we have a mandatory field "Scale factor" while creating attestations / assessments. There is no much information available in the documents also. How this will used in assessments/attestation results. I couldn't able to find where it is applied and t...
Introduction : In the ServiceNow documentation, we can find this sentence : When the risk mitigation task is in the Draft or Work In Progress state, you can either create more risk-mitigating controls for the risk or add existing controls from the li...
Hi Experts, On 'Business Continuity Workspace' -> Scope tab -> Add (ui action) On click on Add "Add Items" dialog box is coming up Question- Where is that dialog box, Add ui action define in the system and how we can increase the number records to be...
We are trying to clone the OOTB Heatmap report widget for sn_risk_advanced_risk_assessment_instance table, but the report is not pulling the records and showing No data to display, Can anyone provide your inputs on achieving the same.TIA
Hello, I came across to following scenario: Created a policy exception from an issue linked to a control without control objective.The system automatically added an "Impacted Control" which is visible through the related lists.I was able to proceed a...
Need help on flow and subflows How to call subflow from a flow in flow designer
Hi We need "SSAE 18 SOC" papers for an audit process, I have found two documents into the community site about it: ServiceNow Platform SOC 1 Type 2 Bridge Letter 03-31 2021.pdf ServiceNow Platform SOC 1 Type 2 Report 03-31 2021.pdf but for the second...
Hi All, I am working on requirement where a UI action will show all the related task based on assessment. I am facing two issues while developing this - From UI action code, I am unable to pass sys_created_on value of current record through Glide Aja...
How is the authority document compliance score calculated?
Hi All, We have authority documents imported into the table. However, they donot currently have any sourceID. When we do any integration with UCF - what will happen with these regulations? Are they not considered at all? Is it a best practise to h...
Hi team, I need some help in understanding the Compliance Status of a control. If the Attestation fails, that Control status is non-compliant and default functionality creates an Issue. Once the Issue is worked on and a Remediation is in place, how...
Quick Question - trying to understand the difference between user and operator licenses in ServiceNow? Amit
Hello. We are implementing IRM globally. We have consider naming each geographic location, and each Legal Entity (company), as an entity in IRM; however, it looks like many of you use entities for business functions, processes, even applications. It...
We just installed IRM. If I create a risk from a Risk Statement, the Risk inherits the description from the Risk Statement, but it doesn't let me edit that description for the risk. Is this the way it suppose to work? I would imagine that it should i...
Apologies for asking so many questions, but we just recently implemented IRM. We are debating on the advantages or not of using Risk Statements vs. creating individual risks without inherit any information from the Risk Statements. We are wondering ...
