How the compliance score calculated in Entity record ? will in the score include downstream control?

Raviteja24
Tera Contributor

Raviteja24_0-1720776503689.png

Here the compliance score was calculating based on that entity related control but remaining controls were not included in scoring 
Can someone help me on this?? 

6 REPLIES 6

Namrata Ghorpad
Mega Sage
Mega Sage

Hi @Raviteja24 ,

 

Please watch the below video in that they have mentioned how to calculate compliance score.

https://www.youtube.com/watch?v=muNwpynItEg 

Please refer below links as well.

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB0716583 

https://www.servicenow.com/community/grc-forum/how-is-compliance-score-percentage-calculated-in-poli... 

https://www.servicenow.com/community/grc-forum/compliance-score-of-entity-a-required-to-track-compli...

 

Please mark my answer as correct and helpful if it helps you.

Regards,

Namrata

 

 

Namrata Ghorpad
Mega Sage
Mega Sage

Hi @Raviteja24 ,

 

Compliance score on entity will be calculate based on the downstream controls added the entity in related list.

If there are 2 control attached to entity and 1 control have weighting value as 10 and other control have weighting value as 20 then add that weighting of both control. 

If 1 control is compliant then take value for that control as 10 and if another is non compliant then take value as 0.

So for that entity calculation will be : 10+0/(10+20)*100=33%

 

Formula to calculate compliance score is :

Compliance Score= Sum of weight value of all Compliant Controls/(Sum of weighting value of all controls)*100

 

Please mark my answer as correct and helpful if it helps to resolve your issue.

Regards,

Namrata

Hi @Namrata Ghorpad,

Thanks for the above solution on calculating the compliance score .
I have a small doubt if suppose we are calculating entity A compliance score , the all controls associated with the entity A controls are involved in calculation or the total controls having different entities , entities which are added in downstream entities related controls are also considered in calculation??
Can you pls update on this !

Thanks,

Hi @Raviteja24 ,

Here entity compliance score will calculate based on the downstream control that are only associated with entity A and it will not calculate total controls.

So you need to apply the filter on Related List "Downstream Controls" like below.

Entity is your current entity and and status should not NULL and should not "Not Applicable".

so filter query will be like below profile=e48f97d30f9412004e938fbce1050e31^status!=NULL^status!=not_applicable^ORstatus=NULL

and check this total controls and take sum of weight of these controls.

after that check how much controls are compliant out of these and then take sum of weight of compliant control divided by sum of total controls weight and then multiply by 100.

 

Please mark my answer as correct and helpful if it helps to resolve your issue.

Regards,

Namrata