![](https://lh7-us.googleusercontent.com/docs/AHkbwyILB1CFH5026X1mey0PB7MT5gVIXnzc2p8NcxpPQSd2BxNsEqqX8JcKgJfAlu4qKZ89j_15S9cAEvHPYq4WBf_jgvV_0YeNcDXuTHdrIghGRmx-sLvtr56RjL0CTUsjt5xDSvvtvfdwS77BdavPql8sDQBk1A35Q1p7tB-wlieKgbM6MOP8XgvqssaFtZzxnBvmvdzqARk3LRH8lFlhWg)
Compliance Operating Procedures
Contents
Contents 2
Introduction 5
Useful Tips for Getting Started 5
Uploading Existing Data 5
C1Risk Compliance Management Roles 6
C1Risk License Classifications 6
C1Risk Compliance Roles 7
Navigating the Compliance Management Module 7
Filters 7
Customize the List View 8
Action Buttons 9
Compliance Management Features 9
Getting Started 11
The GRC Library 11
How to add obligations from the C1Risk GRC Library 11
Create your Compliance Dashboard 12
Sample compliance dashboard 13
Set your Audit Period 14
Statements of Applicability (SOA) / Requirement Scope 15
Write a unique SOA in the Control record. 19
How to Print the Statement of Applicability Report (ISO 27001, etc.) 20
How to Use the SOA Filter in the Control Library 22
Mapping Policies, Internal Controls and Evidence to prepare for audit 23
How to Map Policies to the Obligations 23
How to bulk import Internal Controls 26
How to Bulk create internal controls in the C1Risk Platform 26
How to write an Internal Control 29
How to Map Multiple Obligation Controls to a Single Internal Control 29
How to map (multiple) internal controls to a single obligation control 31
Evidence Collection 33
How to Map Evidence, IRL, “Provided by Client” Lists 33
Evidence Collection / Continuous Monitoring 34
How to Set-up and Launch the Evidence Collection Process 34
API Integration 34
Mapping Evidence to your Regulation or Standard 34
Map Multiple Internal Controls to a Single Evidence Item 34
Map Multiple Evidence Items to a single Internal Control 36
View Evidence from the Control Library 37
The Evidence Collection Process 38
Populating the Evidence Record Fields 38
1. Evidence Name 38
2. Evidence Description 38
3. Asset/Internal Controls 39
4. Setting the Evidence Start Date / End Date 40
5. Tips for Setting up the Start Date / End Date 41
6. Establishing the Frequency of Collection (Cadence) 43
7. Adding Evidence Owners 44
8. How to Set up the Evidence Review Process (optional) 45
9. How to Bulk Update Evidence Records 47
How to Launch Evidence Collection 48
1. Launch Document Requests 48
2. Notification of Submitted Document Requests 51
3. Approve or Reject or Respond a Submitted Document Request 53
4. Why & what happens when a Document Request is rejected. 57
Continuous Compliance Monitoring on the C1Risk Platform 60
Dashboard/Task List 60
GRC Library/Compliance Dashboard 61
Conclusion: 62
Reference Instruction Manuals: 62
1. Evidence Owner Training 62
2. Internal Audit Training 62
3. External Auditor Training 62
4. SOC 2 Type 1 and 2 Training 62
5. ISO 27001 Training 62
6. CMMC 2.0 Training 63
7. Annual Internal Risk Assessment Training 63
Introduction
The Compliance management module in C1Risk enables customers to deliver and sustain year-round compliance with most global regulations and standards.
The
Useful Tips for Getting Started
- The GRC Library is used to launch Compliance Management with the relevant obligation (regulation or standard).
- You can download more than 100 obligations from our central GRC Library. If you don’t see the obligation that you are looking for in our central GRC library, please reach out to C1Risk and our support team will upload it for you. Our standard SLA for uploading new obligations is 7 business days.
- Your compliance dashboard can be found in the GRC Library in the relevant obligation record.
- Your Statement of Applicability report can be exported from the platform from the details section of the obligation.
- Your evidence collection can be fully automated in C1Risk
- Contact C1Risk for full set examples of internal controls, policies and evidence articles for many of obligations, including ISO 27001, SOC 2, PCI, CMMC and more.
- To conduct an internal audit or independent assessment to evaluate your readiness, contact C1Risk for assessment solutions, premium support, and managed service offerings.
Uploading Existing Data
- C1Risk provides Standard and Premium support options for uploading existing control data, evidence request lists, SOC reports, and other relevant data to kickstart the compliance process on the C1 platform. Contact your account manager for more information.
- C1Risk can receive data in .CSV documents for bulk upload. Data upload templates are provided here. Most data can also be bulk-formatted in the platform once uploaded.
- C1Risk has REST API functionality to enable data pull or push data to/from the platform. Contact your account manager for more detailed information on API integration.
