Request apps on the Store

Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

Respond to business risks in real time with GRC

ServiceNow Governance, Risk, and Compliance (GRC) helps transform inefficient processes across your extended enterprise into an integrated risk program. Through continuous monitoring and automation, the GRC applications deliver a real time view of compliance and risk, improve decision making, and increase performance across your organization and with vendors.

Only ServiceNow applications can connect the business, security, and IT with an integrated risk framework that transforms manual, siloed, and inefficient processes into a unified program that is built on a single platform.

View and download the full info card for a highlight of GRC features.

	Streamline and automate activities in the face of an emergency Mobilize your business continuity efforts during natural disasters and pandemics like COVID-19.
	Automate and manage policy life cycles and continuously monitor for compliance. It makes perfect sense to embrace a single platform that can make all compliance efforts more organized, simpler, more transparent, and highly reliable.
	Enable fine-grained business impact analysis to appropriately prioritize and respond to risks. Respond to business risks in real-time with integrated risk management.
	Use risk data to scope and prioritize audit plans and automate cross-functional processes. Reduce audit costs, improve efficiency, and minimize risk.
	Continuously monitor, detect, assess, mitigate, and remediate risk in vendor ecosystems. As your vendors become privy to more of your sensitive systems and data, their risk and compliance posture becomes even more important to your security. It's important to assess your vendors regularly and proactively mitigate any issues that arise.

Automate and manage policy life cycles and continuously monitor for compliance

The ServiceNow® Policy and Compliance Management product provides a centralized process for creating and managing policies, standards, and internal control procedures. The process automatically cross-maps the procedures to external regulations. Also, the application provides structured workflows for the identification, assessment, and continuous monitoring of control activities.

Enable fine-grained business impact analysis to appropriately prioritize and respond to risks

The ServiceNow Risk Management product provides a centralized process to identify, assess, respond to, and continuously monitor Enterprise and IT risks that may negatively impact business operations. The application also provides structured workflows for the management of risk assessments, risk indicators, and risk issues.

Use risk data to scope and prioritize audit plans and automate cross-functional processes

The ServiceNow Audit Management product automates the work streams of internal audits teams, optimizing resources and productivity, and eliminating recurring audit findings. Audit Management uses compliance and risk data to scope, plan, and prioritize audit engagements. The ongoing review of policies and procedures, risks, and control breakdowns provide an opportunity for fixing issues before they become audit failures.

The ServiceNow Regulatory Change Management application enables the customers to check upcoming regulatory changes, assess their impact, and implement risk and compliance related changes, ensuring overall regulatory compliance.

Continuously monitor, detect, assess, mitigate, and remediate risk in vendor ecosystems

Watch this six-minute video to learn about ServiceNow Vendor Risk Management.

As your vendors become privy to more of your sensitive systems and data, their risk and compliance posture becomes even more important to your security. It's important to assess your vendors regularly, but until now, it has been a time-consuming and error-prone exercise comprised of spreadsheets, email, and rudimentary legacy risk management tools.

The Vendor Risk Management application transforms the way you manage vendor risk through vital reporting of vendor risk and issues, a consistent assessment and remediation process, and automated assessment procedures. It provides a means to facilitate stakeholder interactions, drive transparency and accountability, and effectively monitor vendor-related risks.

By aligning Vendor Risk Management with overall enterprise risk management priorities, you can create an essential integrated view of risk and a stronger extended enterprise risk posture.

Get started

• Work with an implementation specialist to achieve your desired business outcomes. To learn more, visit the Customer Success Center.
• Take a Governance, Risk, and Compliance course to build expertise and realize ROI faster. To sign up, see ServiceNow training and certification.