Hello all, I've been trying to find any solution or guides and tips, if it's even possible... I have a request, that as GRC user, i want to be able to delegate my assigned controls to other users, so that delegated person can take over the job in abs...
Hi Team, Is it possible to send the approval to assigned to's manager and particular group for the same record at a same time?If yes then How, and how the approved or reject logic should be developed this
Hi,'Control Executor'(List Field- user table) field is on Control(sys_compliance_control) table. 'Assigned To' and 'Evidence Execution' fields on Control execution(sn_audit_control_execution) table. condition : Evidence execution is Manual and for ex...
Hello, I am running into an issue when i try to take a privacy assessment, i do not see any of the questions listed from my template in the customer instance. I tried to replicate this on my PDI, and it works fine with the same template and OOB confi...
Hi I have configured a qualitative rating criteria for my residual risk assessment and enabled heatmap. The x axis is the impact and the Y axis is the likelihood. This is the heatmap template I want to configure in ServiceNow with the results:I have...
Hi, What are the following tables used for?Control Objective to Configuration Controlsn_compliance_m2m_policy_statement_confguration_controlControl Objective to item sn_compliance_control_objective_itemControl Objective to Control Objective sn_compl...
Hi,I have the following control objective in NIST CSF :PR.AC-4: Access permissions and authorizations are managed, incorporating the principles of least privilege and separation of duties For this, we perform the following two assessments and produce...
Hello experts, I'm struggling with how to approach a requirement I need. On an Auth Pack form on CAM, I need the IS Security Manager to only be able to edit one field and the rest read only. Been struggling with UI policy. Any help is greatly appreci...
Hi All My requirement is to create an interactive filter on Control Objective table and the report created on 'Control' table to should get updated w.r.t. that. 1. I created an interactive filter on 'Control Objective' table 2. In step 2, I a...
Hi all, We are in the process of cloning. We have different data for GRC application on TEST and PRD and the business wants to preserve the GRC data with respect to Audit Management on TEST and prevent it from being overwritten by PRD. I have been in...
Hello! We are trying to put our Authorization Packages in ServiceNow but are having trouble replicating the structure. We have three scenarios:1. Given the main Auth. Package (P1), another package (P2) has a Hybrid control (C1), inheriting from P1. A...
Description:Hi Everyone,I am currently working on a Business Continuity Management (BCM) application for a client, and we've encountered a challenge that requires your assistance.Background:In the process of creating an Impact Analysis record, there ...
Hello All, Could use some guidance. I have a field "Authorizing Official" with the CAM role sn_irm_cont_auth.authorization_official. I have another field ''Co-Authorizing Official'' and I need to be able to select the remaining users in the same gro...
Hi All, I have a requirement to replace impact and likelihood values with the new values for the Risk scoring calculation.What happens to the existing records with the older values, will that also gets updated? If not, is there is a way to update the...