C1Risk Compliance Management Roles
C1Risk License Classifications
Administrator | - All roles/access
- Upload Regulations and Standards
- Set Audit Period
- Set SOA
- Map policies, internal controls, evidence
- Add, manage internal controls
- Add, edit evidence records
- Send and Review Document Requests
- Assign roles
|
Manager | - All roles/access
- Upload Regulations and Standards
- Set Audit Period
- Set SOA
- Map policies, internal controls, evidence
- Add, manage internal controls
- Add, edit evidence records
- Send and Review Document Requests
- Assign roles
|
General User | - Limited role
- Respond to document requests
|
External Auditor | - Access GRC library for requirement, internal control and document request review
|
Read Only | - Limited Access
- View Compliance Dashboard
|
C1Risk Compliance Roles
Compliance Role | Capability | C1Risk License |
Compliance Manager | - All Compliance Roles
- View Dashboards
- Comment
- Set Audit Period
- Map Controls
- Launch Evidence Requests
- Respond to Evidence Requests
- Review Submitted Evidence
- Create Findings
- Submit Finding Risk Mitigation
- Review Risk Mitigation
| Admin User |
Control Owner | - Comment
- Manage Internal Controls
- Launch Evidence Requests
- Respond to Evidence Requests
- Review Submitted Evidence
- Create Findings
- Submit Risk Mitigation
- Review Risk Mitigation
| Admin User |
Evidence Owner | - Respond to Evidence Requests
- Review Submitted Evidence
- Comment
- Submit Finding Risk Mitigation
| General User |
External Auditor | - View Dashboards
- View Control Library
- View Internal Controls
- View Evidence
- Comment
- Create Findings
|
|
Navigating the Compliance Management Module
Filters
Filters can be found in the List Views for the GRC Library and Compliance Modules to help navigate and select information or specific records as follows:
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJZYKYRbr9H7CeimGTqeGmxwRG5AbnvtNGICeTwOs_6BhvqnwFfPIcOodsOQs56TJeIUGR9WqHN0-sbEIU2p24snz_TsjZC0yCjqPpeLZjYT9Bm-iYpIwa0W8lZQM8d-s8JOlue0oR5C1JQSmWWX7Hx-ZE5FcsAcbMwDdXO8RggE0OjQ_FlqN43KTetfOo69w0M4aw3zCOEWAfHpaU31A)
Customize the List View
The List View can be customized to restrict or view all data fields, as follows:
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLkHQXSngyQxj8SjC8nXBUICjC_cA_DMNpcxTjCdtyX9toOz4DQy8z2JLsr-VwfGhHIFLMHgZN0LSHvsJ4D_hkAT9AeHhfX09kkCfNrMtm101WN2jxIILNYeD1OmaoCpkhol0mwLFIqFJUvbjLgA2fb_c3k-a4KDqGLb-WUkQFKXKGMugR0Vpdo2_3Am-ct3RWL1dpgbpp365yuyk2LSA)
Action Buttons
Use the Ellipses button to activate all possible tasks in the list view or record. Available actions will automatically highlight in the drop-down menu.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyK5oy1JGvyV1FUZpuZ66-v0k-7l0Y9MsKWk5NApTcNy7IwMjH4SlBPNb-YBnb3QA1Pb8uZHEKHm4b_42L0FcfPpke0l5vVrBiyXO6TAUWmW-mUS4oGq6gQqMFqXvn3NjE2PSuynIUtDq2_RC_dQ2rHkWuqojQQHfLjTqHYm8Y0QCibI-jDJf1i_ZHIsr17OBCbalEGabXwJ1jFvsinzeQ)
Compliance Management Features
- Compliance Dashboards
- Dashboards for all obligations
- Controls in scope
- Internal control readiness
- Internal control and evidence request frequency
- Document request status
- Audit observation/finding tracking
- Risk mitigation tracking
- Crosswalks
- Obligation crosswalks of former to current versions
- (EG ISO 27001:2013 > ISO 27001:2022)
- Obligation crosswalks (control mapping)
- (EG AICPA SOC 2 > ISO 27001)
*Crosswalks are created from authoritative sources. For a full list of available crosswalks, contact your account manager or submit a request: Submit a ticket : C1Risk Training Portal (freshdesk.com)
- Control Mapping
- Control requirements to policies.
- Control requirements to internal controls.
- Internal controls to policies.
- Internal controls to evidence checklist items.
- Test procedures to control requirements (internal audit).
- Test procedures to internal controls (internal audit).
- Automated Evidence Collection
- Continuous control monitoring.
- Establish document collection frequency.
- Assign multiple evidence owners.
- Review options
- Assign multiple reviewers.
- Structured review options
- At least one reviewer.
