Option 2: Internal Control Library

Modified on Wed, 28 Sep, 2022 at 2:15 AM

If you plan to create a consolidated set of Internal Controls to map to multiple frameworks, you can start from the Internal Control Library in the Compliance module, add your Internal Controls, then map them to the appropriate frameworks in your GRC Library.

  1. Go to the Compliance Module Internal Controls tab

  2. Click Add New

  3. Populate the fields (see video for tips: See our video training on how to write and internal control

  4. Click Save

  5. Go to the Control Library tab in the Internal Control record

  6. Select [Look up]

  7. Add the appropriate framework - control statement


HELPFUL TIPS: When you map a Control Library Statement, check the crosswalk tab in that Statement to see which other frameworks overlap. This may save you time when mapping additional frameworks.

NOTE: The 1Risk Platform does not automatically migrate all crosswalks. Crosswalks are a reference point for you to choose whether or not to migrate suggested overlapping requirements.


NOTE: Here are some tips for writing an internal control:

What is the activity being implemented?

Who is responsible for its implementation?

How often is the control implemented?

What is the strength of the control?

Not Implemented (0%)

Partially implemented (1% to 80%)

Fully implemented (80% to 100%)

What kind of control is this?

Detective

Corrective

Preventative

Is this a key control (is it associated with and does it help resolve a risk in the risk register)?





Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons

Feedback sent

We appreciate your effort and will try to fix the article