GRC forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! GRC Recommended Implementation Sequence

Hello,  I recall having seen a slide with the recommended implementation sequence for governance, risk and compliance based on a "maturity model" with foundation, crawl, walk, run, fly. Does anyone have this slide to share? Or similar methodology? Ki...

ThijsW by Tera Contributor
  • 4309 Views
  • 4 replies
  • 2 helpfuls

Resolved! IRM/GRC Architecture

Hi everyone, can someone tell me where I can find a detailed description of the GRC Architecture. Thanks in advance!   

Architecture.jpg

Risk response task

If we are moving from respond state to review state after accepting or mitigating the risk response task, then after moving back from review to respond, the risk response task is not moving to "work in progress", why is that?

Resolved! Archer and servicenow integration

Hello, What are the ways to integrate ServiceNow with RSA Archer? My client has its issues management on RSA Archer but they want to leverage the continuous controls monitoring feature of ServiceNow and therefore they wish to have a centralized issue...

Resolved! GRC indicators

Hi. I want to know about the Indicators and indicators templates inside Governance, Risk and Compliance (GRC). I know from the documentation that Indicators monitor a single control or risk and Indicator templates allow the creation of multiple indic...

Syed14 by Giga Guru
  • 3999 Views
  • 5 replies
  • 10 helpfuls

Need help avoiding duplicate controls.

We are in the process of adding our frameworks, policies and regulatory documents.  Then we will parse these into citations and into control objectives.  Of course many of the control objectives are looking for the same conditions, for example say th...

Roger Grim by Tera Contributor
  • 1774 Views
  • 4 replies
  • 0 helpfuls

Customizing ServiceNow

Can I customize ServiceNow for my product needs?I plan to hire full stack devs for this issue following this guide. Will I succeed? Have anybody had such an experience?

davewhiteee by Kilo Contributor
  • 1631 Views
  • 3 replies
  • 1 helpfuls

Resolved! Hierarchy of policies vs control objectives

Hi,I was wondering if anyone knows what is the difference of creating a hierarchy of Policies (One parent policy with one or more child policies) and a hierarchy of Control Objectives (One parent Control Objective with one or more child Control Objec...

How is the Recovery time achievable(RTA) being calculated?

How is the recovery time achievable (RTA) being calculated? I have only known about the description of it from the docs https://docs.servicenow.com/bundle/paris-governance-risk-compliance/page/product/grc-business-continuity-management/concept/bcm-wo...

Bojamma M A by Tera Contributor
  • 1292 Views
  • 1 replies
  • 0 helpfuls

is ServiceNow HIPAA compliant

Trying to determine if ServiceNow meets HIPAA ComplianceCan anyone answer this of point me to an article the explain this?Thanks,Bob

rje55 by Kilo Explorer
  • 8674 Views
  • 3 replies
  • 0 helpfuls

Resolved! Engagement Approval

Hi  I have a sample of 49 Audit Tasks, 2 are marked as closed complete. When should the approver receive a request to either approve or reject the engagement? Is it only after all tasks are closed and no pending open tasks.  

janellgail_0-1670221352141.png
jajay by Tera Contributor
  • 2500 Views
  • 3 replies
  • 3 helpfuls