When the Updated by field shows "system" rather than a user ID, does that mean the record was imported from another system or maybe imported from Excel? Is there a way to figure out what system updated the record? The Source field is blank. Thanks ...
Hello, I am currently trying to upload from template. However the upload shows rows with errors in import set. Unfortunately I am not able to view the error messages in order to fix them Even if I select the "gear button" and get the errors tab to be...
Hi All, We are working on Advanced risk management and enabled the Risk Workspace. We have created a Risk Assessment Methodology and enabled Heatmap Configuration for it. But, when we see it on the Risk Workspace, we are not able to see any data on...
Hello Experts, I have a attestation template to use for my list of controls. While creating my controls from entity type and control objective all the controls are creating in draft stage and ready to attest . The controls are having the control ow...
Hi all,I'm new in GRC I am having hard time understanding difference between class titles ServiceNow offered last year and what's is being offered now:Last year (Orlando release time) there ServiceNow was offering the following classes: Governance, R...
Can someone explain me why is risk assessment methodologies used for ? And how does it work ? And what does it impact? Thank you for you help.
Is there a way where you can have your control objective and your control different? We want to use the control objective and create our own controls, but it seems when you tie in the control objective it automatically populates it for you and there ...
Hi, The Control/Risk fields are missing on the Assessment Instance "GRC Attestation" view, so the user wouldn't know which control the attestation is for. However, when I looked at the OoB view GRC Attestation I noticed that the fields are actually t...
Hello, I'm trying to figure out what are the GRC roles which are eligible to license 'IRM user'. Thanks a lot, Arnaud
In the domain of IT Security Risk Management, it is typical to model risks in a way that captures their impact on one - or more - of the 'classic' CIA (confidentiality integrity availability) security dimensions. As a basic example, the general risk ...
I'm curious to know: When using Audit Plans, do you first set up the Plan or the Engagements?Do you allow the users to have the it_project_manager role for the project to be created or limit this and keep it to audit plans?what is the benefit of the ...
Hi, there! I'm proceeding with learning how to use GRC module. I found good material in now learning. But, during the material, I need to turn on the "Creates controls automatically" flag. But I couldn't turn on the flag. Please see following video...
UI Policies-Make field read only in review state Hi, I am writing a script for making the fields read only for a particular state(Review). I want the member of a specific group(member of IT_GRC(sys_id+76c540dbdb8cd090c7d99c18db961941)) only should be...
I am trying to create an entity filter for the Department table based on field values on that department's related CI records. (For example, departments with operational CIs.) Because this can't be done using the filter conditions UI we have created ...
