Review Requirements

Requirement owners are responsible for documenting issues and ensuring their business unit complies with their assigned requirements by creating new controls or selecting existing controls from the library. Once users in the group have completed their tasks, the requirements are then sent to the Compliance Team for review. 

All assigned requirements appear on the My Tasks page. Assigned requirements on the My Tasks page. 

To review requirements:

  1. Log into a user account that's been added to the Requirement Owner user group to display the My Tasks page. 
  2. Click a requirement to display the Requirement Review form. 
    The Requirement Review form.
  3. Click + in the Review Requirement Details section to review the requirement's details.The Review Requirement Details section.
  4. Select either Add Existing Controls or Create New in the Control Documentation section. 
    • If you selected Add Existing Controls
      1. Begin typing in the search bar to search for existing controls. If any of the controls are applicable to the requirement, click Add
        Searching for existing controls in the Add Existing Controls dialog.
    • If you selected Create New
      1. Enter a name in the Control Name field, then add a description of the control to the Description field. 
      2. Begin typing keywords in the Control Owner field to display a list of available users, then click to select an appropriate user. The control will be assigned to the Control Owner for review. Control owners receive an email notification when a control is assigned to them. Repeat this process with the Requirements and Risks fields. 
      3. Select a control automation option from the Automated Control dropdown. Repeat this process with the Frequency, Key Control, and Prevent or Detect fields. 
      4. Optional: Drag or browse for a file in the Supporting Attachments field. Files can be up to 100 MB in size. Most files types are accepted, however, you cannot upload files with the following extensions:
        • .bat
        • .exe
        • .gif
        • .sh
        • .dll
        • .com
      5. Select the control strength in the Control Self Assessment field. 
      6. Click CreateThe Create Controls dialog.
  5. Optional: Begin typing keywords in the Document Issues search bar to display a list of existing issues, then click to select an appropriate issue.
  6. Optional: Click + to create a new issue: 
    1. Enter a name in the Issue Name field. 
    2. Select an issue type in the Issue Type field. Repeat this process for the Priority and Identified By fields. 
    3. Select a date in the Date Identified field. Repeat this process with the Due Date field. 
    4. Enter a description of the issue in the Description field. 
    5. Click Open Issue
  7. Click one of the following buttons: 
    • Submit for Compliance Team Review: Send the completed requirement to the Compliance Team. The Compliance Team will receive an email notifying them that the requirement has been sent to them for review. 
    • Return to Compliance Team: If the requirement was assigned to you in error, add comments to the Comments box, then click this button to return the requirement to the Compliance Team.