Home Orlando Governance, Risk, and Compliance Governance, Risk, and Compliance Operational Resilience Operational Resilience dashboard

Operational Resilience dashboard

Operational Resilience allows an organization to continue to provide business services in the face of adverse operational events, such as fire, pandemic, weather, hacking, and so forth. By anticipating, preventing, recovering from, and adapting to these events, the dashboard provides a clear understanding of your company's operational resilience.

Operational Resiliency dashboard — Figure 1. Operational Resilience dashboard with areas of interest to various users

End user and report usage


User	Dashboard use
Operational Resilience Manager and Operational Resilience User	Use the dashboards and reports to ensure operational resilience in the organization. The Operational Resilience Manager also uses the reports to follow-up with the respective owners in the areas of risks, control failures, open overdue Priority 1 issues, assets with incidents, assets with vulnerabilities, and entities that do not have continuity or recovery plans.

Reports

Table 1. Reports on the Overview tab
Title	Type	Source table	Description
Critical Services	Single Score	Entity to Entity Type [sn_grc_m2m_profile_profile_type]	The number of critical services delivered to your customers.
Critical Entities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical entities that are supporting the services delivered to your customers.
Service Outages	Single Score	Critical Service Outage [sn_oper_res_critical_service_outage]	The number of critical services reporting a service outage.
Degraded Services	Single Score	Critical Service Outage [sn_oper_res_critical_service_outage]	The number of critical services reporting a degraded level of service.
Services with High Risks	Single Score	Services with High Risks [sn_oper_res_risk]	Services in each of the pillars identified as being high risk. The data in this report is pulled from the Advanced Risk Assessment application.
Services with Failed Controls	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	Services in each of the pillars identified as being impacted by failed controls. The data in this report is pulled from the Policy and Compliance Management application.
Services with Failed Scenarios	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	Services impacted by stress tests performed using scenario analysis. The report shows services that have failed or breached their defined thresholds.
Services with High Risks	Trend Report	Services with High Risks [sn_oper_res_risk]	Services in each of the pillars identified as being high risk. The data in this report is pulled from the Advanced Risk Assessment application.
Services with Failed Controls	Trend Report	Services with Failed Controls [sn_oper_res_failed_control]	Services in each of the pillars identified as being impacted by failed controls. The data in this report is pulled from the Policy and Compliance Management application.
Services with Overdue P1 Issues	Trend Report	Services with Priority 1 Issues [sn_oper_res_issue]	Services impacted by stress tests performed using scenario analysis. The report shows services that have failed or breached their defined thresholds. The report shows the number of P1 issues in each of the pillars that are overdue.
Services with No BC/DR Plans	Trend Report	Business Continuity Plan [sn_oper_res_bcm_plan]	Services that have no Business Continuity or Disaster Recovery plans. The data in this report is pulled from the Business Continuity Management application. Note: If the Business Continuity Management application is not installed, this report not have data.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your organization compared with your impacted services. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Note: The Service Details tab includes a filter you can use to view all services and processes used by your organization, or you can drill-down into a particular report to view information specific to that filter. The data in the reports reflect the settings in the filter. Services/Processes filter

Table 2. Reports on the Service Details tab
Title	Type	Source table	Description
Critical Entities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical entities that are supporting the filtered service and process.
High Risks	Single Score	Services with High Risks [sn_oper_res_risk]	The number of high risk services identified in the filtered service and process. The data in this report is pulled from the Advanced Risk Assessment application.
Failed Controls	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	The number of failed controls identified in the filtered service and process. The data in this report is pulled from the Policy and Compliance Management application.
High Risks	Trend Report	Services with High Risks [sn_oper_res_risk]	A trend report of high risk services by pillar identified in the filtered service and process. The data in this report is pulled from the Advanced Risk Assessment application.
Failed Controls	Trend Report	Services with Failed Controls [sn_oper_res_failed_control]	A trend report of failed controls by pillar identified in the filtered service and process. The data in this report is pulled from the Policy and Compliance Management application.
Overdue P1 Issues	Trend Report	Services with Priority 1 Issues [sn_oper_res_issue]	A trend report of overdue P1 issues by pillar identified in the filtered service and process. The data in this report shows the number of P1 issues in each of the pillars that are overdue.
Entities with Failed BC/DR Plans	Trend Report	Business Continuity Plan [sn_oper_res_bcm_plan]	A trend report of entities with objects that have Business Continuity or Disaster Recovery plans, but for which the plans are failing. The data in this report is pulled from the Business Continuity Management application.