- Multiple reviewers with single authorization
- Multiple reviewers with all authorization in any order
- Ordered review (Jack then Jennie then Jane)
![](data:image/png;base64,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)
Getting Started
- The GRC Library
- Adding Obligations
- Establishing the Audit Period
- Statement of Applicability
- Mapping (Policies, Internal Controls and Evidence’)
The GRC Library
The C1Risk platforms provides customers with a pre-build, cross walked, library of more than 100 global regulations and standards (obligations) that can be added on an as-needed basis by the customer.
Customers may also choose to add additional obligaitons not available from the C1Risk GRC library. C1Risk supports the upload of additional obligations with a minimum 72 hours SLA. Contact your account manager or submit a ticket here with your desired obligation request. https://c1risk.freshdesk.com/support/tickets/new
How to add obligations from the C1Risk GRC Library
- Go to the GRC library Tab and click on it to open it
- Select the Obligations Tab
- Go to the ellipsis and select ‘look up’
![A screenshot of a computer
Description automatically generated](https://lh7-us.googleusercontent.com/docs/AHkbwyLxwGa8y00xV9qCIYfO3DVKNhGhW8KIUjtNJe-OYkdv6YuhpbbWvKS3Amai7m-qo8kXGXjoUx09SUsvhdllTkPtRNP7Qc9lb3h35wNjAVTAio26pk3CvIO7SVIplEtmIHojW_KlYO40sxCxSvZvNF3JgOmTfbJyOkC-LOvhd6m1ww7MXwWT8CAL5VQP5f3LSA9VRCYQ0vnxE0f2m1tcfQ)
- Choose the appropriate obligations and add using the ‘Apply” button
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJZ13hCD_rwI2QlSq1oTnsWtBF3wg6YGjNS9sUFwm086Zed_7v1gqCxJH_SN0cUPFp6GW4mH_iH3AOkbOxuOT8nMzUX1r8jpld5xpe-nt_VdQ7WLI60bkCcAXImmDIS8CPWogaJHsIglrlHTbzZ-mGkaLYiL_1jmQqTvZEII02uFQuQNSrR1r82C1N9kdFk0y-9hSHJQIBVugtZmXeQZw)
Create your Compliance Dashboard
Your Compliance dashboard offer real-time monitoring of all compliance workflows and can be viewed in the relevant Obligation record. Follow the steps below and your dashboard will auto populate and update in real-time as actions are completed in the platform.
- Add your audit period (the dashboard will display data relevant to this period).
- Select applicable controls.
- Map policies, internal controls, and evidence records.
- Track and manage finding, observations and risk mitigation.
Sample compliance dashboard
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJylZRpevSKXdFO-LUIAPJN_8uFeLMDYjNqJIz71rYlTsT_DHtKfokWhlivpIuNz4uLG2xWFaz-PbD9mOB5pnQz_eQj46oks9F6YYbIA9WzILPE2Jwy_uzZ1gNmbqNm3FTpHoF-gpSZ7icdq-Og_BMFoHBbCLCKzi5NYR7dAis6ZYnDVjL1VlNc2XnT2kWnb-13xei-61aIWOmcuofVCw)
Set your Audit Period
- Go to the Obligation in question and open the details tab.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIABF5fKei74JbVWH43mHv2Sv5uNWQyLypw_dbRudNOtfGAyyDYGSZYHu0vxQXxETW0Q-8x-q-bJHojJ60CVtcc5-AysWlJfVIUJuAVFgkbqpWzN78bBKFENBfcc8SEpBOy2bN9sg5PPL3hdUWcl51M10Iy5qfBju9ZW3-dNL4Squ0KEapUklXevV7Sm4o4FcUBcI46xZddR47H5fc5EA)
- Click edit and modify the audit period as needed.
- Click Save
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLh0Y_fjyw1fN3kE65-A0UaPeQx5We4k_GAYAJylsKL8JVSdbz7Agd1wxMIu3oH1_yqjwPUa6NGnzx5qEpcYpGEtZB7OgSOJNfsU-eK17AxFiQNYlDT1e7y5BZdnk7xLk8EV9dCoBZ0gsm_h52wbGZIQ0cbkbJBMTXwOd1tIDkK1sp8YqpvVwMTnr60E10wf3s-aqS3gMEzg5oDSu6htQ)
- Now the dashboard will reflect data from your chosen audit period.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKs_n1WCPpXucM-HoFocrch_vBLtzOEQ-M8kKyI8zvlGxz-N8jDP_I_EZn1l7UTjgKjHgs16PAmhw_TObjjKZYgLaU85H4FIkSwuKaQna7vZ2GU3q36sdb6vlU-AejDLmfEl4XDpzzbvFoMhmQcVro01qsCG4684rgSL32vziGhj46yXkMBtlTQiytm5_Um5zCe75DdhD0fRJSEZKdedA)
Statements of Applicability (SOA) / Requirement Scope
- Whether or not your audit requires a statement of applicability, C1Risk allows you to select the control requirements that are applicable to your company.
