welcome to the Getting Started page for Business Continuity Management (BCM), where you can find the resources you need to be successful with ServiceNow BCM, including the IT Disaster Recovery domai...
Overview When undertaking Business Continuity Management (BCM) implementation on the ServiceNow AI Platform, you must consider establishing a solid foundation by connecting and structuring foundational data. To do this using a configuration managem...
We have some pretty cool new Risk capabilities being launched in the May 2025 store release. Thanks to feedback from users like you, we are adding Gen AI and agentic AI features that will reduce the time it takes to do manual, time-intensive tasks. ...
Risk libraries contain your organization’s risk frameworks and risk statements. In short, they enable the central cataloging and systemizing of your risk data. A robust library provides a common language for risk across the enterprise and creates a ...
To learn more about setting up and navigating classic and advanced risk assessments in IRM Risk Management, including the different types of assessments, visit our IRM Risk Management Speed Learning Series on YouTube. The PPT for the hands-on video t...
The GRC Licensing Summary Dashboard enables you to track, forecast, and optimize your GRC usage. As organizations expand their governance, risk, and compliance (GRC) programs, monitoring license consumption becomes important to manage costs, mainta...
Compliance does not work when it lives in spreadsheets and inboxes. It needs clear ownership, real-time status, and a direct line from requirements to evidence. That is why I use the ServiceNow Policy and Compliance Workspace as the command center fo...
Now Assist for IRM can make your day-to-day risk and compliance work a lot smoother. It's not a separate tool to juggle—it's built right into your ServiceNow Integrated Risk Management (IRM) workflows. The idea is to move beyond manual, time-consumin...
One of the most overlooked parts of IRM implementations is the taxonomy that sits underneath everything. We often talk about Authority Documents (regulations, frameworks, standards) and Risk Statements (potential events that may impact objectives) ...
In response to the question “GRC/IRM – How to find entities and controls tied to Authority Documents ” on the ServiceNow Community I wanted to share something I built in the past. This is exactly where Content Reference comes in. Its designed to tag ...
Original article was placed as a question in the GRC forum. Thanks @Rafael Cardoso for your suggestion. Dear All, Docs doesn't elaborate much on how to use code snippet for Smart Assessment and at times customers find it confusing. For one of my ...
Mary Hain
LisaLatour
Sarah Wood
Dan Bruhn
Steph Morillo
