This course provides hands-on training for implementing ServiceNow Integrated Risk Management (IRM). Through a combination of instructor-led discussion, configuration walkthroughs, and practical labs, participants learn how to plan, configure, and manage IRM applications including Policy and Compliance, Risk Management, and Advanced Risk using Zurich release capabilities.
ServiceNow GRC IRM Implementation Training Delivery Methods
ServiceNow GRC IRM Implementation Training Course Information
In this course, you will:
- Plan and scope an IRM implementation, including stakeholders, roles, and timelines
- Configure entity frameworks and entity-based access
- Configure policy, compliance, and control lifecycles
- Configure risk appetite and advanced risk assessment methodologies
- Implement continuous monitoring using indicators and metrics
- Configure issue management and triage
- Apply Smart Assessment Engine (SAE) capabilities
- Manage security, confidentiality, and common GRC configuration elements
This course covers the domain knowledge, technical aspects, and various processes needed to effectively manage a GRC: Integrated Risk Management (IRM) implementation of GRC: Policy and Compliance, GRC: Risk Management, and GRC: Advanced Risk.
Prerequisites:
Data analysis and student feedback show that students may struggle in this class if they have chosen to skip the prerequisite courses:
Certification Information
Upon completion of course, the candidate will be issued a voucher code to register for the Certified Implementation Specialist – Risk and Compliance (CIS-RC) exam. Before taking the exam, complete GRC: Audit Management Essentials, GRC: Classic Risk Assessment Fundamentals, and GRC: Regulatory Change Management (RCM) Essentials. Additional courses are recommended and can be found in Now Learning.
Successful candidates will be awarded a “ServiceNow Implementation Specialist – Risk and Compliance” certificate.
ServiceNow GRC IRM Implementation Training Outline
Module 1: Implementation Planning
Objectives
- Review the ServiceNow Store release schedule and CIS implementation journey
- Explore IRM maturity levels and implementation use cases
- Discuss implementation phases, timelines, and core team roles
- Review IRM architecture and core roles
- Identify implementation resources
Labs
- Lab 1.2.1: Prepare for implementation
- Lab 1.3.1: Update the business user lite role
Module 2: Entity Framework
Objectives
- Explain entity scoping approaches and benefits
- Explore entity ownership and automation
- Manage entity classes and relationships
- Review GRC Profiles table architecture
Labs
- Lab 2.2.1: Synchronize entity, control, and risk ownership
- Lab 2.3.1: Entity class management
- Lab 2.4.1: Configure Entity-Based Access (EBA)
Module 3: Policy and Compliance
Objectives
- Review application architecture and table structures
- Define policy and control management workflows
- Configure policy acknowledgement campaigns
- Configure policy exceptions and approvals
Labs
- Lab 3.2.1: Modify policy properties and configure approvals
- Lab 3.3.1: Create a unique control for an entity and control objective combination
- Lab 3.3.2: Convert a standard control to a common control
- Lab 3.4.1: Modify policy exception properties
Module 4: Risk and Advanced Risk
Objectives
- Review risk and advanced risk architecture, tables, and roles
- Configure risk appetite
- Configure advanced risk assessment methodologies
- Simulate and publish risk assessments
- Review risk hierarchy and reporting
Labs
- Lab 4.2.1: Create manual and group factors for a Risk Assessment Methodology (RAM)
- Lab 4.3.1: Configure a RAM and simulation
Module 5: Continuous Monitoring
Objectives
- Discuss the need for continuous risk and control monitoring
- Review indicator architecture and scenarios
- Explore GRC Metrics for continuous monitoring
Labs
- Lab 5.2.1: Continuously monitor with control indicators
Module 6: GRC Common Elements
Objectives
- Manage confidential records and security using user groups and hierarchy
- Review issue creation and issue triage
- Review common configuration options
- Explore Smart Assessment Engine (SAE) capabilities
Labs
- Lab 6.1.1: Enable confidentiality
- Lab 6.4.1: Configure issue management
