How are you Organizing your Audit Activities?

Comments

5 comments

  • Official comment
    Avatar
    Ariel Escalante

    Hi Curtis,

     

    This is actually a great question for your Customer Success Manager! I've let Mike know to reach out to you to discuss your intended workflow and see if he has any better suggestions for your plan. Mike works with multiple customers directly on how to achieve their specific goals effectively in KCM GRC and would have more knowledge on this subject than support. If you do not feel that he reaches out in a timely manner, please feel free to let me know. Thanks!

    Comment actions Permalink
  • Avatar
    Curtis LaPrise

    Hi Ariel,

    By all means that would be great; but I'd also like to see how other actual users are using the platform to achieve cross-audit objectives.

    1
    Comment actions Permalink
  • Avatar
    Walter Nelson

    Hi Curtis,

    That would also be something that your CSM Mike would be able to assist with. Mike can definitely go over how best to use the platform and how other customers are using it. I will follow up with him today on your behalf.

    0
    Comment actions Permalink
  • Avatar
    Ryan St Germain

    Hi Curtis,

    In general, controls should be generic and broad reaching. Which is what you are getting at. It sort of depends on what you are trying to accomplish with the KCM platform. For us, we are using the comments section in the requirement itself to specific how the mapped control is being used for the specific requirement. 

    Ryan

    2
    Comment actions Permalink
  • Avatar
    Curtis LaPrise

    Thanks Ryan,

    That's exactly what I was wondering!  Ideally we're looking to leverage KCM to help make our audit activities more efficient.  For example one idea I'm looking at right now to help accomplish this is to leverage task assignments from KCM to ensure relevant samples & populations are delivered on time from non-audit members, as well as providing a more structured audit schedule.  Another is to utilize KCM to effectively map controls between various audits where there is likely overlap.  Beyond that we're still trying to understand how best to use the system.

    If I understand what you're doing correctly, I think we're effectively trying to do the same thing as you with Tagging.  I am curious are you running into scenarios where you have a single control mapped to multiple requirements across multiple scopes?

    -Thanks

    Curtis

    0
    Comment actions Permalink

Please sign in to leave a comment.