/
Step 4. Assign control assessors

Step 4. Assign control assessors

Owned by Victoria Buhler (Deactivated)
Feb 09, 2023
2 min read

Ā 

ZenComply Help

Step 4. Assign control assessors

After completing the previous step 3. Audit set up, you now need to assign all of the relevant controls to a user who will play the role of Control Assessor. A Control Assessor is responsible for:

  • collecting evidence

  • evaluating the control effectiveness

  • creating findings

Based on the previously scoped framework requirements in Step 2, ZenComply automatically includes any SCF controls that are mapped to those requirements.

Control Assessors must be assigned to each control. This ensures user ownership for the Control Assessment and Evidence Requests that will be sent next, in step 5. Review and launch.

Control Assessors ensure accountability and allow you to report on those responsible for assigned activities within ZenComply.

How do I Assign control assessors?

Who you assign as a Control Assessor largely depends on your organization, and you will need to know who to assign the work by asking questions like:

  • Does your GRC-related work get completed in teams, or individually?

  • Will different teams be responsible for a subset of control domains?

  • Will teams separate out the work by domain or by the number of controls?

Regardless of your responses to the above, ZenComply allows you to easily send out invites to your individual teammates without the need for additional administrative setup.

Insight & Helpful tips

Here are a few tips to consider while you Assign control assessors:

  • Assign the evaluation of scoped controls to specific people on your team, or, assign them yourself

  • Assigning Control Assessments can be done so individually or in bulk.

  • All of the possible scoped controls are provided in a list view on this page

  • The control description can be updated by clicking the link and within the flyout card, you may provide implementation guidance that will be used on your next ZenComply Audit.

What am I viewing?

After you have scoped the requirements and named the Audit, you now will need to assign Control Assessors for each control that is within the Audit scope

You can assign Control Assessors for each control individually or in bulk; you may also assign Control Assessors through an email invitation from this page

For more information regarding specific controls, click on the link and read more on the flyout card

Within the control flyout card, add insight on how the control is applied to your environment by providing a control Implementation Description.

Ā 

Ā 

Ā© 2021 Copyright Reciprocity, Inc.
https://reciprocity.com