Resolved! Types of Audit Task
Hi, Can someone distinguish the following types of audit task? Just to better utilize the audit management. Activity Control TestInterviewWalkthrough Thank you!
Forum Posts
Smoother Control Re-Attestation
Greetings to all,I find myself confronted with a business requirement regarding the re-attestation of compliant controls. The business has expressed some frustration over the need to re-attest controls on an annual basis, especially when they are con...
Converting existing customer_contact records to Vendor Contact
Hello! We are in the process of implementing the Vendor Risk Management module, and also recently upgraded our version from Tokyo to Vancouver. Before the upgrade from Tokyo to Vancouver, I found that records in the customer_contact table could be co...
Resolved! GRC / IRM Article Template
Has anyone found or created a more advanced article template than the one used in the policy? Any suggestion on how to make this more robust would be appreciated. Thanks.
[Webinar - Sep 21 & 22] Mastering Metrics in IRM for Risk Management
Hello there, My team is putting together, until the end of 2023, a monthly series of “Recommended Practices” webinars to help you be successful with your GRC/IRM applications. This is the second episode of this series, run by Vinod Laxmeshwar (Sr. ...
Open a specific view on click of New button from related list
HiI am a starting to learn SN and am trying to solve for the following requirement - When the user clicks on the New button on the related list within my form, it should open a specific view if the Type field is set to a particular value. I think I h...
IRM Issue management form fields
Hi,I am new to IRM area. Have basic question on two fields available on 'Issue' (sn_grc_issue) form.Want to know what is difference between 'Priority' and 'Issue rating' fields. Does they fulfill different purpose? Thanks.
Resolved! Business Continuity Management: BIA Dependency Assessment
When performing a BIA dependency assessment, for a given dependency, how should one determine what value to specify for the Recovery Time Objective (RTO) and/or Recovery Point Objective(RPO)? The documentation (https://docs.servicenow.com/bundle/utah...
Resolved! Approval and Approval history is not getting updated when BIA is approved/Rejected
Hi, Whenever we are trying to move BIA (Impact analysis record) in 'Pending for Approval' state by clicking on 'Submit for Approval' button. We are not seeing any record update in 'sn_bia_approval' table.Similarly when Impacy analysis is approve or r...
BIA and BCP Approval/Renewal OOB Workflow
Hi all!! For BIAs and BCPs, are there any OOB Approval/Review workflows documented that show lifecycles? For example, is there anything OOB that would show/document (allow ) a BIA to go from draft, review, approval, and then back to review when a th...
Copy tags from one table to another
Hello All,I am using below query BR to copy tags from one table to another, but currently all records from the target table are getting updated I want only the associated record should have the tag copied from source record which has new tag added.Pl...
Upload vendor assessment responses from excel into ServiceNow?
Is there a way for vendors to easily upload completed assessments from an excel into ServiceNow?
Generating issues automatically or keep it manual
We are in the design of IRM. I know that issues can be generated automatically when a control or a risk indicator fails. I am hesitant to turn the automation on because a lot of issues are going to be reported manually and I am concerned with duplica...
Documentation of GRC and Security Operations
Hi All, I need help to get the implementation documents or the documents on GRC and Security Operations. Thanks
Resolved! Confidentiality on GRC tables
Hi All,I would like to know how to set-up confidentiality for GRC tables other than OOB tables?There are a few tables for which this feature is supported by servicenowWould like to know if there's any other way I can configure the same for other exis...