Use entity and risk dependencies using the GRC: Workbench
The GRC: Workbench utilizes CMDB information to show the upstream and downstream relationships across all applications. CMDB information is one of the sources. These relationships enable consistent risk mapping and modeling across the enterprise.
The GRC Manager [sn_grc.manager] uses the
GRC Workbench to:
- Create entity classes.
- Define the upstream/downstream relationships between entity classes. These relationships make up the dependency model and ensure that risks are defined and evaluated consistently across the enterprise.
- Create entity types, create entities, and classify entities
Note:
The GRC Manager cannot view the
GRC: Workbench from . The GRC Manager
[sn_grc.manager] enters /$grc_workbench.do after their instance name in
the url to access the GRC: Workbench.
The Risk Manager [sn_risk.manager] uses the GRC: Workbench to:
- Perform all the same tasks as the GRC Manager
- Create risk frameworks, risk statements, and risks
- Define risk relationships
Model Setup tab
The Model Setup tab contains links to perform the following tasks.
| Link | Action |
|---|---|
| Dependency Model | Create entity classes and develop the organizational relationship model |
| Entity Types | Create and edit entity types |
| Dependency Map | Create and visualize entity relationships |
Risk Dependencies tab
The Risk Dependencies tab contains links to perform the following tasks.
| Link | Action |
|---|---|
| Risk Frameworks | Create and edit risk frameworks |
| Risk Statements | Create and edit risk statements |
| Relationships | Create and visualize risk relationships |