0
20.1.2
Yokohama Patch 2, Yokohama, Xanadu Patch 4, Xanadu, Washington DC Patch 7, Washington DC Patch 5, Washington DC Patch 3, Washington DC, Vancouver Patch 9, Vancouver
The ServiceNow® GRC: Profiles application contains a set of common components shared by the GRC suite of applications. The application includes a common architecture, issue management, and indicators.
The GRC: Profiles application is used in the following ways:
- Policy and compliance managers use entity types and entities to create a system of internal controls and monitor compliance.
- Risk managers use entity types and entities to monitor risk exposure and perform risk assessments.
- Audit managers use entity types and entities to scope audit engagements.
- Compliance managers, risk managers, and audit managers manage issues to drive remediation more efficiently.
- Compliance managers and risk managers monitor compliance effects and risk exposure on entities by setting key compliance and risk indicators.
New:
- Added database indexes on sn_grc_issue and Task tables to improve query performance. There could be an upgrade impact due to these indexes. Expect 45 minutes of additional upgrade time for data volume of 40 million Task table records. These numbers are for customers who are on My Sql/Maria/Postgres databases.
- Entity-based access (EBA) framework has been enabled on the following tables: issues, Remediation Tasks, Indicators, Indicator Tasks, and Attestation. Customers who choose to use EBA can secure data from these tables.
Changed:
- Converted Scripted ACLs to Security Attributes
Fixed:
- On Entity type, table processing_profiles set to true always and does not set back to false
- Improved performance of GRC Profile Generation job
- Security issues
The GRC: Profiles application gets installed automatically when any of the following applications are activated:
- GRC: Policy and Compliance Management
- GRC: Risk Management
- GRC: Audit Management
Permissions and roles:
Role required to install the app: System admin (admin)