Create audit entry records to track third-line audit objects in the Audit Workspace. Audit entry records are read-only after the first save and are hidden from second-line users.
Before you begin
Role required: sn_audit_ws.third_line_manager
Procedure
-
Navigate to .
-
Select the list icon
.
-
Navigate to the list for the object you're creating.
The Audit entry field is available on Entity, Engagement, Control, Control objective, Risk, and Risk statement.
-
Select New.
The
Audit entry check box is selected by default for all new records.
- Optional:
Clear the Audit entry check box before saving to create a second-line record instead.
Clearing the check box also removes the third-line restrictions described in the validation rules.
-
Complete the remaining required fields for the object.
For risk statements and control objectives, the
Parent field accepts both second-line and third-line records. A second-line record cannot have a third-line parent, and an error appears when you
save.
For risks, if the Inherit from risk statement check box is selected and both the risk statement and entity are second-line records, the record fails to save.
-
Select Save.
An informational message at the top of the form confirms that the record is a third-line record. The Audit entry field is set to read-only after this first save and cannot be
changed.
What to do next
Third-line records are hidden from second-line users. Third-line risks and their associated risk statements and entities are excluded from the risk and compliance score roll-up calculation.