Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • Madrid
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Components installed with Audit Management

Log in to subscribe to topics and get notified when content changes.

Components installed with Audit Management

Activating the GRC: Audit Management (com.sn_audit) plugin adds or modifies several tables, user roles, and other components.

Tables installed with Audit Management

Tables are added with activation of GRC: Audit Management.

Table Description
Activity

[sn_audit_activity]

Extends Audit Task [sn_audit_task] and stores audit activities
Audit Task

[sn_audit_task]

Extends Planned Task [planned_task] and is a generic table for all tasks associated with an audit
Base Audit Test

[sn_audit_base_test]

Base table for Test Templates and Test Plans
Control Test

[sn_audit_control_test]

Extends Audit Task [sn_audit_task] and stores control tests
Control to Engagement

[sn_audit_m2m_control_engagement]

Stores many-to-many relationships between controls and engagements
Engagement

[sn_audit_engagement]

Extends Planned Task [planned_task] and stores engagements
Interview

[sn_audit_interview]

Extends Audit Task [sn_audit_task] and stores interviews
Profile to Engagement

[sn_audit_m2m_profile_engagement]

Stores many-to-many relationships between profiles and engagements
Risk to Engagement

[sn_audit_m2m_risk_engagement]

Stores many-to-many relationships between risks and engagements
Test Plan

[sn_audit_test_plan]

Extends Base Audit Test [sn_audit_base_test] and stores test plans
Test plan to Engagement

[sn_audit_m2m_test_plan_engagement]

Stores many-to-many relationships between test plans and engagements
Test Template

[sn_audit_test_template]

Extends Base Audit Test [sn_audit_base_test] and stores test templates
Walkthrough

[sn_audit_walkthrough]

Extends Audit Task [sn_audit_task] and stores walkthroughs
Audit Report Template

[sn_audit_report_template]

Note: All additional tables installed by the dependent plugins are also needed for GRC: Audit Management.

Properties installed with Audit Management

Properties are added with activation of GRC: Audit Management.

Name Description
Defines the workflow that will be used for control test approval

sn_audit.control_test_approval_workflow

  • Type: string
  • Default value: Control Test Approval
Defines the workflow that will be used for engagement approval

sn_audit.engagement_approval_workflow

  • Type: string
  • Default value: Engagement Approval

Roles installed with Audit Management

Roles are added with activation of GRC: Audit Management.

Role title [name] Description Contains roles
Audit User

[sn_audit.user]

In addition to the inherited permissions, the audit user can be assigned audit tasks and create test templates and test plans. The audit user has read-only access to the Risk Management application and modules and the Policy and Compliance Management application and modules.
  • sn_grc.reader
  • sn_grc.user
Audit Manager

[sn_audit.manager]

In addition to the inherited permissions, the audit manager can create authority documents, citations, policies, policy statements, and controls.
  • sn_grc.reader
  • sn_grc.user
  • sn_grc.manager
  • sn_audit.user
Audit Admin

[sn_audit.admin]

In addition to the inherited permissions, the audit admin can delete engagements, audit tasks, test templates, and test plans.
  • sn_grc.reader
  • sn_grc.user
  • sn_grc.manager
  • sn_grc.admin
  • sn_audit.user
  • sn_audit.manager
Audit Developer

[sn_audit.developer]

In addition to the inherited permissions, the audit developer can add and delete audit report templates.
  • sn_grc.reader
  • sn_grc.user
  • sn_grc.manager
  • sn_grc.admin
  • sn_audit.user
  • sn_audit.manager
  • sn_audit.admin
External Auditor

[sn_audit.external_auditor]

External auditors can be assigned as auditors for an engagement and can be assigned to audit tasks. They can view closed engagements, audit tasks that are assigned to them, and closed audit tasks. If the Policy and Compliance Management plugin or Risk Management plugins are installed, they can also view published policies and controls and risks in the Monitor state.
Feedback