Table 3. Reports on the Technology tab
Title	Type	Source table	Description
Critical Assets	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical assets, such as business applications or any of the underlying infrastructure that allows business users to work, being managed by the technology team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Major Open Incidents	Single Score	Critical Service Incident [sn_oper_res_incident]	The number of critical assets that have incidents opened against them.
Assets without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical assets that do not have an associated disaster recovery plan implemented.
Assets with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical assets that have disaster recovery plans, but the plans have failed.
Assets Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with technology assets that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type. The data in this report is pulled from the Advanced Risk Assessment application.
Assets Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for assets that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Assets Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low technology-related issues that have been opened for the critical assets or controls.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top technology risks threatening your impacted assets. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.
Top Vulnerabilities to be Fixed	Horizontal Bar	Vulnerable Entities [sn_oper_res_vul_profile]	The top vulnerable controls that are affecting technology assets, such as web applications, compared with impacted assets. The data in this report is pulled from the Vulnerability Response application. If Vulnerability Response is not installed, this report will be blank.

Table 4. Reports on the Facilities tab
Title	Type	Source table	Description
Critical Facilities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical facilities used by business users being managed by the facilities team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Current Incidents	Single Score	Critical Service Incident [sn_oper_res_incident]	The number of critical facilities that have incidents opened against them.
Facilities without Plan	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical facilities that do not have an associated disaster recovery plan implemented.
Facilities with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical facilities that have disaster recovery plans, but the plans have failed.
Facilities Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with facilities that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type.
Facilities Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for facilities that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Facilities Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical facilities.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted facilities. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Table 5. Reports on the People tab
Title	Type	Source table	Description
Critical Organizations	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical organizations used by business users being managed by the human resources team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Organizations without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that do not have an associated disaster recovery plan implemented.
Organizations with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that have disaster recovery plans, but the plans have failed.
Organizations Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with organizations that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type.
Organizations Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for organizations that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Organizations Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical organizations.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted organizations. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Table 6. Reports on the Suppliers tab
Title	Type	Source table	Description
Critical Suppliers	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical suppliers used by business users.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Suppliers without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that do not have an associated disaster recovery plan or supply chain plan implemented.
Suppliers with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical suppliers that have disaster recovery plans, but the plans have failed.
Suppliers Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The critical, high, moderate, and low risks associated with the suppliers.
Suppliers Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for suppliers that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Suppliers Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical suppliers.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted suppliers. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Previous topic

Next topic

Release version

Operational Resilience dashboard

End user and report usage


User	Dashboard use
Operational Resilience Manager and Operational Resilience User	Use the dashboards and reports to ensure operational resilience in the organization. The Operational Resilience Manager also uses the reports to follow-up with the respective owners in the areas of risks, control failures, open overdue Priority 1 issues, assets with incidents, assets with vulnerabilities, and entities that do not have continuity or recovery plans.

Reports

Table 1. Reports on the Overview tab
Title	Type	Source table	Description
Critical Services	Single Score	Entity to Entity Type [sn_grc_m2m_profile_profile_type]	The number of critical services delivered to your customers.
Critical Entities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical entities that are supporting the services delivered to your customers.
Service Outages	Single Score	Critical Service Outage [sn_oper_res_critical_service_outage]	The number of critical services reporting a service outage.
Degraded Services	Single Score	Critical Service Outage [sn_oper_res_critical_service_outage]	The number of critical services reporting a degraded level of service.
Services with High Risks	Single Score	Services with High Risks [sn_oper_res_risk]	Services in each of the pillars identified as being high risk. The data in this report is pulled from the Advanced Risk Assessment application.
Services with Failed Controls	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	Services in each of the pillars identified as being impacted by failed controls. The data in this report is pulled from the Policy and Compliance Management application.
Services with Failed Scenarios	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	Services impacted by stress tests performed using scenario analysis. The report shows services that have failed or breached their defined thresholds.
Services with High Risks	Trend Report	Services with High Risks [sn_oper_res_risk]	Services in each of the pillars identified as being high risk. The data in this report is pulled from the Advanced Risk Assessment application.
Services with Failed Controls	Trend Report	Services with Failed Controls [sn_oper_res_failed_control]	Services in each of the pillars identified as being impacted by failed controls. The data in this report is pulled from the Policy and Compliance Management application.
Services with Overdue P1 Issues	Trend Report	Services with Priority 1 Issues [sn_oper_res_issue]	Services impacted by stress tests performed using scenario analysis. The report shows services that have failed or breached their defined thresholds. The report shows the number of P1 issues in each of the pillars that are overdue.
Services with No BC/DR Plans	Trend Report	Business Continuity Plan [sn_oper_res_bcm_plan]	Services that have no Business Continuity or Disaster Recovery plans. The data in this report is pulled from the Business Continuity Management application. Note: If the Business Continuity Management application is not installed, this report not have data.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your organization compared with your impacted services. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Table 2. Reports on the Service Details tab
Title	Type	Source table	Description
Critical Entities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical entities that are supporting the filtered service and process.
High Risks	Single Score	Services with High Risks [sn_oper_res_risk]	The number of high risk services identified in the filtered service and process. The data in this report is pulled from the Advanced Risk Assessment application.
Failed Controls	Single Score	Services with Failed Controls [sn_oper_res_failed_control]	The number of failed controls identified in the filtered service and process. The data in this report is pulled from the Policy and Compliance Management application.
High Risks	Trend Report	Services with High Risks [sn_oper_res_risk]	A trend report of high risk services by pillar identified in the filtered service and process. The data in this report is pulled from the Advanced Risk Assessment application.
Failed Controls	Trend Report	Services with Failed Controls [sn_oper_res_failed_control]	A trend report of failed controls by pillar identified in the filtered service and process. The data in this report is pulled from the Policy and Compliance Management application.
Overdue P1 Issues	Trend Report	Services with Priority 1 Issues [sn_oper_res_issue]	A trend report of overdue P1 issues by pillar identified in the filtered service and process. The data in this report shows the number of P1 issues in each of the pillars that are overdue.
Entities with Failed BC/DR Plans	Trend Report	Business Continuity Plan [sn_oper_res_bcm_plan]	A trend report of entities with objects that have Business Continuity or Disaster Recovery plans, but for which the plans are failing. The data in this report is pulled from the Business Continuity Management application.

