0
21.1.0
Australia, Zurich Patch 4, Zurich, Yokohama Patch 9, Yokohama, Xanadu Patch 9, Xanadu
Standalone Application
The ServiceNow® GRC: Compliance Assessment application integrates Policy and Compliance Management, Privacy Management, and Vendor Risk Management applications. It allows users to associate questions within an assessment to control objectives and identify the correct response. If responses are unsatisfactory or incomplete, the associated control will fail, promptly reporting a compliance violation.
The GRC: Compliance Assessment application includes the following features:
- Vendor risk managers can associate assessment questions directly with control objectives and controls.
- Vendor responses to assessments determine compliance or non-compliance with the related controls.
- Privacy managers and administrators can create and modify privacy assessments.
- Privacy managers and administrators can associate control objectives and information objects to privacy assessment question values. They can also map specific assessment responses to the corresponding Processing Activity fields.
New:
A new Compliance Assessment Admin role has been introduced. This role inherits the Compliance Assessor role and can update Allowed evaluation methods, reducing dependency on the system administrator for business use cases.
The GRC: Compliance Assessment plugin is automatically installed when the Vendor Risk Management application is activated.
Permissions and roles:
- Role required to install the application: System administrator (admin)