Business rules installed with Governance, Risk, and Compliance (GRC)

Governance, Risk, and Compliance (GRC) adds the following business rules.

Table 1. Business Rules
Name Table Description
Add control test def to audit def Audit Definition Requirement [m2m_audit_def_requirement] Creates records in the control test definition related list when a control test is associated with the requirement.
Add control test definition to audit Requirements [grc_audit_requirements] Creates records in the control test definition related list when a supporting control is associated with the requirement.
Add control test to audit Requirements [grc_audit_requirements] Creates records in the control test related list when a supporting control is associated with the requirement.
Associate to Audit Control Test [grc_control_test] Creates records to associate an audit with a control test.
Calculate GRC Links Policy Authority Documents [m2m_policy_authoritative_source] Rebuilds calculated links between authority document and policy records.
Calculate GRC Links Control Citation [m2m_control_auth_scr_content] Rebuilds calculated links between citation and control records.
Calculate GRC Links Risk Control [m2m_risk_control] Rebuilds calculated links between risk and control records.
Calculate GRC Links Risk Policy [m2m_risk_policy] Rebuilds calculated links between risk and policy records.
Calculate GRC Links Policy Control [m2m_control_policy]
Calculate GRC Links Policy Citation [m2m_policy_auth_src_content] Rebuilds calculated links between citation and policy records.
Calculate GRC Links Control Authority Document [m2m_control_authoritative_source] Rebuilds calculated links between authority document and control records.
Calculate GRC Links Citation [grc_authoritative_src_content] Rebuilds calculated links between citation and related records.
Calculate GRC Links Risk Authority Document [m2m_risk_authoritative_source] Rebuilds calculated links between authority document and risk records.
Cancel GRC control test workflow Control Test [grc_control_test] Notifies a control test assignee that a control test has been canceled.
Cancel rest of instances when one done Control Test [grc_control_test] Manages the states of control test definitions when attestations are completed or closed.
Change GRC Property System Property [sys_properties] Reruns the filter and differences if the <tt>ignore_changes_to_modified_date</tt> property changes.
Check reference before delete AS Authority Document [grc_authoritative_source] Checks versioning references before deleting authority documents.
Check reference before delete ASC Citation [grc_authoritative_src_content] Checks versioning references before deleting citations.
Check reference before delete control Control [grc_control] Checks versioning references before deleting controls.
Create New Control Version Control [grc_control] Creates a new control version instead of a new document.
Create New GRC Auth Source Version Authority Document [grc_authoritative_source] Creates a new authority document version instead of a new document.
Create New GRC Auth Src Content Version Citation [grc_authoritative_src_content] Creates a new citation version instead of a new document.
Create Policy Control Record Risk Control [m2m_risk_control] Creates a relationship from a control to a risk for every control that is related to that risk, if the relationship does not already exist.
Create Policy Control Record Risk Policy [m2m_risk_policy] Creates a relationship from a risk to a policy for every policy that is related to that risk, if the relationship does not already exist.
Create Policy to Auth Src Record Policy Citation [m2m_policy_auth_src_content] Creates a relationship from a policy to an authority document for every policy that is related to that authority document, if the relationship does not already exist.
Create Remediation on Failure Control Test [grc_control_test] Creates a remediation record when the control test is set to failed.
Delete control tests in auth src Control [grc_control] Removes the link from control tests to an authority document when a control is deleted.
Delete Policy Control Record Risk Control [m2m_risk_control] Removes the records that link a control to a risk.
Delete Policy Control Record Risk Policy [m2m_risk_policy] Removes the records that link a policy to a risk.
Delete test in policy Control [grc_control] Updates policies related to a control when the control is deleted.
Delete test in risk Control [grc_control] Updates risks related to a control when the control is deleted.
Empty name field Control [grc_control] Manages an empty control name field.
Execute from Audit Control Test Definition [grc_control_test_definition] Executes a control test definition when its Audit Source field changes.
getColumnsFromTable Global [global]
getControlTestsByDefinition Global [global]
getControlTestsForAudit Global [global]
getRelatedTestDefinitions Global [global] Returns control test records by their definition.
getRelatedTests Global [global] Returns all control test definitions associated to the citation record.
Insert Rule Control Test Definition [grc_control_test_definition] Creates a new control test definition ID when a control test definition is created.
Insert test in control definition delete Control Test [grc_control_test] Updates control test definitions when a control test is deleted.
Insert test status in control definition Control Test [grc_control_test] Updates control test definitions when a new control test
Notify assessment user Assessment Instance [asmt_ assessment_instance] Notifies an assessment user that an assessment is ready to take.
Notify control test assignee Control Test [grc_control_test] Notifies an assignee when a control test is assigned.
Require a valid method when active Control Test Definition [grc_control_test_definition] Selects an assignment method to activate this control test definition.
Rollup summary to authoritative document Control [grc_control] Updates the authority document rollup summaries when a control passes or fails.
