ServiceNow GRC: Integrated Risk Management (IRM) Implementation Training

In this course, attendees gain practical skills for the effective implementation of several core ServiceNow GRC applications. A combination of lecture, group discussions and activities, and hands-on lab activities helps attendees develop their skills.

ServiceNow GRC: Integrated Risk Management (IRM) Implementation Training Benefits

• In this course, you will:

  • Identify implementation stakeholders, resources, and contributors to success
  • Review entity scoping approaches, considerations, and techniques
  • Discuss baseline application functionality, security, and architecture
  • Set up an entity framework and manage entity classes
  • Modify policy properties and review policy and compliance and risk lifecycles
  • Configure policy and compliance and risk lifecycles 
  • Configure risk appetite
  • Explore advanced risk assessment functionality, set-up, and configurations
  • Create and run basic indicators for continuous monitoring
  • Explore metrics for risk continuous monitoring
  • Set up issue triage for routing issues
  • Explore Smart Assessment Engine (SAE) capabilities
  • Discuss supported integrations

  This course covers the domain knowledge, technical aspects, and various processes needed to effectively manage a GRC: Integrated Risk Management (IRM) implementation of GRC: Policy and Compliance, GRC: Risk Management, and GRC: Advanced Risk.

• Prerequisites:

  Data analysis and student feedback show that students may struggle in this class if they have chosen to skip the prerequisite courses:

  • Welcome to ServiceNow (On Demand)
  • ServiceNow Administration Fundamentals (SNAF) Training
  • GRC: Integrated Risk Management (IRM) Fundamentals (On Demand)

• Certification Information

  Upon completion of course, the candidate will be issued a voucher code to register for the Certified Implementation Specialist – Risk and Compliance (CIS-RC) exam. Before taking the exam, complete GRC: Audit Management Essentials, GRC: Classic Risk Assessment Fundamentals, and GRC: Regulatory Change Management (RCM) Essentials. Additional courses are recommended and can be found in Now Learning.

  Successful candidates will be awarded a “ServiceNow Implementation Specialist – Risk and Compliance” certificate.

ServiceNow GRC IRM Implementation Training Outline

Learning Objectives

Module 1: Implementation planning

• Discuss the SN Store release schedule and certification implementation specialist journey 
• Explore IRM maturity levels and use cases from an implementation perspective
• Discuss implementation project phases and timelines
• Discuss recommended implementation stakeholders and core team
• Review IRM architecture 
• Analyze IRM core roles
• Find and participate in implementation resources 

Module 2:  Entity framework

• Explain entity scoping, entity scoping approaches, and benefits of leveraging entity types 
• Explore entity ownership and automation
• Discuss entity classes, management, and utilization in IRM applications
• Review GRC: Profiles table architecture and primary relationships

Module 3: Policy and Compliance

• Review application architecture and table structures 
• Define policy management workflow
• Configure policy acknowledgement campaigns
• Define control management workflow 

Module 4: Risk and Advanced Risk

• Review application architecture, table structures, and roles 
• Discuss risk appetite and configuration
• Discuss advanced risk assessment configuration
• Simulate an assessment
• Demonstrate risk hierarchy and reporting capabilities 

Module 5: Continuous monitoring

• Discuss the need for continuous risk and control monitoring 
• Review continuous monitoring architecture, scenarios, and configuration with indicators
• Discuss GRC: Metrics and how the application can be used for continuous monitoring

Module 6: GRC common elements

• Manage confidential records and address security concerns with user groups and hierarchy 
• Review issue creation and issue triage
• Discuss configuration options
• Discuss Smart Assessment Engine (SAE) capabilities