Applicability Assessment
- Scope all frameworks, topics, subtopics and requirements relevant to Business Units across the organization
- Complete Applicability Assessment for each requirement to determine if it's relevant to your line of business.
- Provide rationale for requirements deemed as not applicable
Assess Risk
- Notify Requirement Owners to perform Risk Self-Assessment for their assigned requirements
- Requirement owners are expected to review requirement description and can use Historical Trending to get an understanding of assigned requirements
- Requirement Owners determine inherent risk, document all known controls, and evaluate residual risk.
- Determine Level of Compliance
- Create or add new Issues and Actions, if needed
Review, Remediation, & Monitoring
- Review the results provided by the Requirement Owner. Based on the inherent risk, documented controls, and residual risk, determine whether the requirement is compliant, partially compliant, or not compliant.
- An overview of all issues and corrective actions in a compliance assessment.
- Address all outstanding issues and corrective actions
- Create or add new Issues and Actions, if needed
Key Reporting
Out-of-the-box Company and Business level reports:
- Management Dashboard
- Executive Dashboard
- Compliance Management Status Overview
- Compliance Executive Summary
- Risk Overview Reports
- Status Reports
- Issue Summary Reports
- Compliance Testing Plan by Business Unit
- Not Applicable Requirements
Managing Library of Content
- Access to the library of relevant content
- Upload own content to maintain the library
- Receive selected Resolver Content
- Review Regulatory Change Log and control information to all assessments