Skip to main content

Creating a control or requirement assessment

Roles and permissions

The following roles can create an assessment:

  • Administrators

  • Compliance managers

Tip: For more information, see the Assessments video at the bottom of the page.

For information on configuring a risk assessment, see Creating a risk assessment.

To create an assessment

Note: You can only assess the controls or requirements you can access. You must be a member of the control to evaluate it, and a member of the program to evaluate requirements.

  1. From the left menu, select Assessments.

  2. Click New.

    The Create new assessment window opens.

  3. Select the type of assessment you want to create.

    • Control assessment - Evaluate a set of controls to improve their design and effectiveness.

    • Requirement assessment - Evaluate your compliance posture against a set of requirements to identify gaps.

  4. Click Next.

  5. From the Define assessment details tab, do the following:

    1. In the Assessment name field, enter a name for the assessment.

      Tip: The assessment's name can be edited from the assessment's Details tab. Select your assessment, then select the Details tab. Hover over the current name, then click the Edit icon.

    2. Optionally, if you want to create the assessment from a previous one, select the Create from a previous assessment checkbox. From the Previous assessment drop-down menu, select the previous assessment.

      Additionally, select the Include assignees checkbox to keep the same assignees from the previous assessment.

    3. Optionally, in the Description field, enter an overview of the assessment.

  6. Click Next.

    The Choose to evaluate tab displays.

  7. From the Choose to evaluate tab, select the checkboxes next to the controls or requirements you want to assess. To narrow down search results, click the Filter icon in the upper-right corner. To select all controls or requirements, select the Select all checkbox in the upper-left corner.

    Evaluation records created for the selected controls or requirements are assigned by default to the assessment creator.

    Note: Only the controls or requirements you have access to are shown in this list. Selected controls or requirements are assigned to the assessment creator.

    Tip: The ID column can be resized to display the full control or requirement ID.

    Tip: To select a control scope, select the Expand scopes checkbox.

  8. Click Next.

    The Select fields to change tab displays.

    Note: You can change the list of selected fields from the assessment Details tab.

  9. From the Select fields to change tab, select one or more fields from the drop-down menu that you want to evaluate and update as you go through your assessment.

    select-fields-to-change.png

  10. Click Create assessment.

  11. Do one of the following:

    • Click Skip to forgo importing requests into the assessment.

    • Click Download the example CSV to import a list of requests into the assessment. Refer to Importing requests for more information.

  12. Click Go to assessment.

    You’re taken to the assessment dashboard, where you’ll find information applicable to the assessment, such as progress and timeline.

Assessments video

Watch this short video to learn more about assessments.

Did this answer your question?