- Where a statement of applicability is needed, that statement can be added in bulk (EG “In scope”) or in established as a unique statement in each control requirement.
- In the obligation record go the control library tab.
- Note that “applicability is displayed in the list view as “unknown”
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJVSv9UW0bd7Q1lD7BM5TOxO0avJEY2sSdYQ5G7HLVhymeWJdr2Q97deKwU0PsG9Y8w60Ao4jIRa8veKzAdWmuljNz-T2zpH9pGJasrbRUPGdzoTPfIC-gLyHhZPyynBIXcYbOdPHK88tlFYvG2CVYfJIf1bfj80A_0AbbI9BjPeIgM-N1u743GJSaWVFR2OiDwHF2nLN935P9LI7N6qg)
- Select the controls that are applicable.
- Select all using the i.d. checkbox.
- Single select using the checkbox.
- Group select by holding the “Shift” key and mouse-click.
- Note the number of controls selected displays next to the i.d. box
Option i
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKAPpY5-UmcMRCTuAx77a-7_lYrDJD3Wjg5yWb40KtImUBrCn-RHZnOcRU8NGHd07nPfajEO-M3fAxqschegffWN0r5q03OvpIKL34RIYynh2VEFbIicTenmqp76ddjNrHfXKondPz8Q68ypvciF0fDzJT0NJrUy_-tYuPqDRDXYrQxFPwN99HyJYjj4wr9CVfafTADPhOownkVjVs)
Option ii
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJ4EogNfWvoCqMSzcXumMGYAmoe34shuDRqW1H9YkR1Mdq4JQXGyyi6I428wak0HxCO0J03p7i-dfBGPwcoA3YFW2-7AuUd2aiTyV2MNthQhPytcQHrIpkS_hsIWWY97KZSdF_u5d86Y2rNkuTOH5H8hWaDtjA5sjlDWWC9vL3d7yG6Oga2a5H_quS4Tb43kRzG9F8C2xeLtucFlRwfwg)
Option iii
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIKpiNsuARvE63Agme4Gcz6sfLL1FId7wKX0rJT9X8NEEwZQ-floZVkyooeEYBAJ3Jgdv871-7_pA9JPfkzfUu4RtJqrP30ICAqGGhjDnGtvq0s3_Uhcfphr5xqalLiErt8ttn8DVdEmh9V-XoJpZzln-K1KmoWUqXgUg6tK7gu4aBr3ki9i-nxQLqQbKwcbRGo3zWqfHm4CIzeHJJl3Q)
- Go to the ellipsis drop down menu and select ‘Change SOA’
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLmDOW8QHCLgMFxmVZUE69txP2q1_Jx8ifqp1o2V8OOqlPXf8W3sJ-sIcHwfAVjoi5weGjFm2XE1N6uxGaC4T46-VCkixpktADdjIoyyR8UK9DB9z0L3NTVdtCYJF1v_OovwOAn8oXHnFq9SWhW0-BcAITGsoOdJh1lhqDizwksjWnRZHhi_kZPL7lVbMzojtwHw-NMPRFHJ9SH5JKBYQ)
- Change the SOA (and add bulk SOA statement). Click ‘Save”
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJkHjGfFsLU5FcqHmhnXVbyrmnQ0V8izEHziL84hmtpDDgAg3Knd5JC5F705VMqZlfuGTXa-6wWHh_l38rPUJ9fT2Fmvmikcl6OazVtyj_Hm0G7H3DrcfK0zeV-hRYbhYU7RVO4aL8RY1AV4eDmt_77C5iLvQOxcoxg5eEKWQquGRGvULMolYcbLoMxY-tPM2kPJMH4fALCYuevKh6n0Q)
Note the Applicability list view is now updated
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKhR8Ov-WsNRKpez2ERkV8-VojbD9fHA_XRzUNAKC8aXSolS4laCEMyz-jzr0Qh4vRJxk5_8ZUEm4sa6DLjVL2xSWOe-I2eoaCJTca7FsfC8goMJXuHC9M6zHXbTJtBsIeF-rfJ5bOd9Gf3Jv1NvPVODN46bdiM6fmPo2JZTsZJLQ8yv81kkP0_4qLYO_L8_P6ndvKvCSjZnOfPnP0)
Write a unique SOA in the Control record.
