In this new episode of the "Get started with GRC" series, two GRC community experts offer their take on Indicators: why you need them, how they will transform your compliance business and how to set them up.
This tutorial also places Indicators in the overall context of GRC, leveraging other critical concepts and tools such as Compliance Scoring and of course Entities.
-----------------------------------------------------------------
Video contents:
00:01 Introductions. Ben Forrest of ServiceNow and Philip Swann of Wrangu.
01:13 Refreshers. Maturity framework, the life-cycle of a Control.
01:50 Definition of Indicators, Pre-tests, are the Controls and Entities compliant? A game changer compared to spreadsheet and emails. Continuous monitoring.
03:20 Where Indicators fit in relation to Control Objectives, Entities and Controls.
04:15 An example: COVID-19 remote working Policy, Control Objective, Entities, Controls and Indicators.
05:34 More details. Indicators can be Manual (agent is involved, not much data in the system) , Basic (automated), Scripted (integrations). "Crawl, walk, run".
07:44 Indicator Template. For effectiveness and efficiency.
08:12 The great scenario when all goes well.
08:45 A few steps back, Indicators in the overall GRC system.
09:17 Demo workflow: Create Indicator Template, Create the Indicators, Execute the Indicators.
10:13 Creation of the Indicator Template to get all the hard work done at once. Select the Control Objective, new Indicator Template, Name, Schedule, Method (short description, Instructions), Supporting Data (Table, Supporting Details, Reference Field).
16:05 Create the Indicator. From the Control Objective, see all the Controls, select the one for the chosen Entity, the Indicator is already there, created by the Template. Check the Status. Check the State. Can be Executed while in Draft.
17:05 Execute the Indicator. This will create an Indicator Task that the Control Owner will receive. At this point the Compliance Score is 0.
19:50 View from the Control Owner's side. My Indicator Tasks with detail from the Indicator Template, with Supporting Data for all details. Additional comments entry box. Update the State. Work in Progress, Closed. Result: Pass or Fail. Indicator Result. Will run again as per Schedule.
24:27 Check Compliance Score.
25:03 The big insights. It is easy and makes GRC easy, one system of record, enable continuous monitoring.
25:53 Create your own Manual Indicator, then try the Basic type, check out the tutorials for Entities and Compliance Scoring.
26:30 Reminders.
26:43 GRC cheat-sheet with definitions.
27:00 Conclusion.
For your questions and to get the PDF file: https://community.servicenow.com/comm...
Информация по комментариям в разработке