Are there any out-of-the-box (OOB) sample risk statements and policies

aphaugat
Tera Expert

In ServiceNow GRC (IRM), are there any out-of-the-box (OOB) sample risk statements or policies provided that we can use as reference or customize for our organization?

I'm specifically looking to understand whether ServiceNow includes any preloaded examples that can help us get started with our risk and policy management setup.

I could see content packs related to SOX-specific—grc-content-packs, but do we have anything else?

10 REPLIES 10

Hi @aphaugat ,

Beyod this, i don't think anything available as of now.

 

Thanks,
Sandeep Dutta

Please mark the answer correct & Helpful, if i could help you.

Thanks @SANDEEP DUTTA for the response.
Yes, I agree. If not OOB, just seeking any external tool/application.

Simon Hendery
Mega Patron
Mega Patron

Hi @aphaugat 

 

There's no other plugin option if the demo data that's provided doesn't meet your needs for some reason.

 

I'm guessing you're looking to install a specific Authority Document to test? If that's the case, one option is to upload a CSV file related to an AD (or part of an AD). You may be able to source this from your existing risk function?

Hi @Simon Hendery -

I understand that ServiceNow does not provide this functionality out of the box. However, the requirement here is to be able to retrieve risk statements or policies based on specific keywords.

 

For example, if a user searches for "password policy" (possibly through a custom UI), ServiceNow should be able to integrate with an external system to pull predefined password-related policies. These can then be reviewed and modified as needed—eliminating the need to draft entire policies from scratch.

 

Due to the limitations in ServiceNow, I’m exploring external systems that can integrate with it and return predefined data such as risk statements, policies, citations, etc., based on keyword-based search.