How 'has downstream controls' flag updated in Citation of an Authority Document

ShafrazMubarak
Giga Guru

We have set 'sn_compliance.calc_empty_downstream_scores' to FALSE and therefore, the citation scores of an authority documented is calculated based on the child citations and then rolled upwards. 

 

The compliance score of the authority document is calculated based on the filter condition ACTIVE = TRUE AND PARENT IS EMPTY AND HAS DOWNSTREAM CONTROLS = TRUE. This filter condition gives the number of citations and out of that, the compliance score is generated. 

 

Since we are set to calculate the score from child citation, we have to open each parent citation and drill down to see if there are any control objectives mapped and for them the controls are created.  In the workspace, there is a widget for Authority Document overview which shows the compliant breakdown. The number of controls showcased here is different from what is given in the filter condition of the authority document compiance score logic. 

 

is there any direct way to see what are the controls created from any citation of the authority document and see the break down? 

 

 

 

 

 

 

1 REPLY 1

naveenkaush
Tera Contributor

It sounds like you're dealing with a complex setup in ServiceNow's Governance, Risk, and Compliance (GRC) module.

To directly see the controls created from any citation of the authority document and get a breakdown, you can follow these steps:

  1. Navigate to the Citation Record:
    • Go to the Policy and Compliance application.
    • Select Compliance > Citations.
    • Open the citation record you are interested in.
  2. View Associated Controls:
    • In the citation record, there should be a related list or section that shows the Control Objectives and Controls associated with that citation.
    • This will give you a direct view of all controls linked to the specific citation.
  3. Authority Document Overview Widget:
    • In the workspace, use the Authority Document Overview widget.
    • This widget should provide a breakdown of the compliance status and the number of controls for each authority document.
  4. Custom Reports and Dashboards:
    • If the default views do not meet your needs, consider creating custom reports or dashboards.
    • Use the Report Designer to create a report that lists citations and their associated controls.
    • You can also create a dashboard to visualize this data more effectively.
  5. Scripted Solutions:
    • For more advanced needs, you might consider using scripted solutions to automate the retrieval and display of this information.
    • This can be done using Business Rules or Script Includes to fetch and display the data as needed.

These steps should help you get a clearer view of the controls created from any citation and see the breakdown more effectively. 

 

I would recommend to keep it simple rather than go in complex solution, I hope this approach may help you achieve it with recommended usage of platform.