30
3.15.7
Xanadu, Washington DC, Vancouver
Identify, assign and attest against your common controls framework & regulations through the execution of compliance driven assessments. Assessments can be performed against any Entity including business segments, processes or a given asset. The solution requires the ServiceNow IRM Policy & Compliance solution to be deployed. Some key features of the solution are noted below:
- Create custom assessment templates for focused purposes.
- Allows for multiple control objectives to be evaluated in a single questionnaire template.
- Related questions to a control objective for compliance monitoring/attestation.
- Require commentary or attachment(s) to be provided based on question response.
- Establish issue templates and rules for issue generation on a question-by-question basis.
- Establish follow up task templates and rules for task generation on a question-by-question basis.
- Evaluate the compliance obligations of an asset and report on the results.
- Control instances can be produced with the appropriate compliance status.
- Business Stakeholder reviews and signs off on the results of the overall assessment.
- Provides a centralized user-friendly portal for business user interaction.
- Allows the business to invite other business users to participate in completing a questionnaire.
- Compliance Scoring at the Assessment, individual questionnaire, questionnaire section, and control objective results layers.
Common Assessments:
- Security Compliance Checklists
- Cybersecurity Discovery Assessments
- High Value Asset Assessments
- PCI Assessments
- HIPAA Assessments
- GDPR Assessments
- Data Assessments
- Process Assessments
- Application Assessments
- Facility Assessments
- Create assessment templates for focused purposes.
- Scope, evaluate, and create multiple controls in a single questionnaire template.
- Related questions to a control objective for compliance monitoring/attestation.
- Require commentary or attachment(s) to be provided based on question response.
- Establish issue templates and rules for issue generation on a question-by-question basis.
- Establish follow up task templates and rules for task generation on a question-by-question basis.
- Provides a centralized user-friendly portal for business user interaction.
- Allows the business to invite other business users to participate in completing a questionnaire.
- Compliance Scoring at the Assessment, individual questionnaire, questionnaire section, and control objective results layers.
In the latest release the following new features have been introduced:
- Auto-assign section weights: A new option has been added to the Questionnaire Template table which allows for section weights to be set automatically based on the sum of the scored question weights within the section. This allows for section weighting to be adjusted in the scoring model to account for unscored questions or 'NA' responses.
- Advanced Compliance Assessment Overview Dashboard: A new high-level compliance focused dashboard that can be broken down by Entity or Entity Class.
- Campaign frequency: A Frequency choice field has been added to the Campaign table which allows for executed campaigns to periodically executed according to the selected frequency
The deployment of the Crowe Advanced Compliance solution requires the following:
- ServiceNow IRM Policy & Compliance
- Now Platform versions support: Tokyo, Utah, Vancouver