Database Reference
In-Depth Information
Controls assessment
After the assessment is initiated, it is assigned to the auditor to complete each
assessment activity for the controls that are in scope. After the auditor completes
the assessment, it is assigned to the reviewers and approvers. If the approver fails
the assessment, an issue is created.
The following figure shows the
Controls Assessment Workflow:
:
Component Owner
Creates and Submits an
Adhoc Assessment
Assessor Receives
Worklist and Email
Notification that the
Assessment Results
are Approved
Assessment
Created and
Assigned to an
Assessor
Assessor
Assessor Makes
Corrections to the
Component
Completes and
Submits the
Assessment
Administrator or
Assessment Manager
Initiates and Submits an
Assessment
Assessment
Reviewer Reviews
the Assessment
Results
Reject or
Accept
Assessment
Results?
Reject
Assessment is
Marked Complete
Reject
Accept
Reject or
Accept
Assessment
Results?
Accept
Approver Reviews
the Assessment
The auditors can assess controls or other GRC components, such as risks, processes,
and so on assigned to them using any of the following methods:
1.
Select the assessment from the worklist and click on the
Edit
icon.
2.
From the object's
Assessments
page, select
Assessments
, and then click on
the
Complete
or
Review/Approve
button, depending on your role and the
status of the assessment.
3.
From the
GRC Tools
page, click on the
Complete Assessments
link.
Search WWH ::
Custom Search