GRC Controls

From Hornbill
Jump to navigation Jump to search
Home > Applications > GRC > Governance Management > Controls Index

Introduction

Creating a Control

  • Type
Select an option that describes the type of control. Default options include Corrective, Detective, Directive, and Preventative. (This list can be modified by a user with the GRC Administrator Role under GRC Simple Lists)
  • Life Cycle
This option is only available at the time of creation. From here you can select a Life Cycle workflow that will provide automation for different aspects of the life cycle of the control.
  • Owner
The owner of the procedures. This will default to the person that created the procedure

Control Source

  • Source Type
Select the Source Type which includes the following options: Authority Document Control, Procedure, Policy Statement, Policy, Asset, Document Manager - Document, Service Manager - Asset, Service Manager - Request, and External / Other
  • Authority Document
This option is only available when the Source Type is set to Authority Document Control. Once an Authority Document is selected, the associated Source Items will be available to select from.
  • Source Item
If one of Authority Document Control, Procedure, Policy Statement, Policy, Asset is selected you will have access to these items that have been created within the GRC app. Document Manager and Service Manager are Hornbill apps where you can provide reference to items within these apps. External/Other will provide a field for an external reference and summary.

Reason For Selection / Implementation

The following option allows you to flag a control with these preset values for reporting and categorization

  • Business Reason
Select Yes or No
  • Contractual
Select Yes or No
  • Result of Risk Assessment
Select Yes or No
  • Exempt
Select Yes or No

Implementation

  • Complaint
Select Yes or No. This will allow you to configured Views of the Controls list based on this value.
  • Implemenation details
Free text field to provide details of how this control is being implemented

Linked Policy Statements

Linked Risks

Evidence

Audit Outcomes

Tasks and Reviews

Attachments

Life Cycle History

Retrieved from "https://wiki.hornbill.com/index.php?title=Controls&oldid=28922"