Create New Service form

Australia Governance, Risk, and Compliance

Release

australia

ft:locale

en-US

ft:publication_title

Australia Governance, Risk, and Compliance

ft:clusterId

grc

bundleId

grc

workflow

Technology

Create Service form

Release version: Australia

Updated March 12, 2026

5 minutes to read

Use the Create New Service form in Operational Resilience Workspace to set up a business service and configure its related lists.

Create Service form

For a description of the field values, see the following table.

Table 1. Create Service form
Field	Description
Details tab
Name	Name of the service.
Approval group	Approval group that is responsible for the approval of the service. For example, Application Development or Application Security group.
Model ID	Model ID for the service.
Support group	Support group for the service.
Owned by	Owner of the service. This field is auto-filled.
Change group	Change group that is responsible for updating the service.
Business criticality	Criticality of the service. The available options are as follows: 1—most critical 2—somewhat critical 3—less critical 4—not critical
Managed by	User that manages the service.
Version	Version of the service.
SLA	Service level agreements (SLAs) for the service.
Used for	Usage category that the service is used for. For example, Staging. The available options are as follows: Production Staging QA Test Development Demonstration Training Disaster recovery
Location	Physical location of the service.
Operational status	Operational status of the service. The available options are as follows: Operational Non-Operational Repair in Progress DR Standby Ready Retired Pipeline Catalog
Vendor	Vendor that is responsible for operating the service.
Service classification	Classification of the service. The available options are as follows: Business Service Technical Service Application Service
Comments	Comments section for the service. Typically, the Operational Resilience administrators add the comments about the service.

Related tabs

In the Create New Service form, you can add a parent service, child service, and process for the business service. You can also configure the related tabs, such as the tabs for change requests, incidents, and tasks for the service. You can then view the service attributes and resilience metrics on the dashboard. The following table describes the related tabs that are associated with a service.

Table 2. Related tabs that are associated with the service
Related tab	Description
General
Overview tab	Displays the following red flags data: Total red flags Red flags by type Issues Failed controls Risks Outages Incidents Change requests Operational vulnerabilities Vulnerabilities Third party risk assessments Assets impacted by red flags
Details tab	Details of the selected service record. For more information on the fields and their description, see the "Create New Service form" table on this page.
Services and dependencies
Child services	Child services that are associated with the service. The tab displays the following sample information about the child services: Dependency Pillar Impacted objects Red flags count
Business processes	Processes that are associated with the service. The tab displays the following sample information about the business processes: Dependency Pillar Impacted objects Red flags count
Dependencies	Dependencies that are associated with the service. The tab displays the following sample information about the dependencies: Dependency Pillar Impacted objects Red flags count
Ongoing events
Incidents	Incidents that are associated with the service. The tab displays the following sample information about the incidents: Incident Short description Owner Opened Caller Priority State Category Assignment group Assigned to Updated Updated by Dependency Pillar
Outages	Outages that are associated with the current service. You can create an outage for the service. The tab displays the following sample information about the outages: Number Outage Type Begin End Dependency Pillar
Red flags
Issues	Issues that are associated with the service. The tab displays the following sample information about the issues: Issue Priority Status Planned end date Dependency Pillar
High risks	High risks that are associated with the service. The tab displays the following sample information about the high risks: Risk Risk assessment Risk statement Risk response Inherent rating Computed inherent rating Residual rating Computed residual rating Dependency Pillar
Failed controls	Failed controls that are associated with the service. The tab displays the following sample information about the failed controls: Control Control objective Status Dependency Pillar
Change requests	Change requests that are associated with the service. The tab displays the following sample information about the change requests: Change request Short description Type State Planned start date Planned end date Assigned to Dependency Pillar
Tasks	Tasks that are associated with the service. The tab displays the following sample information about the tasks: Task Short description State Task type Priority Assigned to Dependency Pillar
Vulnerabilities	Vulnerabilities associated with the service. The tab displays the following sample information about the vulnerabilities: Vulnerability Dependency Pillar
Operational vulnerabilities	Operational vulnerabilities associated with the service. The tab displays the following sample information about the operational vulnerabilities: Number Case Related area Related area table Title Related area type Domain
Third party risk assessments	Third party risk assessments associated with the service. The tab displays the following sample information about the Third party risk assessments: Third party risk assessment Dependency Pillar
Program activities
Business continuity plans	List of the Business continuity plans that are associated with the service. The tab displays the following sample information about the plans: Plan Plan asset Activated plan Event Event asset Dependency Pillar Status RTO RPO BIA date RTO gap
Importance and impact assessment	Importance and impact assessment that is done for the service. The tab displays the following sample information about the assessment: Impact tolerance (Duration) Impact tolerance assessment Justification for overriding impact tolerance (Duration) Justification for overriding impact tolerance (Customer impact) Justification for overriding impact tolerance (Financial impact) Justification for overriding impact tolerance (Transaction Volume) Overridden importance Impact tolerance (Customer impact) Impact tolerance (Financial impact) Impact tolerance (Transaction Volume) Importance
Scenario analysis	Scenario analysis that is associated with the service. The tab displays the following sample information about the scenario analysis: Breach status Disruption duration Impact tolerance Deviation (%) Importance Scenario analysis Service Created by Created Domain

To view Related lists and Red flags data in the Operational Resilience Workspace, you must have appropriate user roles. See the "Roles to view related lists and red flags data" table for more information.

Table 3. Roles to view related lists and red flags data
Related lists and Red flags data	Roles required	Notes
Business continuity information related list	BCM manager role
Failed controls red flags	BCM manager role
Risks and Third party risk assessments red flags	IRM manager role	TPRM is not installed If TPRM is not installed, Operational Resilience users cannot access risk red flags without the IRM roles. TPRM is installed However, if TPRM is installed, Operational Resilience users can access both risk red flags and Third-party Risk Management red flags because they are assigned the TPRM viewer role. The TPRM viewer role includes risk viewer capabilities, thus eliminating the need for IRM roles.
Rest of the related lists and red flags in the dashboard	Accessible with Operational Resilience roles