Table 3. Reports on the Technology tab
Title	Type	Source table	Description
Critical Assets	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical assets, such as business applications or any of the underlying infrastructure that allows business users to work, being managed by the technology team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Major Open Incidents	Single Score	Critical Service Incident [sn_oper_res_incident]	The number of critical assets that have incidents opened against them.
Assets without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical assets that do not have an associated disaster recovery plan implemented.
Assets with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical assets that have disaster recovery plans, but the plans have failed.
Assets Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with technology assets that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type. The data in this report is pulled from the Advanced Risk Assessment application.
Assets Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for assets that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Assets Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low technology-related issues that have been opened for the critical assets or controls.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top technology risks threatening your impacted assets. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.
Top Vulnerabilities to be Fixed	Horizontal Bar	Vulnerable Entities [sn_oper_res_vul_profile]	The top vulnerable controls that are affecting technology assets, such as web applications, compared with impacted assets. The data in this report is pulled from the Vulnerability Response application. If Vulnerability Response is not installed, this report will be blank.

Table 4. Reports on the Facilities tab
Title	Type	Source table	Description
Critical Facilities	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical facilities used by business users being managed by the facilities team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Current Incidents	Single Score	Critical Service Incident [sn_oper_res_incident]	The number of critical facilities that have incidents opened against them.
Facilities without Plan	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical facilities that do not have an associated disaster recovery plan implemented.
Facilities with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical facilities that have disaster recovery plans, but the plans have failed.
Facilities Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with facilities that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type.
Facilities Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for facilities that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Facilities Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical facilities.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted facilities. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Table 5. Reports on the People tab
Title	Type	Source table	Description
Critical Organizations	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical organizations used by business users being managed by the human resources team.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Organizations without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that do not have an associated disaster recovery plan implemented.
Organizations with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that have disaster recovery plans, but the plans have failed.
Organizations Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The risk assessments associated with organizations that have a residual risk. Residual risks can be defined in the qualitative rating criteria for the Residual risk assessment type.
Organizations Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for organizations that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Organizations Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical organizations.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted organizations. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

Table 6. Reports on the Suppliers tab
Title	Type	Source table	Description
Critical Suppliers	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical suppliers used by business users.
Supported Services	Single Score	Critical Entities [sn_oper_res_profile]	The number of critical business services being managed by the team.
Suppliers without Plans	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical organizations that do not have an associated disaster recovery plan or supply chain plan implemented.
Suppliers with Failed Tests	Single Score	Business Continuity Plan [sn_oper_res_bcm_plan]	The number of critical suppliers that have disaster recovery plans, but the plans have failed.
Suppliers Risk Rating	Donut Report	Risk Assessment [sn_risk_advanced_risk_assessment_instance]	The critical, high, moderate, and low risks associated with the suppliers.
Suppliers Control Effectiveness	Donut Report	Control [sn_compliance_control]	The controls for suppliers that are compliant and non-compliant. The report also shows the number of controls that have not yet been attested.
Suppliers Issues	Donut Report	Issue [sn_grc_issue]	The number of critical, high, moderate, and low issues that have been opened for the critical suppliers.
Top Risks to be Mitigated	Horizontal Bar	Services with High Risks [sn_oper_res_risk]	The top risks threatening your impacted suppliers. This report can be useful for determining where to start your mitigation efforts and in what areas you should devote the most resources around implementing controls.
Top Controls to be Strengthened	Horizontal Bar	Services with Failed Controls [sn_oper_res_failed_control]	The failing controls that impact the most critical services.

How search works:

Topics are ranked in search results by how closely they match your search terms

Operational Resilience dashboard

Operational Resilience dashboard

End user and report usage

Reports

On this page

Operational Resilience dashboard

Operational Resilience dashboard

End user and report usage

Reports

Log in to personalize your search results and subscribe to topics