Define a control test

After you define a control, create control tests that run periodically and provide documented evidence of whether the associated control is operating correctly.

  1. Navigate to IT GRC > Administration > Control Test Definitions.
  2. Click New.
  3. Fill in the form, as appropriate (see table).
  4. Click Submit.
    Figure 1. IT GRC Control Test Def
    IT GRC Control Test Def
    Table 1. Defining A Control Test
    Field Description
    Definition ID A unique identifier generated dynamically by the system.
    Name The name of the control test.
    Control A reference to the control being enforced.
    Method One of the following choices for determining the test assignee:
    • Assign to Group: Assignment group for the control test.
    • Assign to Individual: User assigned to the control test.
    Assign to group Group assigned to this control test. This field is available only when the selected method is Assign to Group.
    Assign to User assigned to this control test. This field is available only when the selected method is Assign to Individual.
    Remediation group Group assigned to the remediation tasks when a control test fails.
    State A workflow field to indicate where in the drafting process this control test currently is. If the state is Active, control test instances are dynamically generated based on the record definition.
    Run Frequency for generating control test instances. Choices are:
    • Daily
    • Weekly
    • Monthly
    • Periodically
    • Once
    • On Demand
    Time The time that a control test instance is automatically generated when Run is set to Daily, Weekly, Monthly, or Periodically.
    Day Day of the week that a control test instance is generated each week when Run is set to Weekly. Day of the month if Run is set to Monthly.
    Repeat interval A duration, in days and hours, between the automatic generation of control test instances if Run is set to Periodically.
    Starting The date and time control test instances are first generated when Run is set to Periodically. The only date and time a control test instance is generated if Run is set to Once.
    Execution step The steps involved in the control test.
    Expected result The result that occurs after these tests.
    Include supporting data Indicator whether sample data is taken from a particular table within the instance when the control test instance is generated.
    Data purpose The purpose of the data being sampled If Include supporting data is selected. This selection influences how the control test is performed. Choices are:
    • None
    • Support test execution: Returns a random sampling of records.
    • Identifies non compliance: Returns all the records that do not match the condition or conditions specified.
    • Identifies compliance: Returns all the records that do match the condition or conditions specified.
    Table The table from which to sample when Include supporting data is selected.

    This field is read-only when Template is the Condition type. When you select a template to define test conditions, the certification filter used in the template sets the table and cannot be changed.

    Fields The list of fields to pull values from when determining whether records match the conditions when Include supporting data is selected.
    Condition type The type of conditions applied to the table and fields. Choices are:
    • Basic: Applies conditions to the table in question.
    • Advanced: Uses condition collections to apply conditions to the table and to related tables.
    • Template: Uses certification templates to apply conditions to the specified table. Select the template to use from the Template field.
    Sample size An integer number of rows for a random sample if Include supporting data is selected. A sample size of zero returns all matching records. This field is available only if Condition type is set to Basic and Data purpose is set to Support test execution.
    Control test conditions A condition builder that limits the sample data when Include supporting data is selected. This field is available only if Condition type is set to Basic.
    In scope definition A reference to a condition collection if Include supporting data is selected and Condition type is set to Advanced.
    Configuration to retrieve Method for using the Configuration reference field if Include supporting data is selected and Condition type is set to Advanced or Template.
    • None: Returns all records in scope.
    • Matching: Returns all matching records in scope.
    • Non-matching: Returns all non-matching records in scope.
    For more information, see Defining Advanced Conditions.
    Template [Required] Certification template that defines conditions for this test definition. Only templates with an audit type of Compliance are available for selection. This field is available and mandatory when the value in the Condition type field is Template.
    Configuration Condition collection to use. This field is available only if Include supporting data is selected, Condition type is set to Advanced, and Configuration to retrieve is set to anything except None.