We have our corporate policies mapped to UCF Citations and other citations imported for authority documents. We need to create a list view report on following scenarios. Is there a way apart from database view, we can achieve this. 1. Control Objecti...
I have a doubt to be cleared from the GRC community. Usually, we draft the policies and every policy statement in the policy are created as control objectives under the policy. Similarly, Standards, Procedures, Operational Manuals also can be create...
How metric data task flow works?Linear stages New->In progress->Awaiting approval->closedTo whom approval is send? what could be the reason of not sending the approval?@Community Alums
We have client that decided to use SSO for their SN access which most people considers best practice. Then the client purchased Vendor Risk Management and based on the SN defined standard VRM vendor user management workflow* and the large number of v...
Hi, We are looking to import risks and controls that are currently being managed on spreadsheets to ServiceNow IRM. Would we be able to populate the related list with the excel import (for example. would we be able to populate the control a risk is r...
Hello all. Our company is still operating under the Legacy GRC skull entitlements, which I believe it stopped enhancements back on Madrid or New York. But it is still up and running. Does anyone know when the legacy modules go to end of Support? Tha...
Hi, I'm configuring risk workspace overview tab variant which is created on risk default record pre details: https://instancename.service-now.com/now/builder/ui/pc/6cce1b7131eb1110f877707813070e22/I try to add components in ui builder to a container ...
UI action name button on the table(sn_compliance_policy_acknowledgement_instance) : "Accept"While renaming the oob ui action on this table, its perfectly reflecting on the native view, but the name remains same on the workspace view.eg. Renaming "Acc...
Hi Team, A VP left company and there are Issues and other objects that are owned by this user. A new VP replaced the user.Now these objects are still owned by the user who left.Hence I need to identify these objects and update them through a script.E...
Hi Community, I have requirement to remove Weighting field from the list layout of Controls that is displayed under Control Assessment while performing Advanced risk assessment in workspace - I am unable to find the place where it is configured?
Hi, I understand that the assets for which the compliance has to be checked are configured as Entities. If a control objective is to enforce encryption on database servers, the database servers can be configured as an Entity Type and individual datab...
I made changes to the issue form, and without saving it, I navigated to the policy exception form. After making changes to the policy exception form, I saved the record. Then, I have navigated back to the issue form and tried to save it, but it redir...
Hi, Can someone help me to understand the script/configuration behind the autoclose of issues when all remediation tasks are closed. I know OOTB there is a property "sn_grc.automatically_close_all_issues_when_all_tasks_closed" Which when set to true ...
When we complete the scenario analysis, the results show whether the target business service is in violation or not, but is there anything else we can know as a result of the analysis? (We do not know how actual users utilize the results of the analy...
What is the difference between Operational Resilience's scenarios and scenario analysis? Especially for scenarios, I don't think there is any use case for scenarios, just to tie events together and store them, to be used for some other data or functi...
