Mohammed Kemal
Tera Guru
ServiceNow's Governance, Risk, and Compliance (GRC) provides detection and assessment of risks in real time, streamlines and operationalizes compliance controls and accelerates the time to mitigate risks. By leveraging the built-in Audit management one can automatically create an Audit Engagement linked to their Authorization Package. Audit Tasks are automatically created for Security Control Assessors (SCAs), allowing them to manage, perform, and report on control design and operational effectiveness tests within the platform. Non-compliant controls also called ineffective controls automatically generate an Issue. Each Issue tracked as a Plan of Action & Milestones (POA&M) along with their associated remediation tasks. One can create Issue before even an Engagement is generated for a given Authorization Package by clicking new under the Issue tab. In this demo Mohammed Kemal demonstrated how to create an issue and also managing the Plan of Action & Milestones for a given Authorization package. Feel free to drop your comments or suggestions you might have in the comments bellow. Also, considering subscribing to my YouTube channels where I usually do similar video's just like this on ServiceNow and related topics. Stay tuned for the upcoming sessions.
4 Comments
Mohammed Kemal
Tera Guru

Here is how you can bookmark this video for future reference:

find_real_file.png

Mohammed Kemal
Tera Guru

If you are interested to get prepared for your next interview or simply improve your ServiceNow  general knowledge feel free to watch the live recorded video in my YouTube channel.


What are discovery and Service Mapping in ServiceNow?
What is ServiceNow?
What are ServiceNow releases and patches?
What are the benefits/risks between Configuration and Customization?
What is the CMDB in ServiceNow?
How to make a change to the ServiceNow forms?
What are the benefits between Scoped app Vs Global app?
How to decide before creating scoped and global apps?


: Don't forget to Click helpful and bookmark the link to refer to it next time!

Consider subscribing to the YouTube channel to get notifications sent to you when we go live!!
Thank You!

Lubaba
Tera Contributor

Thanks for sharing @Mohammed Kemal ! I didn't get the difference between Issue and Plan of Action & Milestones (POA&M)? 

Thanks!

Asparuh1
Kilo Contributor

 I think the "Issue" in Audit language is the finding/gap/discrepancy that is found during the audit. The POA&M is how you treat it and what's the plan to mitiagate it in order to decrease the risk to acceptable level.