What is Process Risk and Control in GRC and IRM product?

Tejas9
Tera Expert

What is Process Risk and Control in GRC and IRM Product?
Can anyone explain with an example?

Does it mean that how business processes are related to risk and control?

2 ACCEPTED SOLUTIONS

Community Alums
Not applicable

 Hi @Tejas9 ,

It all starts with Control objective, which means when you add a risk statement and entity typre of "business process" to controls gets generated and it has it's own lifecycle, similarly when you add entity type to risk statement, then associated risks gets generated.

Example :

I am going to add the business process entity type to to control objective :

SandeepDutta_0-1724118133788.png

SandeepDutta_1-1724118173146.png

Now, if you see there are multiple controls gets generated :

SandeepDutta_2-1724118215871.png

Now, the control will follow it's lifecycle :

SandeepDutta_3-1724118264992.png

 

Now, We do the same for Risk Statements:

SandeepDutta_4-1724118316023.png

Now, Risk will have it's own lifecycle:

SandeepDutta_5-1724118343370.png

 

View solution in original post

2 REPLIES 2

Community Alums
Not applicable

 Hi @Tejas9 ,

It all starts with Control objective, which means when you add a risk statement and entity typre of "business process" to controls gets generated and it has it's own lifecycle, similarly when you add entity type to risk statement, then associated risks gets generated.

Example :

I am going to add the business process entity type to to control objective :

SandeepDutta_0-1724118133788.png

SandeepDutta_1-1724118173146.png

Now, if you see there are multiple controls gets generated :

SandeepDutta_2-1724118215871.png

Now, the control will follow it's lifecycle :

SandeepDutta_3-1724118264992.png

 

Now, We do the same for Risk Statements:

SandeepDutta_4-1724118316023.png

Now, Risk will have it's own lifecycle:

SandeepDutta_5-1724118343370.png

 

Community Alums
Not applicable

Hi @Tejas9 ,