Hey Community! Has anyone ever put an inactivity timer in place on the Vendor Portal (/svdp) so Vendor Contact users are automatically logged out after a certain period of inactivity? It doesn't appear that the standard instance session properties (...
Hi, I am getting this error when trying to Initiate inherent assessment from Risk Identification record. But I already setup my RAM for this.Could anyone tell me if I'm missing something here? Thanks.
Hello, We had a customer provide a requirement in which they want to review and approve the scope of a risk assessment and all the responses after the completion of all the assessments. Essentially they want a way to show an entity owner signing o...
Our scenario is that our compliance team has created a Risk and it is owned by a standard GRC user. The assessment was taken and the response was set to mitigation. A mitigation task opened as expected and the GRC user who is assigned to the task wro...
Hi Friends,I am facing an odd issue that, Step 1: I have configured an m2m table to select Dependent Business Process for BIA ( Business Impact Analysis ) record.M2m TableStep 2: I have also added Access Controls on this m2m table (Create, Read and W...
HiWhat is the difference between a test template and test plan? Looking at the system architecture the test templates are linked to the control objective which in turn than links to the test plan when generating a control test. What is the reason for...
According to the SN documentation for Vancouver for Advanced Risk Assessments, the risk response workflow is not available for object-based risk assessments. What are the alternatives to document a risk response? For example, if I do an object-based ...
When there are 2, 3, 4, or more Tiering Assessments or Vendor Risk Assessments – all with different scores – how does the system arrive at just one overall value at the Vendor (Company) level? For example, Company XIt’s Risk rating is “4 – Low”.This ...
Hi, The Vancouver release of TPRM provides a catalog item that can be used to submit a due diligence request for a number of scenarios. My question is related to option to onboard a new engagement. Per ServiceNow documentation, we are informed the ...
Helllo @Community Alums , I am new to GRC i want to find difference between Risk Assessment scheduler and Risk assessment Scope
We are getting NULL pointer exception error and "No assessments are available" message for vendors belonging to 2 particular company in Vendor portal (svdp). When we try to login with other Vendors belonging to other companies we get a proper list of...
Hi All, Currently, only the requestor can request an extension on policy exceptions. I have a requirement to allow a certain group for e.g risk managers to also have that ability to request an extension on a policy exception. What will be the best wa...
Hi All, I have used the recently added functionality of Auto-update Entity Owner. I follow the next steps: - Changed the Owner on the Source record - Entity Owner is dynamically changed - Ownership on the Control & Risk levels does not update to ...
Good morning, I have an issue on PROD environment that in Compliance Workspace on "Pending Group Tasks" list the filter is not working properly, no records are displayed, I can't even see the filter, but on INT environment it is working fine. I don't...
We currently have PCI 3.0 citations in our instance. I have been asked to find out when PCI 4.0 will be available from ServiceNow or a vendor. Anyone have an insight?