Resolved! Is the GRC Service Portal available OOB?

Resolved! How to set the qualitative feature true in Risk management

I am new to GRC:Risk Mangement , I want to set the qualitative feature to true to compute risk score in risk register . Can anyone tell me how can i do that? Also when a risk is created through risk statement and after filling the assessment question...

Resolved! Attestation not created for control, even if control has an attestation associated

I have few controls for which attestations are not at all getting created. The control is already associated to the attestation. I notice this happening, when I make some changes to the attestation in our dev environment and then commit those changes...

Resolved! Use of Exempt Flag in Control

Hello Experts, We have this flag exempt. But I am not sure what is the business use of this. I know that if issue is accepted, an exception needs to be created. But Who sets the exempt flag?   What happens if exempt flag is checked? Does it not gener...

Resolved! GRC integrations

can anyone explain about below four integrations.which is better and why, what does it brings.  ions

Resolved! Ownership of Policies & Admin Roles

I understand that the sn_grc roles are changing in Orlando (per this post https://community.servicenow.com/community?id=community_blog&sys_id=7d07e198db4b0cdc5ed4a851ca961994)The question I have is based on the following scenario. I have two differen...

Resolved! How to adjust Risk Criteria

Hi All, We are in the process of implementing Risk Management and have a custom rating matrix as shown below. Depending on the Likelihood and Impact the score should be A, B, C or D. Can someone please suggest how to adjust these values in the Risk C...

Resolved! Authority Document vs Policy

We are debating whether to setup our internal Quality Manual (which contains our basic IT general controls) as a Authority Document or a Policy.  Is there a reason why we couldn't\shouldn't setup as an Authority Document?  Appreciate any suggestions.

Resolved! GRC: Risk tables and hierarchy

hello all, We recently installed few grc modules and I am trying to figure out the hierarchy of risk levels and tables. We have some custom framework already set up and we have Risk levels 1,2,3,4 as individual tables. Do we have such hierarchy in gr...

Resolved! Why we have control objective in citation

Why we have control objective in citation. can anyone give me an example and explain

Resolved! Stale Entity deletion

How do I delete Entities that are not related to any other record. I cannot even remove the Entity Filter in the Entity Type. We are going through a clean up effort on old data before we launch our go-live and this is the last remaining piece. Any he...

Resolved! what is the purpose of GRC indicators?

Hi, What is the purpose of GRC indicator and indicator templates? How is the indicators in Policy and Compliance related to Audit mangement indicators? Thanks.

Resolved! GRC Risk Indicators of type Manual do not execute automatically to produce a indicator task

Hello all, I am attempting to successfully trigger risk indicators of type manual. Triggering this indicators should in turn create indicator tasks which are also not being automatically generated. I have already activated the 'GRC indicator nightly ...

Resolved! read access to sn_grc_profile not granted

Hello Experts, I'm learning how a scripted Indicator works. But facing the issue, help me to figure out.       Error : com.glide.script.fencing.access.ScopeAccessNotGrantedException: read access to sn_grc_profile not granted Log   Script include. in...