2
Notifications Mark all read
New Critical Risk Detected
2 mins ago
Audit #AUD-2025-001 Approved
1 hour ago
System Maintenance Scheduled
Yesterday
View all notifications
EN
BS
Budi Santoso
budi.santoso@company.com
User Profile Help Center User Settings
Logout
Library Mappings & Relationships Risk–Control Mapping

Risk–Control Mapping (RCM)

Explicit mapping of which controls mitigate which risks (Risk Control Matrix).

3 mappings
Page 1 of 1
Risk (Code – Title) Control (Code – Name) Context Type Context Note Created At Actions
R-FIN-MISSTMT - Financial misstatement
C-INVOICE-REVIEW - Invoice approval before posting
 Process
FIN-O2C - Order to Cash
 Invoice approval control mitigates financial misstatement risk in O2C. 2024-01-15 10:30:00
R-IT-AVAIL - IT service unavailability
C-BACKUP-DAILY - Daily backup of GRC platform
 ITAsset
DB-GRC-01 - GRC DB Server
 Daily backup control reduces impact of IT availability risk on GRC DB. 2024-01-15 10:30:00
R-IT-AVAIL - IT service unavailability
C-RISK-REVIEW - Quarterly risk register review
 Generic Risk review control provides governance over IT availability risk. 2024-01-15 10:30:00