GRC forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! GRC - delegation of Control/Risk assesments

Hello all, I've been trying to find any solution or guides and tips, if it's even possible... I have a request, that as GRC user, i want to be able to delegate my assigned controls to other users, so that delegated person can take over the job in abs...

Field is not updating

Hi,'Control Executor'(List Field- user table) field is on Control(sys_compliance_control) table. 'Assigned To' and 'Evidence Execution' fields on Control execution(sn_audit_control_execution) table. condition : Evidence execution is Manual and for ex...

Shaik22 by Tera Expert
  • 163 Views
  • 1 replies
  • 0 helpfuls

Issue seeing the Privacy assessments on ServiceNow Portal

Hello, I am running into an issue when i try to take a privacy assessment, i do not see any of the questions listed from my template in the customer instance. I tried to replicate this on my PDI, and it works fine with the same template and OOB confi...

Sameer32 by Tera Contributor
  • 221 Views
  • 1 replies
  • 0 helpfuls

Result on Residual risk does not match heatmap color

Hi I have configured a qualitative rating criteria for my residual risk assessment and enabled heatmap. The x axis is the impact and the Y axis is the likelihood.  This is the heatmap template I want to configure in ServiceNow with the results:I have...

image (3).png image (2).png image (1).png
Nabilah by Tera Contributor
  • 343 Views
  • 2 replies
  • 0 helpfuls

Resolved! What the the following tables used for?

Hi,  What are the following tables used for?Control Objective to Configuration Controlsn_compliance_m2m_policy_statement_confguration_controlControl Objective to item sn_compliance_control_objective_itemControl Objective to Control Objective sn_compl...

KrithikaV by Tera Expert
  • 2261 Views
  • 3 replies
  • 3 helpfuls

Resolved! How to configure control objective hierarchy

Hi,I have the following control objective in NIST CSF :PR.AC-4: Access permissions and authorizations are managed, incorporating the principles of least privilege and separation of duties For this, we perform the following two assessments and produce...

KrithikaV by Tera Expert
  • 674 Views
  • 1 replies
  • 0 helpfuls

Resolved! Make all fields read only for specific user in form except one

Hello experts, I'm struggling with how to approach a requirement I need. On an Auth Pack form on CAM, I need the IS Security Manager to only be able to edit one field and the rest read only. Been struggling with UI policy. Any help is greatly appreci...

RandiReyna by Tera Contributor
  • 377 Views
  • 6 replies
  • 1 helpfuls

Resolved! Interactive filters issue in Control Objective and Control Table

Hi All   My requirement is to create an interactive filter on Control Objective table and the report created on 'Control' table to should get updated w.r.t. that.   1. I created an interactive filter on 'Control Objective' table   2. In step 2, I a...

HarditSingh1_0-1724844649937.png HarditSingh1_1-1724844657720.png HarditSingh1_2-1724844770767.png HarditSingh1_3-1724844814660.png
Community Alums by Community Alums  
  • 389 Views
  • 1 replies
  • 0 helpfuls

Cloning GRC application - cloning only audit management

Hi all, We are in the process of cloning. We have different data for GRC application on TEST and PRD and the business wants to preserve the GRC data with respect to Audit Management on TEST and prevent it from being overwritten by PRD. I have been in...

Control Inheritance Chain

Hello! We are trying to put our Authorization Packages in ServiceNow but are having trouble replicating the structure. We have three scenarios:1. Given the main Auth. Package (P1), another package (P2) has a Hybrid control (C1), inheriting from P1. A...