Cart 0

ServiceNow GRC: Integrated Risk Management (IRM) Implementation Training
Course 2526
3 DAY COURSE

Price:
Course Outline

This course provides hands-on training for implementing ServiceNow Integrated Risk Management (IRM). Through a combination of instructor-led discussion, configuration walkthroughs, and practical labs, participants learn how to plan, configure, and manage IRM applications including Policy and Compliance, Risk Management, and Advanced Risk using Zurich release capabilities.

ServiceNow GRC: Integrated Risk Management (IRM) Implementation Training Benefits

  • In this course, you will:

    • Plan and scope an IRM implementation, including stakeholders, roles, and timelines
    • Configure entity frameworks and entity-based access
    • Configure policy, compliance, and control lifecycles
    • Configure risk appetite and advanced risk assessment methodologies
    • Implement continuous monitoring using indicators and metrics
    • Configure issue management and triage
    • Apply Smart Assessment Engine (SAE) capabilities
    • Manage security, confidentiality, and common GRC configuration elements

    This course covers the domain knowledge, technical aspects, and various processes needed to effectively manage a GRC: Integrated Risk Management (IRM) implementation of GRC: Policy and Compliance, GRC: Risk Management, and GRC: Advanced Risk.

    • Prerequisites:

        Data analysis and student feedback show that students may struggle in this class if they have chosen to skip the prerequisite courses:

        • Welcome to ServiceNow (On Demand)
        • ServiceNow Administration Fundamentals (SNAF) Training
        • GRC: Integrated Risk Management (IRM) Fundamentals (On Demand)

      • Certification Information

        Upon completion of course, the candidate will be issued a voucher code to register for the Certified Implementation Specialist – Risk and Compliance (CIS-RC) exam. Before taking the exam, complete GRC: Audit Management Essentials, GRC: Classic Risk Assessment Fundamentals, and GRC: Regulatory Change Management (RCM) Essentials. Additional courses are recommended and can be found in Now Learning.

        Successful candidates will be awarded a “ServiceNow Implementation Specialist – Risk and Compliance” certificate.

      ServiceNow GRC IRM Implementation Training Outline

      Learning Objectives

      Module 1: Implementation Planning

      Objectives

      • Review the ServiceNow Store release schedule and CIS implementation journey
      • Explore IRM maturity levels and implementation use cases
      • Discuss implementation phases, timelines, and core team roles
      • Review IRM architecture and core roles
      • Identify implementation resources

      Labs

      • Lab 1.2.1: Prepare for implementation
      • Lab 1.3.1: Update the business user lite role

       Module 2: Entity Framework

      Objectives

      • Explain entity scoping approaches and benefits
      • Explore entity ownership and automation
      • Manage entity classes and relationships
      • Review GRC Profiles table architecture

      Labs

      • Lab 2.2.1: Synchronize entity, control, and risk ownership
      • Lab 2.3.1: Entity class management
      • Lab 2.4.1: Configure Entity-Based Access (EBA)

       Module 3: Policy and Compliance

      Objectives

      • Review application architecture and table structures
      • Define policy and control management workflows
      • Configure policy acknowledgement campaigns
      • Configure policy exceptions and approvals

      Labs

      • Lab 3.2.1: Modify policy properties and configure approvals
      • Lab 3.3.1: Create a unique control for an entity and control objective combination
      • Lab 3.3.2: Convert a standard control to a common control
      • Lab 3.4.1: Modify policy exception properties

       Module 4: Risk and Advanced Risk

      Objectives

      • Review risk and advanced risk architecture, tables, and roles
      • Configure risk appetite
      • Configure advanced risk assessment methodologies
      • Simulate and publish risk assessments
      • Review risk hierarchy and reporting

      Labs

      • Lab 4.2.1: Create manual and group factors for a Risk Assessment Methodology (RAM)
      • Lab 4.3.1: Configure a RAM and simulation

       Module 5: Continuous Monitoring

      Objectives

      • Discuss the need for continuous risk and control monitoring
      • Review indicator architecture and scenarios
      • Explore GRC Metrics for continuous monitoring

      Labs

      • Lab 5.2.1: Continuously monitor with control indicators

       Module 6: GRC Common Elements

      Objectives

      • Manage confidential records and security using user groups and hierarchy
      • Review issue creation and issue triage
      • Review common configuration options
      • Explore Smart Assessment Engine (SAE) capabilities

      Labs

      • Lab 6.1.1: Enable confidentiality
      • Lab 6.4.1: Configure issue management
      Course Dates

      For course questions or any customer service inquiry, please contact your Customer Service team at BAHCustomerService@LearningTree.com.

      We are excited that Learning Tree now offers a deferred direct bill payment option for Booz Allen employees. The deferred direct bill payment option enables employees to enroll in learning opportunities with no upfront costs. This payment option will require the employee to sign a Family Educational Rights and Privacy Act (FERPA) agreement with Learning Tree to release grades/completion to Booz Allen to satisfy the FlexEd Program completion requirement. Note, Learning Tree may also be used for the FlexEd Program reimbursement payment option.

      Attendance Method
      Additional Details (optional)

      Private Team Training

      Interested in this course for your team? Please complete and submit the form below and we will contact you to discuss your needs and budget.