Make risk and compliance available at everyone’s fingertips
We leveraged the ServiceNow Governance, Risk, and Compliance to monitor, manage, and act on different risks in real time, create policies …
Overview
What is ServiceNow Governance, Risk, and Compliance?
ServiceNow Governance, Risk, and Compliance provides the tools businesses use to proactively manage risk by measuring, testing and auditing internal processes. This solution helps business users ensure compliance to regulations, policies, standards and frameworks. It is available via the Standard,…
Recent Reviews
Popular Features
- Risk management (10)9.090%
- Common repository of GRC items (10)8.686%
- GRC policy management (10)8.484%
- Integration with Corporate Performance Management (CPM) systems (10)7.676%
Pricing
N/A
Unavailable
What is ServiceNow Governance, Risk, and Compliance?
ServiceNow Governance, Risk, and Compliance provides the tools businesses use to proactively manage risk by measuring, testing and auditing internal processes. This solution helps business users ensure compliance to regulations, policies, standards and frameworks. It is available via the Standard,…
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
58 people also want pricing
Alternatives Pricing
What is Clear Analytics?
Clear Analytics is a business intelligence solution that enables non technical end users to perform analytics by leveraging existing knowledge of Excel coupled with a built in query builder. Some key features include: Dynamic Data Refresh, Data Share and In-Excel Collaboration.
What is ManageEngine DataSecurity Plus?
ManageEngine's DataSecurity Plus is a software solution to help users find, analyze, and track sensitive personal data—also known as PII/ePHI— residing in Windows file servers and failover clusters.
Product Demos
ALL-IN-ONE SERVICENOW CAM DEMO - Continuous Authorization & Monitoring | Governance, Risk & Complian
YouTube
Features
Return to navigation
Product Details
- About
- Tech Details
- FAQs
What is ServiceNow Governance, Risk, and Compliance?
ServiceNow Governance, Risk, and Compliance Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Frequently Asked Questions
ServiceNow Governance, Risk, and Compliance provides the tools businesses use to proactively manage risk by measuring, testing and auditing internal processes. This solution helps business users ensure compliance to regulations, policies, standards and frameworks. It is available via the Standard, Professional, and Enterprise editions, the latter two supporting GRC and internal auditing processes.
Reviewers rate Risk management highest, with a score of 9.
The most common users of ServiceNow Governance, Risk, and Compliance are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(50)
Community Insights
TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!
- Recommendations
Users commonly recommend requesting a demo from the ServiceNow team to explore the software's offerings and make business operations smoother. They also suggest implementing GRC modules to improve key performance indicators. Additionally, users emphasize the importance of defining operational processes and roles for different users before granting them access to ServiceNow in order to ensure smooth access management within the platform. Taking these recommendations into consideration can greatly enhance the effectiveness and efficiency of using ServiceNow for business operations.
Attribute Ratings
Reviews
(1-3 of 3)Companies can't remove reviews or game the system. Here's why
ServiceNow is used within my organization to automate and structure services and updates for a streamlined and clear approach across all business units to stay up to date. ServiceNow software is useful to drive awareness of potential security or phishing updates, operation reminders or call outs, customer service touch points as well as human resource.
- Transparency of ask
- Clear and concise message
- Confidence in consistency across business units
- Occasionally the messages are too vague
- There have been instances of the notifications going out to all teams when all teams arent affected.
- Occasionally they would end up in spam
- Clear messaging
- Ease of flexibility in message
- Trust in compliance aspect
80%
8.0
- Quicker response time in employee finishing training upon first reminder
- Higher open rate to emails versus when sent from HR or compliance
- A clear message every send versus individuals within the company structuring the email
We just recently started using TrustArc for data privacy requests and I can already speak to the fact that TrustArc is a more confusing platform once there. The positives of ServiceNow would be that a majority of our URL's drive to owned websites which our employees are very comfortable with using versus pushing them to another website that feels unsafe.
September 17, 2020
Great software for GRC
As our company looked to assess and document our Internal Controls Environment and management, we looked to ServiceNow and other vendors to provide us with a framework/baseline starting point. We carefully compared features/capabilities of ServiceNow, Metric Stream, Modulo, and others and really benefited from the software demos offered by each company. We chose ServiceNow because of our already positive experience with their IT helpdesk software (was already used in our company) and how intuitively the GRC software appeared to operate. We understood that some customization was necessary, but felt it would more easily be adapted to our business versus the other options. Our experience, so far, has been positive; however, we feel we are still in the configuration/expansion phase. The challenges we are still overcoming are in our understanding of GRC attributes of our Oracle EBS R12 system, Active Directory access controls, and change control over these and other IT systems.
Our experience has been positive, and we appreciate the level of reporting and insight we gained by selecting a software like ServiceNow GRC instead of trying to handle this ourselves with documents and spreadsheets. As with most implementations, the costs occur up front, but we do expect an ROI in the next few years as we establish processes of administration, assessment, and remediation.
Our experience has been positive, and we appreciate the level of reporting and insight we gained by selecting a software like ServiceNow GRC instead of trying to handle this ourselves with documents and spreadsheets. As with most implementations, the costs occur up front, but we do expect an ROI in the next few years as we establish processes of administration, assessment, and remediation.
- Easily configurable and potentially customizable where needed
- Handle multiple user inputs and change management
- Good dashboard reporting and visibility for executive team
- Dashboard reporting takes some configuration to show KPIs needed
- Cost may increase as we add more users/expand its scope internationally
- Needs better templates to help our team configure and deploy effectively
42%
4.2
- Great ROI in time savings
- Scalable
- Executive and Internal Audit visibility of Risks and Compliance
We performed these assessments manually for years before selecting ServiceNow GRC. Other companies we assessed were Modulo and Metric Stream. Our takeaway from the other companies was that they seemed too simplistic to handle the needs of an Oracle EBS R12 ERP and our other systems. Further, we liked the reporting elements that came out of the box from ServiceNow.
September 15, 2020
Well produced, built out, mature. Great add-on to ServiceNow
I was on the team that implemented this at my former company and we are implementing this at my current company. On the security and risk teams, it is an absolute must to have a simple, repeatable way of mapping, tracking, and resolving security and risk issues. This is extremely valuable for us when we have our audits and need to provide evidence that we are adhering to what we say we do. ServiceNow GRC is very scalable and customizable which helped us meet both industry-standards and internal classification requirements in our organization.
- Finding reported by the auditor. GRC helps us identify, assign, and track the resolution of this.
- Exception to information security policy. These require quarterly reviews and setting up reminders to revisit these.
- Building out new projects and baking security and compliance into the project and tracking it in GRC to ensure we deliver a compliant product on day one
- Like all ServiceNow, there is a learning curve, but with custom forms, this is easier that it was 5 years ago.
72%
7.2
- Mostly cultural change. If teams aren't aware of the new implementation of GRC and they get a request to answer questions, it can be confusing. This is cultural and not a con against the product.
RiskVision was difficult to use, only worked in certain browsers and was an external system of what we used for other things. We had ServiceNow for a while and using the ServiceNow GRC was much better than some external tool that wasn't great for us.