- Go to the Obligation > Control Libraries tab,
- Click on the appropriate record, CTL i.d., to open it.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJvW8DfXhw2NjsrmZve-zIQiFphLkoz0fOK1-MMSJIyO2Ly3l71YYLtrs0X7OXUBiecufNJFnOo8OdWFqgWlJWjUuJ1GcC0JIR5Xuh7hnMKFWRToC8IOaomq9EjCrZjln0weMUN069udMLZ4Sw57FS75bUSj0imdAflJ6_hjxMOBjrDbzKyLpVQobnz560lPufCS2Y2sv7NZJbHsUngEA)
- Click ‘Change SOA’
![](https://lh7-us.googleusercontent.com/docs/AHkbwyK3KzJ3Mq9GTmoU26I4lKZXvnvjOWKqRw7_ge3UR9mASwXr7WLbVAA9AvX8Z8RDzStlPkHtkrunUtfM23AFydgCQSVLJ4ZvdPUOHqpR5k8qICyrpa5pRI5NM33_y6E1yQxB17D3mmWbrvbcSlpWoIkZR3fUCyVMWBQA1NGYThvFSWm17kbkt7xjRGKUaUvx2-KPaIiT2fGLrACfrlHhuA)
- Update the SOA status and statement, then click ‘Save’.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLfkGpuefO4gJOnsw-7fb99zo7L8ZGlXJXgwUVq5jRgmHvLfbWJMS3RsidfU_xSLUvc9oDichjaq5Zk61fkO1g-o9CL2acwVH5Q5JCFnXEyPs0lVJqAH3-b3YKWA5--L8dapfs5VuhQs1WzsyrgZty_0QuendIEye8IEiSGc1nxCm9DAmKiVnH7ZlzkBSkiJYIUHTT-OHKfucJniDQscg)
How to Print the Statement of Applicability Report (ISO 27001, etc.)
- Go to the Obligation > Details tab.
- Use the drop-down menu to select ‘Export SOA Report to Excel
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKszL25s06C1mfg9JMjJsCv1zQYARyOI3Op8R48bpOezkqwnYfcWfs2nJOk4kQI8N8ZnNTLi0x0UJgxjQvGh8_EssBi39OuNrXyQRfYyYrqj2ITSlqEh62DIsLKtjFM72EvCrmmxB4_02lb_bU6jWIMoRRaw6OAajsQ0Pew9guhq-t0BPtW-87-XwkW4jVKW7_qnU1U1Mzx9TKgxHOzqQ)
Sample SOA Report
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLA-3VUNCB02SOZTbOljIvyOl4VcbMZ1PIzTzNp5zXDtYRNcjSC1siJDYzUDXfRxi34wi8ml0ANRq2fVE8xDh8HtXOj1unYezQf5FJDQSoqBot0-pqILEtD39ncx2TfdD_cvrPTnQIqUDH3cLhnfsVf5V1TYBpRfTUspkp3LuHfDcFa9iHOIFHuvQ8JZSj7M8xrSq5uqE8jJ-l1I5mS1g)
How to Use the SOA Filter in the Control Library
You can apply the SOA filter in the Control Library section to filter and work on only controls ‘in scope’ or review and verify controls ‘not in scope’ for audit.
- In the Control Library, select the ‘Applicability’ Filter and choose the controls you wish to see.
Note, the internal control and evidence tabs will auto-filter to only show what is related to your chosen controls.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJGsy_jR_DGzEvrOrHhfMOALsdK7s2bAXUfZgXzIzM8t_EGsmHHZKNFpwVgb0P7RJFOvuUBQOKGXvwgQzz4FVEeDsUjyglhORbFCIRlKomMe9jEtUbWSiNscf7ZPEkWUkHrnBc8hBfL0SEU90artAe0dS5oyvn7ksYmbkw_zXoBhE5MdHuQwQEApuW0ghUWAtt-dtd3zbHRb95wVbYIsA)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIh6P219aUL5N9e9QUO1I9M79DWwFMGVQK92LMB3nG2HdrGx5xkLqgAiMW9N4DhEcLxEGnkkKWsCpYktL0ZnXfiTnNV1Xsm8fEkvNPYE0VQiwLBphQ6Vj2T-QtqIvJrp1V7iYczuaR9ubS18O2hQ42jqcBMKVE0asdRgE4Ul4UciRolEB_ksgow_jrlfc8ypYDQ_7-qtVUpgMJP0V0)
Mapping Policies, Internal Controls and Evidence to prepare for audit
Once you have itemized and defined your control set using the applicability tool, the next step is to bring in your policies, internal controls (SOC report etc., and evidence checklist (IRL, PBC list).
Once your mapping is complete and control > evidence collection cadence is established, your compliance workflow is ready to launch.
