The Entity form in the workspace provides a complete view of an entity across your organization. The Entity form is listed under the Library menu of the List view in the workspace. Select an entity in the list view so that you can display its overview, details, hierarchy, entity types, or downstream risks.

Overview details on the Entity form

The Entity form displays the details on the entity such as Compliance status, Risk status, and Tracking. The information about an entity is organized in different tabs such as Overview, Details, and Hierarchy as shown in the following example.

The related lists on the Entity form display the dependencies that are related to the entities as explained in the following table:

Table 1. Tabs and Highlighted details on the Entity form

Tab	Description
Details tab	Information about the entity such as Name, Active condition that shows whether the entity is active, Owned by, Class, Description, and Location information in the Entity section. The Compliance section displays the Attestation frequency such as Annually. The Cybersecurity Risk Profile (CRI) displays the following fields: Tier Tier levels such as Tier 1, Tier 2, Tier 3, and Tier 4. Controls are generated based on the change of the tier. If you change the tier value, then save the record. Tiering assessment Assessment method based on the new smart control assessment engine, which has the tiering assessment templates as the CRI templates. Tiering assessor User who can perform the tiering assessment.
Hierarchy tab	Information about the upstream entities and downstream entities, entity class, owner information.
Highlighted details	Downstream hierarchy for the selected entity, related entity types, regulatory bodies applicable to the entity, and related policies.

The Entities section displays the following related lists:

Table 2. Related lists in the Entities section

Related list	Description
Entity types	Details of the entity type, description, condition if the entity type was created manually and the Compliance score in percentage.
Risks	The Risks tab on the entity record page displays the following: Directly related risks: List all risks that are directly associated with the entity. Suggested risks: List all risks suggested by the Risk Suggestion AI Agent. All risks: List all directly related risks and downstream risks.
Downstream controls	Details of the downstream controls such as Name, Number, Entity, Control objective, State, Status, Exempt, Owner, and Description.
Downstream inherited controls	Details of downstream inherited controls such as Control, Number, Entity, Reliant entity, Function, State, Status, Exempt, Owner, Description, and Control objective.
Downstream engagements	Details of the downstream engagements such as Name, Number, Type, Parent plan, State, Engagement lead, Remaining expense budget (%), Remaining resource budget (%), and engagement planned start.
Downstream issues	Details of the downstream issues such as Issue, Number, Entity, Priority, Assigned to, and Issue manager. You can add existing Issues, create new issue, or remove an existing issue.
Downstream tasks	Details of the downstream tasks such as Name, Number, Parent, State, Assigned to, and Planned end date.
Policy exceptions	Details of the policy exceptions such as Name, Number, State, Substate, Policy, Control objective, Issue, Reason, Requester, Valid from, Valid to, and Risk rating.
Risk events	Details of the risk events such as Risk event, Primary entity, Event type, Sub type, State, Date of discovery, Net loss, Expected loss, and Non-financial impact.
Content references	Details of the content reference such as Content reference, Description, and version. You can click Add to add the content references.
Risk assessments	Details of the risk assessments such as Number, Risk assessment methodology, Assessable entity, Risk, Applies to record, Inherent risk, Control effectiveness, Residual risk, Response, Assessor, and End date.
Aggregated risks	Details of the aggregated risks such as Risk assessment methodology, Residual rating, Inherent rating, Control effectiveness, Residual ALE, Inherent ALE, Contributing risk assessments, and Risk rollup status.
Privacy assessments	Details of the Privacy assessments such as Number, Metric type, Classification, Due date, State, and Assigned to.
CRI Tiering assessments	Details of tiering assessment of an entity such as the Assessment template, State, Users, and Due date.
CRI assessments	Details of control assessment such as the Assessment template, State, Users, and Due date.
Stakeholders	Stakeholders with customizable roles relevant to single and composite entities, enabling effective team involvement in risk assessments and projects. You can add persona, group, and users in the stakeholder list.

The 360° view displays an entire relationship view for the selected entity the upstream entities, downstream entities, entity class and entity type associated with the entity, and the relationships that the entity includes.