I am trying to relate control objectives to each other without necessarily using a Parent/Child relationship. There is a table called Control Objective to Control Objective (sn_compliance_m2m_policy_stmt_policy_stmt). I cant figure out how exactly to...
How are control implementation descriptions handled in policy & compliance as well as continuous authorization? To keep things consistent with SSP, which has both control objective and then control implementation description, control objectives are c...
Hello Experts,I have a script action named " Request acknowledgement' which is triggering an event req_acknowledgement which is running on Acknowledgement campaign tableScript : new PolicyAcknowledgementUtil().sendPolicyAcknowledgements(current)Our c...
Does SNOW GRC have the ability to consume Open Security Controls Assessment Language (OSCAL)? I cannot find any documentation on it, so I am thinking no, but curious if anyone has attempted to work with OSCAL and SNOW GRC.
Hello Team, can someone please help me with this question. Thanks in advance.
Hello Team, I have a doubt in the Classic Risk Scoring Types. Thanks in advance.
Compliance or Non Compliance of control impact the compliance score on which table?Thanks in Advance.
Hey GRC team, Does anyone know if there is an easier way to upload Policy text to ServiceNow? While we have been a ServiceNow shop for a few years we have never figured out a good way to upload our Policies into SNOW. We do all of our editing in Word...
Hi All, I am unable to create Issue marked as Parent or Is grouped (Checked) in GRC Issue Management. I know when an attestation fails, it creates 2 different issues - one as parent and one as child based on some setup of Issue Group by Rule. But is ...
Hi Community, I need to create a report in which when I apply filter for vendor (manufacturer) it should show related business applications like how many business apps are associated with the filtered vendor, then how many servers those business apps...
I asked our consultant about the Risk Portal within ServiceNow GRC. I thought this looked like a good tool for customer engagement but my consultant was a little reluctant to use it. Does anyone have any experience in using it and the benefit you get...
We recently implemented our Vulnerability Response module within SN. Currently, with our policy exceptions we can go through the normal approval process without entering impacted controls, but since implementing the VR module, when we receive a polic...
Hello Experts,Could anyone explain me what are the issue identification rules in audit managementI need these rules to explain in pptPlease help Thank you,Ujjwala
Hello,I have an ask from a client they are requesting that viewing issues are limited to the Assigned to and their manager and the Issue Manger and their managers (with the exception of the overall compliance admin and manager). The user in the "issu...
Hello Team,I have two fields reference field on the form. On creation of Ticket i want add two Groups users in CC. Fields are Approver and viewer both are referring to the Group Field. how can i achieve these in serviceNow?@Community Alums
