I have created an approver group for GRC Digital Resilience Incident Reporting (DRIR) application with roles of "sn_dri_inc_rptg.digital_resilience_incident_user" and "sn_oper_res.user". The approvers need to have Read only access to the DRIR case,...
Hello Team,We would like to understand how collaboration is expected to be achieved in Classic Control Attestations within ServiceNow GRC/IRM. Specifically, we would like your guidance on:* Whether Classic Attestations natively support collaborative ...
Hi everyone,I’m facing an issue with the Risk Assessment Scheduler and would appreciate some guidance.I need to move an entity from one Risk Assessment Scheduler to another. Currently, an entity can only be associated with one scheduler at a time, so...
As part of our Third-Party Risk assessments we do a full SOC2 Type2 Report review. As part of that review we are required (by our upper management) to obtain attestations from vendor contract owners that any Complementary User Entity Controls (CUECs)...
Is it possible to modiffy the inherent and residual assessment scoring criteria after the RAM is published? I am not making changes to the factors, just want to change the qualitative scoring criteria.
Hello Experts, We are currently working no 'Risk Management' Application in GRC Universe. When user selects 'Accept' as the Response on the Risk Register, then an "Acceptance Risk Response Task" is generated. This task has a field called "Acceptance ...
We can leverage the migration tool from the Smart assessment engine to migrate the Classic questionnaire templates and metric categories to Smart questionnaire templates and sections.I want to know if there is a way for us to migrate the Classic asse...
Hi Dev, I want to download the attachment directly by clicking the bia.docx link as shown below. right now the record is getting open as per 2nd image.So can some one help me to know how can i download the attachment by directly clicking from list vi...
Hello Team, There is a scenario, where Smart Assessment and Legacy assessment have a different set of contents, hence user wanted when he/she will click on "Generate PDF" button then if it is Legacy assessment then it should give different content an...
Hello experts,I’m setting up Entity-Based Access in GRC and running into a weird issue. I’ve done the following so far:Installed the Entity-Based Access pluginEnabled the property: sn_grc_ent_access.enable_entity_based_accessCreated an Entity Acces...
Hello, Unable to find backend configuration for attached filter. This filter is visible to all user and users are unable to remove the filter.Could you please help me like where i can see the backend configuration for this as i need to remove this fi...
Hello everyone,I need some help regarding the UFC Spoke plugin in ServiceNow. Could someone explain the technical steps required to download the controls and ISO 2022 citations?Do I need to create an account somewhere?Is this feature free or paid?Aft...
Hi all, Client is moving from VRM to TPRM and they want to estimate how many engagements will be needed.How can I calculate engagements? I assume that I should consider number of vendors, assessments per vendor and contracts per vendor.How can I cal...
As we are starting our journey to convert classic attestations to new attestations using the Smart Assessment engine we found ourselves at a decision point on how we migrate the templates between the environments. Background: we cannot build the temp...
Hi, We are trying to use SAE for control attestation but When we launch control attestations, the Smart Assessment Engine generates one assessment task per control. In our scenario, a single control owner has 20 applications (entities), and each app...
