Control attestation feature is enhanced to display all the control related information in the assessment page. You can also group assessments for a user and combine them together. Therefore, all assessments that the user has to assess can be done together without having to assess one after the other.

Control information as Assessment reference

The GRC attestation template for control category of assessment had two targets as Control and Entity to display the control and entity related information on the assessment template. With the referential information of the assessment engine, Entity information is no longer displayed. Instead, all the relevant information about the control are added as Assessment reference in the GRC attestation template.

The contextual information such as its name, description, entity, control objective, status, owner, current compliance score, tier value, tiering assessor, enforcement, classification, and others are populated and displayed as you open an assessment in the Details pane on the right.

Grouping control attestations

You can group a list of assessments assigned to a particular user as Combined Assessments and assign a new name for the grouped assessments.

To group assessments, see Combine assessments for control attestations.