Need some information on Risk and Compliance score roll ups and hierarchies

somjyotisinha
Tera Contributor

‎08-05-2024 05:03 AM

Hi all,

 

I have a few queries regarding entity hierarchies and risk and compliance score roll ups. Could anyone please answer them? Thanks in advance.

Question 1:

Is there a way to have multiple entity class hierarchies on the same instance?

For example, is it possible to have both of the following hierarchies on the same instance:

Entity Class A (Top level Parent) - Entity Class B (Child) - Entity Class C (Grandchild)

Entity Class D (Top Level Parent) - Entity Class E (Child) - Entity Class F (Grandchild)

 

Question 2:

We are using classic Risk Management (not Advanced Risk Management). Does Risk Score roll up work for it, if we have an Entity class hierarchy in place?

How can it be set up, and where are the rolled up risk scores located?

 

Question 3:

Compliance scores are getting rolled up at the Entity Type level based on the entities. Are compliance score rollups also available at the following levels:

Entity level - Is the compliance score for an Entity rolled up, based on scores of its downstream entities? If this feature is available, how can it be set up?

Entity class level - Is the compliance score for an Entity class calculated based on its entities? If this feature is available, how can it be set up?

 

0 Helpfuls
  • 834 Views
5 REPLIES 5

AnubhavRitolia
Mega Sage
Mega Sage

‎08-05-2024 05:12 AM - edited ‎08-05-2024 05:15 AM

Hi @Anushree Randad @Community Alums  Need you inputs and suggestions here.

Please mark this as correct answer and helpful if it resolved, or mark this helpful if this help you to reach towards solution.

Thanks
Anubhav Ritolia
ServiceNow Rising Star 2023
LinkedIn Profile 
0 Helpfuls

Community Alums
Not applicable

‎08-05-2024 07:35 AM

Hi @somjyotisinha  and @AnubhavRitolia ,

 

For your First Question, Yes !! You can have classes to have parent child relationship, look at this example :

SandeepDutta_0-1722868086452.png

Make sure, you mark the Parent as "Root"  or use Parent field :

SandeepDutta_3-1722868228413.png

 

The hierarchy would look something like this > USE GRC Workbench to visualize the same:

SandeepDutta_2-1722868184886.png

 

For your Second Question: Risk Rollup is possible using Advanced Risk Management.

For your Third Question : Compliance scores rolls up Entity Type and entity Level based .

Entity Type Compliance Score is based on the calculation done for it's following entities underlying that particular Entity Type:

SandeepDutta_4-1722868495119.png

SandeepDutta_5-1722868522741.png

 

 

somjyotisinha
Tera Contributor
In response to Community Alums

‎08-06-2024 02:21 AM - edited ‎08-06-2024 02:59 AM

Hi @Community Alums,

Thanks for your reply! These partially fulfil what we are trying to achieve.

Further to my third question, could you please also let me know about the following:

If downstream entities exist for a particular entity, are their compliance scores rolled up to the upstream entity?

I was trying this out but it wasn't getting rolled up. Is there any out of the box feature to achieve this?

Thanks in advance!

 

EDIT: I found an out of the box scheduled job named "Compliance Score" which runs every 2 minutes, but it doesn't seem to calculate anything even after manual execution. Do you have any insights on the same?

0 Helpfuls

Community Alums
Not applicable
In response to somjyotisinha

‎08-06-2024 07:08 AM

Hi @somjyotisinha ,

If downstream entities exist for a particular entity, are their compliance scores rolled up to the upstream entity? NO