Servicenow Risk And Compliance Implementation

This two-day course covers the domain knowledge, common implementation technical aspects, and various processes needed to effectively manage a Risk Management and Policy and Compliance Management implementation, as part of the Governance, Risk, and Compliance (GRC) suite.

Audit Management Implementation and Vendor Risk Management Implementation are covered in separate courses.

Through lectures, group discussion, hands-on labs, and demonstrations, participants will build on existing knowledge and skills.

Course topics include: GRC Overview, Implementation Planning, Entity Scoping, Policy and Compliance Implementation Approach, Risk Implementation Approach, Extended Capabilities

• ServiceNow Platform Implementation (821290) is recommended, but not required.

Recommended prerequisites:

• SNIRMI - ServiceNow Integrated Risk Management (IRM) Implementation
• SNSAF - ServiceNow Administration Fundamentals
• SNPI - ServiceNow Platform Implementation

• Practice navigating the Risk and Policy and Compliance applications
• Define key terminology and personas in the Risk and Compliance industry
• Evaluate Risk and Compliance use cases
• Recall the ServiceNow scoping framework and architecture
• Review scoping considerations and techniques that guide the approach for Entity scoping
• Examine Entity scoping examples and practice scoping an organization
• Recall baseline Risk and Policy and Compliance application functionality, security, and architecture
• Examine solution features and implementation considerations
• Discuss supported integrations and share common practices
• Describe available content packs and Performance Analytics capabilities

Technical Consultants, Implementers, Developers, and Architects, Project/Program/Engagement Managers, Operations Managers

Governance, Risk, and Compliance (GRC) Overview

• GRC Positioning and Framework
• Key Terminology
• Technical Details
• Lab 1.1 Preparing to Implement ServiceNow Risk and Policy and Compliance Applications

Implementation Planning

• Use Cases
• Implementation Team
• Implementation Checklist
• Groups and Roles
• Lab 2.1 Automate Entity Owner Group Membership

Entity Scoping

• Entity Scoping Overview
• Entity Type Approach
• Entity Class Approach
• GRC Entities Architecture
• Lab 3.1 Practice Scoping an Organization
• Lab 3.2 Entity Class and Dependency Management

Policy and Compliance Implementation Approach

• Policy and Compliance Record Lifecycles
• Policy and Compliance Architecture
• Common Configurations and Customizations
• Lab 4.1 Create a Policy Acknowledgement Campaign
• Lab 4.2 Control – Performance Analytics Indicator

Risk Implementation Approach

• Risk Record Lifecycles
• Risk Architecture
• Original Risk Assessment and Risk Scoring
• Advanced Risk Assessment and Risk Scoring
• Common Configurations and Customizations
• Lab 5.1 Import Risk Statements with an Import Template
• Lab 5.2 Create and Process an Advanced Risk Assessment
• Lab 5.3 Monitor Key Risk Indicators

Extended Capabilities

• Content Packs
• Integrations
• Performance Analytics
• Other Platform Capabilities