GRC management

The GRC management dashboard uses data from ARIS and ARIS Risk and Compliance database filtered by the selected process. This dashboard gives an overview of different GRC indicators and objects regarding a process item. The default installation of the GRC management and the GRC portfolio dashboards uses static demo data stored in ARIS document storage. The runtime version of these dashboards uses real ARIS Risk and Compliance data. To replace demo data by runtime data, refer to the GRC dashboard - runtime installation guide. For detailed information, refer to the ARIS Aware online help, or contact Software AG or the sales partner responsible.

Availability

By default, it is available for two processes:

Charts

Displays the number of risks assigned to functions that are connected to risk assessments with reviewer status Completed.

Data source

ARIS and ARIS Risk and Compliance

Calculation

Counts the number of risks in the selected process that are connected to a function that is at least connected to one completed risk assessment.

Displays the number of risk assessments with the status Open (= owner status New or In progress, or owner status Assessed or Assessment not possible and reviewer status Unspecified).

Data source

ARIS and ARIS Risk and Compliance

Calculation

Counts the number of risks in the selected process that are connected to functions that are connected to risk assessments with the status Open.

Displays the percentage of controls that have at least one control test assigned.

Data source

ARIS and ARIS Risk and Compliance

Calculation

Calculates the percentage of controls in the selected process that are connected to at least one control test, in relation to the total number of controls connected to risks that are connected to functions in the selected process.

Displays the number of control tests with the status Open (= owner status New or In progress, or owner status Control effective and reviewer status Unspecified).

Data source

ARIS and ARIS Risk and Compliance

Calculation

Counts the number of control tests in the selected process with the status Open.

Displays details of each risk assessment with the status Open:

  • Risk assessment ID (to open the object in ARIS Risk and Compliance, click the ID)

  • Risk name (click the name)

  • Owner status

  • Reviewer status

Data source

ARIS and ARIS Risk and Compliance

Calculation

Uses the risk assessments calculated in the Open risk assessments chart.

Displays the owner status of completed control tests that have the reviewer status Accepted, or that have the owner status Not possible or Control effective, or that have the owner status Not tested (= closed by system because test was not performed within the testing period). Control tests with owner status Not possible, Control effective, and Not tested are not reviewed.

Data source

ARIS and ARIS Risk and Compliance

Calculation

Counts the number of completed control tests in the different status in the selected process.

Example

Dasboard GRC management