Overview page of a Control objective record

The control assurance section helps you to know if different attestations are in place, which demonstrates that the control has been implemented correctly. The indicators, in addition to control attestations, help to assess the controls or to monitor their compliance continuously. The ongoing and overdue status of tests conducted on controls is the key determinant by which the organization determines that its policies and authority documents are being followed.

For more contextual information about the control objective, select the sidebar icon (). For a given control objective record, you can view the hierarchy of mappings back to the authority documents and policies that show why you do the actions indicated in the control objective.

A control objective record has many related lists that come from different applications such as Advanced Risk, GRC Metric, PaCE, and others, which are listed next to the Overview. You can map or associate any of these available related list item with the control objective. For example, if you would like to add an entity type to the control objective, you can navigate to the Entity types related list, select the Add button, and map the required entity type.