Trying to sort out the workings of GRC controls.Anyone has any ideas or pointers?Perhaps I'm doing something horribly wrong here, so any help is appreciated OverviewI can't seem to get a manual Indicator to update the Control's status.When setting an...
Hello, OOB, there is an Attestation 'GRC Attestation' which has as question 'Is the control implemented?', if the user answers NO to this question, the control state is changed to non-complaint and an issue is automatically created. Q1: how is the co...
I need to perform a task to create three risk records with single entity and three RAM's should be added to each risk record to perform assessment.Any solution ?Thanks,
In Zurich - in IRM - I am looking for the role SN_GRC.Issue_Manager and its not there.What this means is that in an Issue record when trying to add an Issue Manager Group, I cannot add any because the role for issue manager is MIA. Can anyone else pl...
Hello! I have been getting stuck with an access use case. We leverage a MSP and they have a compliance team that requires read only access to issues that were identified by MSP employees. We have been adding the MSP employees to the watch list and pr...
Hello!I've recently been asked to review how the approval is being generated for Policy Exception Extensions (and potentially change it). I know that it goes to the person in the "assigned_to" field on the Policy Exception, but what I can't find is w...
Hi Everyone!In order to migrate legacy attestation to Smart Assessment, we have an OOTB Workflow - Generate smart assessments for control. This workflow is not getting triggered on updating the state of control to Attest. It's throwing an error - "Ta...
I have a user who is attempting to complete their BIA. In one of their BIA's, there are no vendors to add in the dependency assessment for that particular BIA. However, the Complete button is grayed out, and they are unable to submit the BIA since ...
I am trying to edit list of entities which should show up when clicked on 'Risk assessment' in Regulatory Alert record in compliance workspace. Could anyone help me on how to do it, please ?I am unable find the event which declarative action 'Risk As...
Hi Folks,I need help with reordering of the related list in Business Continuity Workspace(BCM) -> Plan.I have tried updating related list on sn_bcp_plan under workspace view and reordering workspace view rules but it haven't helped.Problem is when I ...
Hello,I am working on BCM and integrating Servicenow with Everbridge using OOB connector. However, Only Basic Auth is supported and I have noticed the same limitation with other connectors too. Is there any possibility to configure Oauth for the conn...
What Happens to a Policy on the Valid to Date? Is it moved back to Draft state for revision/approval or its retired?
got the following error when using OSCAL import standard SSP. Alert level: Critical.Profile JSON contains a 'href' tag with a URI reference UUID pointing to a Catalog that cannot be found in the specified Catalog/Catalog Overlay. got exact same ...
Does anyone know how these four fields for sn_grc_profile table are being filled? max_calculated_ale, min_calculated_ale, avg_calculated_ale and sum_calculated_ale. I found a script include that seems to do it but upon further analyzation and followi...
By managing the control attestations I want to monitor one control which is related to different entity classes. For example entity class Business Processes (cmdb_ci_business_process) and entity class Business Unit (business_unit). The objective is t...
