Database Reference
In-Depth Information
Oracle GRC Manager is independent of the applications that it tests and validates,
and can be successfully deployed in any environment (Oracle or non-Oracle).
Oracle GRC Intelligence provides business process risk and control analytics with
the flexibility to drill down into transaction systems from high-level dashboards. The
solution provides prebuilt key performance indicators (KPIs) that show the progress
of risk and control activities, and highlights specific areas of concern, such as
unmitigated risks and ineffective controls. These indicators enable you to effectively
analyze GRC activities to identify potential issues earlier, and to take more timely
and effective corrective actions. Oracle GRC Intelligence is also fully extensible,
allowing users to create new KPIs and reports based on both Oracle and non-Oracle
data sources.
Assessment workflow in Oracle GRC Manager
Oracle GRC Manager Assessment workflow is used to route a business process for
the assessment of its risks and verification of controls. This assessment workflow
enables you to record assessment of the organization's risks and controls. The
amount of control testing work performed in an audit depends to a large measure
on this up front assessment.
The following figure shows the assessment workflow:
Initiate
Assessment
Verify
Controls
Certify
Assessment
Access Risks
Assessment workflow is activated whenever a user with permissions wishes to
have one or more processes assessed. The workflow progresses are explained in
the following sections.
Initiating assessment
The Compliance PMO employs a qualitative risk assessment technique to determine
the inherent as well as residual risks, which are rated in terms of likelihood and
impact on the screen page in GRC Manager.
Search WWH ::
Custom Search