cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

CC 5.2: Mitigation Control definition and System

Go to solution
Former Member

on ‎09-30-2009 10:37 AM

0 Kudos

Hi all,

The definition of a Mitigation Control is associated to certain risk(s) and/or conflict(s).

The definition of a Mitigated User is linked to a Mitigation Control.

Note that system is never taken into account in such definitions.

Assuming we are having a Mitigated User U1 who should be mitigated for system 1 but no for system 2. Which is the best practice used in order to take such restriction into consideration when runnung risk analysis for system 1 and 2?

Thanks in advance. Regards,

Imanol

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

Former Member
‎09-02-2010 5:17 PM
0 Kudos

Comment

Show replies
Show replies
Former Member
‎09-03-2010 10:12 AM
0 Kudos

Hi,

This system wise user/role mitigation feature is still not available in GRC AC5.3.

If you have a User U1 in two systems called ECC and BW and you want to mitigate the same user in ECC then it will mitigate in BW also.

Regards,

Sudip Saha

Answers (1)

Answers (1)

Former Member
‎09-02-2010 4:36 PM
0 Kudos

Hi,

I also have same problem. Can any one clear this please....

want to know whether we can mitigate a user against a particular backend system only when the GRC is connected to multiple backend systems?

Is this possible atleast in latest versions 5.3 SP11 or SP12?

Edited by: dasarad on Sep 2, 2010 5:38 PM

Show replies
Show replies
Ask a Question