ServiceNow IRM/GRC and SOX Audits

mjdeandrea
Tera Expert

Is anyone using GRC Audit Management to conduct SOX audits?  If so, how are you flagging control test failures that are significant deficiencies or weaknesses?  I'm seeing issues and observations but not seeing a way to flag either as a deficiency or weakness.  Thank you in advance for your help. Any insights, thoughts, or guidance is much appreciated.

2 ACCEPTED SOLUTIONS

Community Alums
Not applicable

Hi @mjdeandrea ,

How we are tracking the different flags for the control tests failures by the "Issue Type" Field present in Issue record.

SandeepDutta_1-1695370494375.png

 

So OOTB you have these options below but you can add more to these :

 

SandeepDutta_0-1695370450112.png

 

View solution in original post

mjdeandrea
Tera Expert

Thank you Sandeep.  Much appreciated.

 

View solution in original post

2 REPLIES 2

Community Alums
Not applicable

Hi @mjdeandrea ,

How we are tracking the different flags for the control tests failures by the "Issue Type" Field present in Issue record.

SandeepDutta_1-1695370494375.png

 

So OOTB you have these options below but you can add more to these :

 

SandeepDutta_0-1695370450112.png

 

mjdeandrea
Tera Expert

Thank you Sandeep.  Much appreciated.