Requirement - To assess asset riskCIA using Confidentiality, Integrity, and Availability (CIA). - Checked ServiceNow out-of-the-box functionality for CIA-related fields.- Identified CIA impact fields on the Business Process (cmdb_ci_business_process...
Hello ServiceNow Community, I'm working with ServiceNow GRC Advanced Risk Assessment and need guidance on updating specific values in the Residual Assessment Matrix without impacting other records. Current Matrix Configuration:Inherent Risk Control E...
Hello Everyone,We have defined a RAM for risk team to perform risk assessments , now that our client do not want to provide risk response comment every time he takes up an assessment. Is there a way we can make comments for risk response not mandator...
Greetings. I need to edit the Details pane on the right hand side of the smart assessment within the compliance workspace. I need to change the regular text field into a rich text field. However when I leverage the UI builder to navigate to the smart...
1. Are Attestations meant to be reviewed by the Compliance team? The functionality of the Control Attest State does not allow for Compliance to followup after the Control Owner attests/adds evidence because it automatically 'completes' the attestati...
Hi, everyone. Risk events have "Expected loss" field and "Potential loss" field. What functional differences exist between them?I have confirmed that entering values into the Expected loss field reflects the Expected loss figure at the top of the Ris...
Hello Everyone,When I testing the Mandates on compliance workspace. I got a one defect Which is The 'Compose' Heading is missing in the mandates records of Activity section on right side. But when I move the mouse over to that one of the field in tha...
Can any one help me to sort out this thing in IRM.As a CDO delegate land into compliance workspace homepage, then under quick links, I should be able to view control report. Present CDO delegate unable to access the Control report.
I wanted to know complete flow of Evidence Request in IRM and how do we collect the Evidence, what is use of 'Evidence Collection Details', what is Evidence?Can someone explain me the use of Evidence request with the example of Control record.
In Compliance Workspace- New Button is not visible to CDO, CDO delegate on Risk Statement related tab on all states of control definition. But Here problem is On Declarative actions New button is in Inactive state and On Ui actions there is no new bu...
Anyone worked for integrating servicenow with any GRC tools? If yes please share any documents available.
We have a requirement where client documents are stored in Microsoft OneDrive, and we need to use these documents in policies within ServiceNow. Once these policies are approved, they should be converted into knowledge articles. However, we are unsur...
Governance, Risk, and Compliance (GRC) are critical components for any organization aiming to manage risk effectively, stay compliant with regulations, and ensure business continuity. But managing these manually is complex, time-consuming, and prone ...
Hi All, We have a requirement to generate an audit report in word format at an engagement record level. In order to meet this requirement, we came across a ServiceNow plugin which supports this functionality i.e. "ServiceNow Document Designer with Wo...
I have heatmap, where i can use two colors to define them which is available in out - of - box configurationbut i need to define multiple colours to define heatmap.this is the heatmap which is was createdbut i want to replicate in this way can anyon...
