Governance, Risk, and Compliance (GRC) - Legacy The ServiceNow® Governance, Risk, and Compliance (GRC) application enables you to document authority documents, policies, and risks and then design controls to enforce those documents and mitigate risk. Your organization can schedule and run control tests and/or conduct audits to gather compliance evidence and identify failures that require remediation. Explore Video: Getting Started with GRC What is GRC? - Legacy Planning Whitepaper: 8 Simple Steps for Automating Governance, Risk, and Compliance (GRC) Set up Administer Available GRC reports - Legacy GRC functional and technical roles - Legacy Develop Components installed with Governance, Risk, and Compliance (GRC) - Legacy Developer training Developer documentation Integrate UCF authority document import process - Legacy UCF import properties - Legacy Use GRC authority documents and GRC citations - Legacy GRC risks, risk criteria, and risk approach rules - Legacy GRC audits, audit observations and remediation tasks - Legacy Troubleshooting and get help Ask or answer questions in the GRC community Search the HI knowledge base for known error articles Contact ServiceNow Support Legacy migrationCustomers currently using Legacy GRC [com.snc.governance] or Legacy Risk [com.sn_risk] are not required to activate and migrate to the new functionality, but recommended.Activate GRC Risk - LegacyAdministrators can activate the GRC: Risk plugin [com.sn_risk] and doing so automatically installs the Core GRC Components [com.snc.governance_core] plugin. Additional plugins are activated as needed. This plugin provides demonstration data.What is GRC? - LegacyGovernance, risk, and compliance (GRC) is a general term describing the combination of people, processes, and products involved in establishing and executing business goals, while mitigating risk and proving compliance with regulations. Risk Management overview - LegacyRisk management enables an organization to quickly identify and quantify the impact that loss events affecting various business processes and items (such as facilities, business services, and vendors) pose to the organization. A risk is a definition of the possible consequence of failing to comply with a policy. Activate Governance, Risk, and Compliance (GRC) - LegacyAdministrators can activate the Governance, Risk, and Compliance (GRC) plugin [com.snc.governance], and doing so automatically installs the Core GRC Components [com.snc.governance_core] plugin. Additional plugins are activated as needed. This plugin provides demonstration data.