We recommend creating and mapping internal controls before mapping policies to take advantage of the policy mapping function. When internal controls are mapped to policies, any connected control library statements will automatically be mapped to policies (See Policy Operating Procedures or here below)
How to Map Policies to the Obligations
Internal Controls that have a connected or ‘mapped’ control library will automatically be populated when the control requirement is mapped to the policy record. Internal Controls may also be mapped independently to the policy record. NOTE: your policy must be in draft (open), or revision status.
- In the Policy Record, go to the Internal Controls Tab
![A screenshot of a computer
Description automatically generated with medium confidence](https://lh7-us.googleusercontent.com/docs/AHkbwyKf_i-E3XrXLd0PiuGtuDp3Uey5JCFJeCeyMU4JPvpqi54DTwzPLmH20PRaJ78oT9AUhOAgMkdEpvA1ndA1f-N5KCelsGpKMNKP_gbsOUND0q9yhtV22FyNW9sTcAXpAKfbk8f6T-S03P86WvCGbeoeAgI3H2mb5qVJKu94I2c2LquWetxPvvFTaQWrNJ3QEJAtaMbjeUwgsKS2FtCK6w)
- In the Internal Controls Tab, use the Ellipses drop-down menu and select Look Up to access your existing Internal Controls or Add New to add a new Internal Control. New Internal Controls will automatically be added to your Policy and the Internal Controls Library in your Compliance module.
![A screenshot of a computer
Description automatically generated](https://lh7-us.googleusercontent.com/docs/AHkbwyIYJsK3Rc-8Q7ZNp1yRGYuWlZ82C_l94kGvuyPa_OqIPRBb-AEchtUJ-athU3-I41_0_K3vuY3FS09cCem6fidhs70jbpWi1DRZAk4LItRvdENkjXQHkfS-bxerGioU5zI12RriejXvvXuGpTI-1QZNW9sWVEmp-HRif497dpfH_2uI1LBpThEXh0xfM5mRU25j_CVWRLF2uwrlvvZylg)
- Your Internal Control Library will appear. Use the filters and keyword search to select the requirement(s) (obligation) and internal controls you wish to map.
- Select the controls using the checkbox (Use SHIFT + right click to select multiple controls).
- Click ‘Apply”
![A screenshot of a computer
Description automatically generated](https://lh7-us.googleusercontent.com/docs/AHkbwyKTHHtROnQlqamlv9a6Xk21Y9r60FtJQU393P96KgFXTpi8YgkRouhRtvIAS2eL2OplTXLKMpwQWFO7ac7fqfjp5Ra7dzXCOxFan0nsaWDFOfg3lMNIj1e_7lAmlUHDm1d-RxeW_LFBRsUQ-sKhCI8sHn39r9vF0DlBUzFGc2TcLTELmlDjXOQStiOcbt1EVZI1AGK7b-M_iiCZT2w)
Now your internal controls are mapped, and any connected internal controls will also be mapped to your policy.
- This can be viewed in the policy record and/or in the control library list view and in the specific control.
Note in the policy record, filters are available to search for specific regulations and controls.
Policy record/Internal Control Tab
![A screenshot of a computer
Description automatically generated with medium confidence](https://lh7-us.googleusercontent.com/docs/AHkbwyJrACI2ei2vOFa2IE_1UJuYA149KexC1ZSWAGU-sH_DsJotEJbGZTwFMbPfFwhG97G9QOY5DFMvdFjwhnvmfHmKXZiX4pGdDvRPjfwAZy0JM84OvuqXaAEj1rKiDDyxRhvBLUcrWarNQ6KjyvQn-7Pi83a-D18msjKuIJHpfFoSH0JnnfZ68kDIsTS2t4_J-MVa6cDCGF6u9XCS_1Y)
Internal Control List View
![A screenshot of a computer
Description automatically generated](https://lh7-us.googleusercontent.com/docs/AHkbwyI1oGM_gsn7pxkiFAVaQcSceo3Aug2oZIbKSea8JigJEiQKP0PCIO8eG_VjaFN-kl6tkuWHmskMCNj8BxdaFjj0KttOaOnWrrPieMae-z5lmqOMIQ0SSBtEAX2WtaoyVn9ZOxcFzhh_boNQ4MjHANVGk97D0UaZqf03a9_IeDcEt6tngOaNklhcvHujj9m--te373cF9b0N7TN6BiIgZQ)
How to bulk import Internal Controls
Pre-existing internal controls and/or SOC reports can be uploaded into C1Risk via .CSV templates. Please contact your account manager to learn more or request an upload.
How to Bulk create internal controls in the C1Risk Platform
- Go to the Obligation > Control Library tab.
- Select the applicable controls using the Applicability filter.
- Select all the applicable controls using the select all function.
- Click on the drop down and select “Copy to IC”
- The platform will create a full copy of each of the selected controls in the Compliance Module > Internal Controls Tab.