Rollup summary to control Control Test Definition [grc_control_test_definition] Updates the control rollup summaries when a control test definition passes or fails.
Rollup summary to control delete Control Test Definition [grc_control_test_definition] Updates the control rollup summaries when a control test definition is deleted.
Rollup summary to policy Control [grc_control] Updates the policy rollup summaries when a control test definition is deleted.
Rollup summary to policy Policy Control [m2m_control_policy] Updates the policy rollup summaries when a relationship between a control and a policy is deleted.
Rollup summary to risk Control [grc_control] Updates the risk rollup summaries when a control test definition is deleted.
Rollup summary to risk m2m Risk Control [m2m_risk_control] Updates the risk rollup summaries when a relationship between a control and a risk is deleted.
Set active flag Control Test Definition [grc_control_test_definition] Updates the '''Active''' field based on a status change.
Set attestation columns Control Test Definition [grc_control_test_definition] Sets default values related to attestations when a control test definition is created or updated.
set compliant flag Requirements [grc_audit_requirements] Sets the Compliant field when an audit requirement state is changed.
Set point in time sample data value Control Test [grc_control_test] Adjusts the control test sample data time when the status is changed
Setting name to reference if no name Citation [grc_authoritative_src_content] Updates a citation's Name field if an authority document reference name is changed.
Store attestation results Assessment Instance [asmt_assessment_instance] Updates attestation results when assessment instance data is modified.
Sync columns to metric type table Control Test Definition [grc_control_test_definition] Updates assessment metric tables when an attestation is created or updated in a control test definition.
Sync intro to control test definition Assessment Metric Type [asmt_metric_type] Updates an attestation introduction in a control test definition when the assessment metric type is updated.
Sync name and reference Citation [grc_authoritative_src_content]
Update assign to user and group Control Test Definition [grc_control_test_definition] Manages the '''Assigned to''' and '''Assigned to group''' fields when the '''Method''' field is updated.
Update auth src count in control Control Authority Document [m2m_control_authoritative_source] Manages the count of controls linked to an authority document.
Update auth src count in controls Authority Document [grc_authoritative_source] Manages the count of authority documents linked to a control.
Update control coverage Control Authority Document [m2m_control_authoritative_source] Updates coverage values in authority documents based on the status of linked controls.
Update control coverage from def delete Control Test Definition [grc_control_test_definition] Updates coverage values in controls based on the deletion of linked control test definitions.
Update control coverage from definition Control Test Definition [grc_control_test_definition] Updates coverage values in controls based on the creation or modification of linked control test definitions.
Update control tests in auth src Control Authority Document [m2m_control_authoritative_source] Update links between an authority document and its controls when link table records are created, updated or deleted.
Update coverage on control active Control [grc_control] Updates coverage values in an authority document based on the creation or modification of linked controls.
Update coverage on control delete Control [grc_control] Updates coverage values in an authority document based on the deletion of linked controls.
Update duration in control test def Assessment Metric Type [asmt_metric_type] Updates a control test definition's Duration field when an attestation instance's duration has changed.
Update Pertinent Flag Risk Authority Document [m2m_risk_authoritative_source] Updates the Pertinent flag for the link table between a risk and an authority document.
Update Pertinent Flag Policy Citation [m2m_policy_auth_src_content] Updates the Pertinent flag for the link table between a policy and citations.
Update Pertinent Flag Policy Control [m2m_control_policy] Updates the Pertinent flag for the link table between a policy and controls.
Update Pertinent Flag Policy Authority Document [m2m_policy_authoritative source] Updates the Pertinent flag for the link table between a policy and an authority document.
Update Pertinent Flag Risk Policy [m2m_risk_policy] Updates the Pertinent flag for the link table between a policy and a risk.
Update Pertinent Flag Control Authority Document [m2m_control_authoritative_source] Updates the Pertinent flag for the link table between a control and an authority document.
Update Pertinent Flag Policy Citation [m2m_policy_auth_src_content] Updates the Pertinent flag for the link table between a policy and a citation.
Update Pertinent Flag Control Citation [m2m_control_auth_src_content] Updates the Pertinent flag for the link table between a control and a citation.
Update Pertinent Flag Risk Control [m2m_risk_control] Updates the Pertinent flag for the link table between a risk and a control.
Update pertinent GRC Links Control [grc_control] Updates the Pertinent flag for a control.
Update pertinent GRC Links Citation [grc_authoritative_src_content] Updates the Pertinent flag for a citation.
Update pertinent GRC Links Authority Document [grc_authoritative_source] Updates the Pertinent flag for an authority document.
Update pertinent GRC Links Policy [grc_policy] Updates the Pertinent flag for a policy.
Update pertinent GRC Links Risk [grc_risk] Updates the Pertinent flag for a risk.
Update policy count in control Policy Control [m2m_control_policy] Updates the Policy count field for the link table between a policy and a control.