GRC forum

Impact Analysis assessment RTO & RPO

For all questions in RTO and RPO assessments in the "Assessments" tab of a BIA (sn_bia_analysis) in workspace view, the text box currently titled "Additional note (Optional)" should be renamed to "Justification"

Generate Issues Even if there is already an open Issue connected to the same control in control IRM.

Hi,I wanted one help to know that, I want to generate new issues for the controls even if there is already one issue opened in the system for the same control. Now OOTB feature works as if there is already one existing issue in the control and the is...

Embed an attachment into a word export

I generate word document out of the record with a custom button in record. I am looking around to add a feature to embed attachments in record to the word document I generate, so that the document will have all the attachments embedded too instead of...

How to restrict related assets when creating a DR plan

I am trying to create a DR plan, and when I select the target application as the primary scope, I am getting WAY more CMDB relationships than what I want or need as related assets. Is there any way to restrict the related assets to first level CMDB ...

Resolved! How to add a new sset type under scope tab of the plan in BCM Workspace

I have a new requirement to add a new table and also filter out some data from an existing table under Asset type column which is present under Scope tab of the plan in BCM Workspace. I checked the app route and screen collections but could not find ...

Automated factors? sn_compliance_control?

HelloAny one got some nice explanation how does Automated Factors work - practical ?All trainings are only about manual. I'm running my tail to understand this.Customer is asking:If we have an automated factor on a RAM and the factor looks at changes...

How to fetch the risk factor response choice values from Risk assessment form in client script?

Hi All, Im trying to get the choice values of factors which is in Risk assessment form. These factor choice values are stored in risk factor response table. Based on factor response choice values, we need to show error message in Risk assessment for...

How to use NIST CSF - The use cases of Framework Profiling

I would like to know about the use cases of Framework Profiling in NICST CSF accelerator. 1. How you will be creating targets, orient targets, create activity, create gap analysis, create action plan2. Any workflow explaining which activity to be do...

Patch Upgrade pratical demo

Hi all, If you know about patch upgrade(Practical) Washington DC can anyone share the doc/video.

Understanding Policy life cycle in ServiceNow GRC Washington D.C.

Are there any good free resources to help me understand the policy life cycle in ServiceNow GRC Washington D.C.? I'm trying to get a better understanding of the workflow and configuration options that are available out of the box.

Survey and Regulatory Change Management.

Hi All, I have a clients' requirement for integrating Surveys and Regulatory Change Management, The use case is, a Survey should be sent out based on the schedule job and the answers from the Survey to me captured in the Regulatory Alerts. Can any on...

NIST CSF Use Case Accelerator

Hi, We are implementing the NIST CSF Use Case Accelerator and would like to delete the policies that are out of scope from the instance as they are not needed for the customer. I have tried various options, such as deleting records, removing rel...

[RESOLVED] Update BCM Plan Document Section

I'm making changes to the document section for all BCP templates. Aside from creating new BCPs, how can we update existing plans that only need this one change? It seems that copying doesn't pull the updates. With 750 plans on hand, I can’t ask every...

Edit Issue Title and Description

I've input wrong information in GRC. Can I edit?

GRC Module - License Model

We are new to GRC module (IRM) so we have purchased around 10 licenses to be provided to the Sr. Team. But we do have users who just reads only risk records (does not perform any action other than read only). What would be the best approach or best p...

Forum Posts

Impact Analysis assessment RTO & RPO

Generate Issues Even if there is already an open Issue connected to the same control in control IRM.

Embed an attachment into a word export

How to restrict related assets when creating a DR plan

Resolved! How to add a new sset type under scope tab of the plan in BCM Workspace

Automated factors? sn_compliance_control?

How to fetch the risk factor response choice values from Risk assessment form in client script?

How to use NIST CSF - The use cases of Framework Profiling

Patch Upgrade pratical demo

Understanding Policy life cycle in ServiceNow GRC Washington D.C.

Survey and Regulatory Change Management.

NIST CSF Use Case Accelerator

[RESOLVED] Update BCM Plan Document Section

Edit Issue Title and Description

GRC Module - License Model

How to show info message on related list in Risk W...

Marking Issues as Self-Identified

Digital Resilience Incident Reporting status autou...

Custom scoring with multiplication/addition formul...

Can we apply formula scoring logic at SAE template...

Control Attestation Scoring through Smart Assessme...

Workspace Views - linking to specific dashboard

Roles required for Policy Ownership, Issue Ownersh...

Control Attestation

Compliance Workspace: Dot-walked 'State' field sho...

Classic vs. Smart Assessments Implementation

Clarification on Usage of Category vs. Type Fields...

Error Importing Shared List in ServiceNow–UCF Inte...

Download assessment questions

How to customize reference information for assessm...