Step 1.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJ0FgcxuE9Ft3IFscUJKczGD3V26dj0XpZVQEvf5SmpYe80nDBGw0sRvtoBJGyAbIZ9nFztzTJBrNwf1LaCNytqu7f8NYK6zJiVQZFXfUnWv6WEpCzHslCbT9nnQQDqsSy4BZzAeCnS_mVQ5bZzIMCPWMrYp6nimnI0xRaRedvYtJME-w_e5yabquxqelGw_5SaC5bSVIcp4WhOo37Vkg)
Step 2.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKLnXMadzcPAFk81FOlQr6Ip6_jwSaH84dnV22k5GUNPllweSnjD2xM_jY8Vte2EBII_m7lgz8CW4L2Qc-YkX5rZp3uKDjMa0STQlOKQgRcnvu7qvnDNGJ0whg8h97z2JL3vJlZNafb48G5Wp-wpaZ1ht0KaQ6R_Qh3qr-bKK8kHI8CL5_Rr14MNagIuZs4D4DJg9X3Fg4WeKUbYvLMUg)
- Note each Internal Control is automatically mapped to its corresponding Obligation Control Requirement. To view the mapping, go the appropriate tab in the control record.
From the Internal Control
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLnMvZ9F7b63fae_28BvBw-P4lKBEWoJPjc7sUd-IOYXWXUHu5TBaeAXtclcmfx54JzewpXFBF5F3XPNAfUn2vLSuYz9U5HqeZWdLuxtizlxMzE4oWL6PTqhwugbzgfkirrLOIA4jUfrADjBZqp5WnwrmR7xRktyBsiTV3-vAIZNRvmvfiZ-E-Dsyok3DNacnyCGUu16NWM9QGTKus)
From the Control Library![](https://lh7-us.googleusercontent.com/docs/AHkbwyKncNtf3Gb9bcxpy7O7qmKsbx0k9QXz-pPRvP-VtthvrroIfWQT1yQVx62BtGwTqSGtGhJJ5GLcuKiNCADzWuFNKMPIT1L4Y5RhsTvu39SMQW8gvlR07Q0LlzSjxvq_c9-XWSS_jYHiwZYtalAVFY8WEUl00TPSXLz-34PyU-ivtUyKvnLOlJF52KrzuPk1NtAoS6OakRi6Hw2MGOGO3w)
How to write an Internal Control
For information on how to write an effective internal control as well as populate an internal control record in the C1Risk platform, please watch the following video:
How to write an internal control
How to Map Multiple Obligation Controls to a Single Internal Control
- From the Control Library list view, select the controls you wish to map to an Internal Control.
- Use the drop-down menu and select “Link to IC”.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLMdUO4iXhOGath-god7Bvq83g1eHxY-3omOwjQiAyV6z3v-3MxROtRJWbV2qtzaLVD1jyzzIeqKL3IVItxZihLbdh32ahqml7VhfI5Z7H4uBIWW9Z8qClK-2-VS2R_3Kxo14TYnXrxUT8qfF3ZrvIn5I4gu4hOOESx9y1xPlenR4rxfz16U3aEDnCLbrNqtlr5TSKXeWdIXf-iJh6TaA)
- Choose the Internal Control to map and click Apply to map.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLD0JeXngGErTCSDB66OA_OGNfjTK_0545LJYE95puRN2WCjhWjN0fUDZLX638TKhTxR3kZKIWuFnUqm96zZFBZAFWZL6y86LTdAw6C-I8sRQJU1VzKlpENQ9sTCxylIGtvaqD_dFlsGWQc1o0NTjD7DYvEecxPlWN_wNzq2gv0s0ys1bmYs2AmLlGCNybye5SJ_XhVEXpayoeDs0A)
- Note the Internal Control is visible in each Obligation Control record.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJ9T07g2Jlfm0oPprV2eRfNQ-1yEh6vosi01ArOLVsoBkzep5k70Sr0pNwXIO2QcFzocWwlHPc_VzYVBn67HZj7Ac97dWntX8l1mQ-z5V7YXOzW7kIEm20P7J5HCz2SubmeSjlLnlvnRF8odiXDhUV6i290YMcuEgZaDdsKVjKP8HwLVQy81y4_VUbLUzMVUovsC9zKzNj6cBpAmFGhlg)
How to map (multiple) internal controls to a single obligation control
You may need multiple internal controls to deliver compliance for a single control requirement. You can always map many-to-one in C1Risk.
- Go to the Obligation Control Library Control record, internal controls tab.
