Editing controls
Roles and permissions
Editing permissions vary by activity. For example, editing control freshness is permission-based, i.e. you must have manager permissions on the control. However, editing control health is role-based, i.e., you can be a manager or a contributor on the control.
Editing a single control
From the left menu, select Controls.
Select the control you want to edit.
Do any of the following:
From the Details tab, edit the control ID, control name, description, domain, owner, or scope. Link a requirement, risk, vendor, request, access review, or policy. Change the implementation, testing, freshness, and/or automation statuses. View issues linked to the control.
From the Labels tab, link or unlink a label, or mark a label as fresh.
From the Proof tab, link or unlink proof, or mark proof as fresh.
From the Tests tab, create, manage, or delete an automated control test.
From the Automations tab, link, manage, or unlink a Hypersync or repeating task.
From the Notes tab, add notes about the control.
From the Issues tab, link or unlink an issue.
From the ... (More options) tab, set the freshness status, create a scope assignment, send control activity to Slack, or archive the control.
From the facepile, manage user permissions for the control.
Click the Task icon to create a task for the control.
Click the Activity Feed icon to collaborate with other members of your team on the control.
Editing multiple controls at once
From the left menu, select Controls.
Click Grid view.
Select the checkboxes next to the controls you want to edit.
Do any of the following:
Click Export to export the selected controls to a CSV or XLSX. Note that users can export controls they've created or controls that exist in a program they are a member of.
Click Archive to archive the selected controls. Note that you can only archive if you are a manager on the selected controls.
Click Edit scopes to assign scopes to the selected controls. Note that scopes is an additional feature available for purchase.
Click Domain to assign the selected controls to a specific domain.
Click Owner to assign the selected controls to a different owner. Note that you can only edit owners if you have permission to do so on the selected controls.
Click Members to add or remove members or change permissions, on the selected controls. Note that you can only edit members if you have permission to do so on the selected controls.
Click Implementation to change the selected controls' implementation statuses to Unknown, Not started, In progress, or Completed.
Click Testing status to change the selected controls' testing statuses to Not tested, In progress, Effective, or Ineffective.
Click Mark fresh to mark the selected controls as fresh.
Click Freshness settings to turn freshness on or off for the selected controls.
Click Automation to change the selected controls' automation statuses to Not started, Partial, Fully automated, or Can't automate.
Note
If any of the options listed above are grayed out, verify that you have sufficient role and/or permissions to edit the selected controls. Refer to Permissions by role.