The Technology Controls Monitoring Accelerator is a collection of predefined indicator templates designed to ease data collection, support validation, and facilitate the continuous monitoring of technical controls enabled by ServiceNow and its partners.
These indicator templates are linked to specific ServiceNow applications to facilitate compliance validation against standards and frameworks, such as the CIS Controls® from the Center for Internet Security®.
These packaged templates have also been mapped to related common controls in the Unified Compliance Framework (UCF) to enable validation of controls across a wide range of regulations and industry standards supported by UCF, including ISO/IEC 27002, NIST 800-53, PCI, GDPR, and others. They can also be used to validate compliance with related control objectives in custom policies.
Predefined automated and manual indicator templates streamline data collection and facilitate the validation and continuous monitoring of technical controls.
New
Query range ACLs include the following enhancements:
- Consistent access control — All tables include standardized query range security ACLs. These ACLs ensure that authenticated users with appropriate read permissions can query records consistently across the platform.
- Seamless upgrade experience — New query ACL rules are installed automatically during upgrade, with no administrator action required. Automated upgrade scripts handle the transition, including detecting and processing previously customized ACLs to ensure existing processes continue without interruption.
Post-upgrade review for customized ACLs:
- If the instance includes administrator-modified query range ACLs, review those records after upgrade to confirm they align with the intended access policy.
The following GRC application must be installed and active:
- GRC: Policy Compliance Management (com.sn_compliance)
- Integrated Risk Management Standard
Permissions and roles:
- Role required to install the app: System Administrator (admin)