The ServiceNow® Advanced Core provides common functionality to support forward-looking use cases across GRC applications such as Risk, Policy and Compliance, and Audit. It includes capabilities to manage issue triage workflows and evidence collection by compliance or audit teams, streamlining vital processes across the enterprise.
• Issue triage workflow to address self-identified issues.
• Track triaged issues as reportable issues or risk events, or close them as recommendations or non-issues.
• Evidence collection workflow for audit and compliance teams to collect evidence from control owners or business users.
• Central repository of collected evidence that can be referenced and reused from various places.
• Mark evidence requests and evidence request tasks as confidential.
- New
- Query range ACL's
- Consistent access control: All tables include standardized query range security ACLs, ensuring that authenticated users with appropriate read permissions can query records consistently across the platform.
- Seamless upgrade experience: New query ACL rules are installed automatically during upgrade with no administrator action required. Automated upgrade scripts handle the transition, including detecting and processing previously customized ACLs to ensure existing processes continue without interruption.
- Post-upgrade review for customized ACLs: If the instance includes administrator-modified query range ACLs, review those records after upgrade to confirm they align with the intended access policy.
- Query range ACL's
The following GRC application must be installed and active:
- GRC: Profiles (com.sn_grc)
Permissions and roles:
- Role required to install the app: System Administrator (admin)
When upgrading the Advanced Core application, ensure that all other installed GRC applications are also upgraded to their corresponding release versions. For example, Advanced Core version 20.x is certified to work with Policy and Compliance Management version 20.x and other GRC applications of version 20.x.