Control Status after Attestation Failure and Issue Management Process.

Mehernosh Amrol · ‎03-16-2022

Hi team,

I need some help in understanding the Compliance Status of a control. If the Attestation fails, that Control status is non-compliant and default functionality creates an Issue. Once the Issue is worked on and a Remediation is in place, how does the Control become "Compliant"?

Any guidance is helpful.

Thanks in Advance.

M.

Sushma Rudrayai · ‎03-17-2022

You're right, if an attestation fails > an issue is created OOB functionality, there are 2 ways you can resolved the issue with (remediate and accept)when the issue is resolved with remediate code the control status becomes compliant because you have a remediation action plan created . If you ACCEPT the issue the control stays non complaint until the control has to be reassessed to make it compliant or the indicator should pass.

hit helpful if it did 🙂