3
1.1.2
Yokohama, Xanadu
Finding the right compliance policy statement in ServiceNow IRM often means sifting through long lists or knowing exactly what to search for. With effort, the right policy can usually be found — but it’s easy to overlook related requirements, or miss the policy you didn’t even realize applied.
The Cyberlant GRC Portal extends ServiceNow’s powerful Integrated Risk Management (IRM) platform, part of its Governance, Risk, and Compliance (GRC) suite, by putting policy statements in the context of your entities (assets). Fully branded for your organization, it helps stakeholders easily navigate, understand, and act on their information security compliance responsibilities.
Generate information security compliance documentation for a specific entity or group of entities based on criteria you define, ensuring the right requirements align with the right assets.
Empower users to quickly find what they need with a searchable compliance knowledge base, a user-friendly glossary of GRC and security terms, and instant answers to common questions with our FAQs — strengthening adoption of your internal compliance programs by making critical information more accessible and easier to understand.
- Compliance Documentation Generator – Automatically produce tailored compliance documentation for specific entities or groups based on criteria you define, ensuring alignment between requirements and assets.
- Enhanced Knowledge Base – Offer a centralized, searchable repository of compliance policy statements, enabling users to quickly locate relevant content and understand their obligations.
- Glossary of Terms and Acronyms – Provide a user-friendly glossary of GRC and information security terms and acronyms, improving comprehension and reducing training needs.
- Frequently Asked Questions – Deliver instant answers to common user questions to drive faster adoption and reduce support requests.
- Compliance Support Form – Simplify issue reporting and assistance requests with an integrated support form that connects users to compliance experts.
What new in this release:
- Expanded intake request management for Intake Managers - Intake Managers can now manage all submitted intake requests, including adding customer-visible notes and closing tasks regardless of original ownership, enabling consistent and efficient intake operations.
- Governed policy visibility in the Knowledge Base - During system configuration, when “Published Policies” is selected as the statement source, the Knowledge Base now displays only policies published using approved GRC Portal templates, ensuring consistent and compliant content visibility.
- Configurable introductory content based on home page selection - Introductory content now displays exclusively on the page configured as the portal home page (Compliance or Knowledge Base), providing a clearer and more intentional landing experience for users.
- Improved navigation consistency in the Knowledge Base - Returning from a statement detail view now reliably resets both the list and pagination controls, ensuring predictable navigation behavior for end users.
- Standardized pagination across portal lists - Pagination on the “Contact Us” submission history page has been aligned with other portal lists, delivering a consistent user experience across the application.
- Automatic refresh of filter facets after reset - When configuring filter facets, the filter facets table list page now automatically refresh after a reset action, allowing users to immediately see updated filtering options without manual page refreshes.
- Improved readability of Knowledge Base statement titles - Statement titles are now left-aligned in the Knowledge Base, improving readability and aligning with standard document presentation.
- Enhanced transparency for Contact Us submissions - Submission history entries now include comment history from the GRC intake team, allowing users to view documented feedback and responses directly within the portal.
- Updated demo and introductory content - Introductory content included when selecting the “Load Demo Data” option during installation has been refreshed to better represent recommended configurations and user experiences.
- Optional runtime journey for compliance documentation generation - Administrators can now disable the runtime journey when entity metadata is incomplete and re-enable it when ready, allowing organizations to adopt compliance documentation workflows at their own pace.
- The application GRC: Policy and Compliance Management is installed on the target instance. This is a prerequisite for the GRC Portal.
- The system administrator (admin) role is required to install the application.