Tables installed with Governance, Risk, and Compliance (GRC)

Governance, Risk, and Compliance (GRC) installs the following tables.

Name Description
Citation Relationship types [auth_content_rel_type] Stores the definitions for the available relationships between different parts of an authority document.
Authority Document [grc_authoritative_source] Stores the primary authority documents.
Citation [grc_authoritative_src_content] Stores the citations that are the individual components of authority documents.
Activity [grc_activity] Stores the task-based activities used in GRC audits. Extends table: Task [task]
Audit [grc_audit] Stores all audit instances. Extends table: Planned Task [planned_task]
Audit Definition [grc_audit_definition] Stores all audit definitions.
Requirements [grc_audit_requirement] Stores the relationship between an audit and a requirement. Extends table: Task [task]
Condition [grc_condition] Stores the conditions used by advanced control tests.
Condition Collection [grc_condition_collection] Stores condition collection for advanced control tests.
Control [grc_control] Stores the definitions of how a policy is enforced.
Control Test [grc_control_test] Stores the instances of a control being used in practice. Extends table: Planned Task [planned_task]
Control Test Definition [grc_control_test_definition] Stores the definitions of how controls are verified. Extends table: Scheduled Script Execution [sysauto_script]
Control Test Sample Data [grc_control_test_sample_data] Stores the sample data generated by control tests. Extends table: Task [task]
Observation [grc_observation] Stores tasks which record information uncovered during the audit process.
Observation Affected Items [grc_observation_affected_item] Stores affected items related to observations.
GRC UCF Authority Document [grc_ucf_authority_document] Stores the latest authority documents downloaded from the UCF site. The data in this staging table is overwritten each time UCF authority documents are downloaded.
GRC UCF Citation [grc_ucf_citation] Stores the latest citation downloaded from the UCF site. The data in this staging table is overwritten each time UCF authority documents are downloaded.
GRC UCF Control [grc_ucf_control] Stores the latest controls downloaded from the UCF site. The data in this staging table is overwritten each time UCF authority documents are downloaded.
GRC UCF Difference [grc_ucf_difference] Stores the differences between the existing GRC entities and the available UCF updates. The data in this table is rebuilt each time UCF authority documents are downloaded or updated in GRC.
GRC UCF Download Status [grc_ucf_download_status] Stores the results of the latest UCF download, such as the file version downloaded and the duration. The data in this table is overwritten each time UCF authority documents are downloaded.
GRC UCF Control [grc_ucf_filter] Stores all the information GRC uses to manage document counts in the document filter. These are the values displayed for each group in the filter screen. The data in this table is rebuilt each time UCF authority documents are downloaded or updated in GRC.
GRC Update Status [grc_ucf_update_status] Stores all the information used to manage the update of UCF Authority Documents into GRC. These values are used to keep track of approval states of requested updates.
Audit Control Test Instances [m2m_audit_control_test] Stores the relationship between an audit and a control test instance.
Audit Control Test Definition [m2m_audit_control_test_def] Stores the relationship between an audit and a control test definition.
Audit Definition Control Test Definition [m2m_audit_def_control_test_def] Stores the relationship between an audit definition and a control test definition.
Audit Definition Requirement [m2m_audit_def_requirement] Stores the relationship between an audit definition and a requirement and a control test definition.
Audit Definition Entity [m2m_audit_definition_entity] Stores the relationship between an audit definition and an entity (scope).
Audit Entity [m2m_audit_entity] Stores the relationship between an audit and an entity (scope).
Citation Mapping [m2m_auth_src_con_auth_src_con] Stores the mapping between two citation entries and their relationship.
Condition Collection Condition [m2m_condition_coll_condition] Stores the relationship between a condition collection and a condition.
Control Citation [m2m_control_auth_src_content] Stores the relationship between a citation and a control.
Control Authority Document [m2m_control_authoritative_source] Stores the relationship between an authority document and a control.
Policy Control [m2m_control_policy] Stores the relationship between a control and a policy.
Policy Citation [m2m_policy_auth_src_content] Stores the relationship between a citation and a policy.
Policy Authority Document [m2m_policy_authoritative_source] Stores the relationship between an authority document and a policy.
Policy Authority Document [m2m_risk_authoritative_source]
Risk Control [m2m_risk_control] Stores the relationship between a control and a risk.