What is the purpose of approver field in Policy exception and also the use of review state in policy exception. The approval for policy exception actually goes to the requester's manager and the control owner of the impacted control. Then what is the...
Hi, all, If anyone has the experience that the risk assessment is initiated with a risk assessment scheduler, I'd like to know how the "initiate later" option works. I configured the risk assessment scheduler. And I turned on "Initiate later" then ...
Hi, We are going through a SOC 2 Audit. How does ServiceNow's GRC products help us to better position ourselves for the SOC 2 Audit? Which products within the suite are related to the SOC 2 Audit? How are other companies leveraging ServiceNow's GRC f...
Hello all, I am trying to get my hands on the Lifecycle slides for Risk Record Lifecycle and Policy Exception Lifecycle. These are in the GRC Fundamentals course book but I only have a hard copy. I cannot find them anywhere on the partner collatera...
While creating a risk assessment type and associating the entity, we'd like to have several contributors to ONE assessment instance to provide input collectively as a whole among a team . Is this possible?
Hi, We build our entities and link them to entity types and assessment types to build Diagnostic in the Dev. Everything work fine in Dev and now we are trying to push it to Prod. We created an update set, making sure they are in the same Profile as ...
I've implemented indicator templates on a client instance but now we're trying to move them to another one. I had to forced those indicator templates as well as the M2M relationships between those and the control objetives but it appears that when I ...
OOB we are seeing the attestations being sent per control per ‘Assigned To’ user. This behavior is causing a lot of overhead for our end users. For example, if we have 20 Policy Statements with 10 Profiles this will generate 200 controls. Each of the...
Hello everyone, I would like to know if we could use "Advanced Risk" module with IRM Standard license. Thanks!
Can someone clarify below 2 points in risk rating: 1. The risk criteria in Service now has 3 elements - likelihood, impact and score. I understand the impact of score, when we enter SLE and ARO for risk it picks up calculated score basis risk criteri...
While creating Risk in SNOW we have option to choose risk from the already available categories - IT, Operational etc. However, is there an option to add further more categories? If yes which table can I use for same?
Does anyone have GRC : IRMI dumps or any study material to prepare for it's assessment.
Hello everyone. I'm working on a fix script for all of the old records. I want to copy the values of variables into a field. I've returned the following Script but it's not working. var gd = new GlideRecord('data'); gd.addQuery('sys_created_onRELA...
The Service now website under products in GRC modules shows - risk management and operational risk management as separate topics. However if one browse through the features they are kind of same, both talk about risk assessment, risk register, contro...
How do I print, view, or export a database schema for my SNOW instance and applications? I found the "Dictionary Entries" list of 99,000 + rows, but this is not at all helpful! How does a user or developer print what is classically called the databa...
| User | Count |
|---|---|
| 6 | |
| 4 | |
| 4 | |
| 4 | |
| 4 |
