The Audit Management automates the work streams of internal audit teams, optimizing resources and productivity, and eliminating recurring audit findings. Audit Management uses compliance and risk data to scope, plan, and prioritize audit engagements. The on-going review of policies and procedures, risks, and control breakdowns provide an opportunity for fixing issues before they become audit failures.

Audit Management users

Auditors (an independent body, typically reporting to the board of directors).

Key activities for Audit Management

Auditors are responsible for the following:
  • Review policies and procedures
  • Review risks
  • Review control design
  • Review control test design
  • Review control test results
  • Test controls
  • Issue observations

Audit Management and the ServiceNow platform

Figure 1. Audit Management and the Now Platform
Audit Management and the Now Platform
Note: For more information on the GRC application nomenclature and industry terminology, see GRC application nomenclature updates and industry terminology.