Benefits
ZenGRC addresses hardships surrounding audits and enables compliance teams to efficiently manage and report the results. Utilizing the application for audits fulfills three main functions:
Visibility into audit progress - How close is the team to completing audit-related assignments?
- Clarity on audit issues - What's broken? How can it be fixed, and what's the status?
- Exposure of compliance posture - How effective are my controls?
IMPORTANT
It is critical that your organization has already set up your compliance program framework in ZenGRC and has set it up in the Program Onboarding wizard prior to conducting an audit. This allows you to select controls in an audit that are important to your organization and then gather evidence to verify their effectiveness. For more information, contact us at support@reciprocitylabs.com.
Overview
The Audits module allows for the following activities:
- Import or create evidence requests - Easily import requests with personnel assignments who are to supply evidence of control effectiveness.
- Evidence collection - Managing a Document Request List (DRL) is an extensive project management endeavor for external audits. ZenGRC allows you to import a DRL from your auditor, so you can collect, verify/decline evidence, and escalate the request if no action is taken.
- Testing and concluding on the effectiveness of controls - Once evidence is submitted, it's straightforward to determine whether your controls are operating effectively.
- Issue management - Internal and external auditors often discover gaps, findings, and issues. ZenGRC allows you to set up workflows so you can remediate them and keep track of the process.
- Reporting - ZenGRC allows you to export all data surrounding the audit progress.
TIP
For additional information regarding ZenGRC audit structure and process flow, see ZenGRC Diagrams.
NOTE
NOTE