- From the drop-down menu select ‘Look up’ to map one or more existing internal controls.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJR8zbIBTCeh5zoaHTq0twOIW69X6LcRVdMQba3ln7iBKjThOPHC5wZH6-JoVmR9qBl_jL6DzaJVKebI5nSubz8wWiRCHRDE0PvDiqtl933mLmc7GRuXDaKVVUNXWusiMyHQpH1WqdEeTdYc_RWAglhRA3yl3nkaZHNmiJNmC89umDAnQ5qVPii4wi1eXCxcMoSIH9ec7sqA8ikkqhmlA)
- Select the internal controls you wish to map and click apply. (Note: you can use the filters and key word search in this section to narrow your search)
- Note the full set of internal controls mapped now appears in the Obligation Control record.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJBcTglpeNqkph6Gnc2nsn2yHG1r2ShyG8JR1N6yhEOaSDDO1nZ0QVo4NBFpzXLnPMHLUj8LkdwTHaav9B48vYLbNQHvVUnZw7VI-6wovF-CFxp-wYN9VDW4AJdvmyC1rL2GFK6Zap3HWKJyPzIG-CK-TcPepQvGZ9-qL8ABp7bYd5UKquPfxgd8B4etTz1Ln953VECALa5vX5Xl6U9wQ)
- You can see internal controls > control library mapping from the list view in the Controls Library or Internal Control list view, or, in the individual record.
- C1Risk recommends using the tabs in the Obligation record to see which internal controls are linked to the relevant requirement.
Control Library Internal Controls tab list view
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLf84R-vToZrVbOnM8OZP0XzRKbc3kD3EintpBYGBGQRN1WjWGH4MztV_TKDSlftWA7pY4c1K_dGdbF8WMr1MHULRFfDc192G_Sh67FMu-Wp4W3PFFoO3WMjvPywHUaqaByT1f4c8UYQOuuNbTNAlBSSQXo1Xh7H2DOthH5nId-o_sYQDzaWOJje4k_FUfTsxDZuWsl-4p4s646zsY)
Control Library Record Internal Control Tab
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJ5yRThq2Kb2W4KC_4bgmgOdE6TF4RpP01DJjOT9tpgzDI5aD6B4P9O1zJCRmWY-Qq35F6PLQiguJai2XcNGT0tfg3JrYlgsMayT5eS-I9dS0kTKbxlNGjs9bsmrWq9E1H5GNIqujRDMmC-lGd3a7Pue5dzj_C-X5Ib3Lbmcow-zQ3hvOkyWB7S-G0A3fN9xx4VR9Xjc57UsmSo6U12-A)
Internal Controls List View
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL1388HD7RliUrQWdrgt3ozDUVvfNv1bIYuMJbs0kqcROa94M6pp4yhlQdr5zKAinPO8r21T0sl5fD0fiMVlrJK8reBGkTqzr06CDO7HofoLDvkKwzzWKUQIaqXM7F_N427_z961B1pYIEDQyHbaDRKt9bQCQ4uqJPx1hIfzREkyjKVFL2g8TeD2edj8gtaN2_ol9Kyr06egZgB8OjbOg)
Internal Control Record Control Library Tab
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLj9Ll_pSw2MiMa8lbPxXNCMExQVVxEb0AeRPVtzmemb8Cqe1G4xYuDDseoi1Ces1xd8WgeRLDxM7fUDmCi1NecaSLHZ4lmfp8F9V6rAWvfcJF_qrBclog94_Fq99Br5Qv7KSiM4az-Wg5DV6uRbZFwjiGaaz1FUtFZyfdqcgxQAGbDHBrPgh3wUvOntr0UgDcFidCFGmddj6Fevtg)
Evidence Collection
How to Map Evidence, IRL, “Provided by Client” Lists
Evidence records can be associated to one or more internal controls in the C1Risk platform and are used to provide the documentation / evidence required by auditors to validate that the implementation of your compliance controls (internal controls) and compliance with the relevant regulatory requirement or standard.
For external audits, your auditor should provide a list of required documents and data to provide during audit. This list is often referred to as your IRL (Information Request List) or PBC List (Provided By Client). This list is also included in your SOC 2 Type 2 reports, along with the internal controls used to implement your SOC 2 Type 2 Certification. For more information on how/where to find your evidence list, contact C1Risk: Submit a ticket : C1Risk Training Portal (freshdesk.com)
Evidence Collection / Continuous Monitoring
Bulk Import Your Evidence Requirements to C1Risk using a .CSV template, or by providing your report to support. Submit a ticket here: Submit a ticket : C1Risk Training Portal (freshdesk.com)
How to Set-up and Launch the Evidence Collection Process
Evidence collection should be a year-round exercise to ensure that your controls are being implemented effectively across the organization. C1Risk enables continuous monitoring of controls via automated evidence collection.
Evidence Owners require only General User licenses on the C1Risk platform to enable anyone in the company who needs to provide evidence to access the platform. For more information on General User licenses and volume discounts, contact your account manager.
API Integration
Evidence can be collected by request of an evidence owner, or via API Integration.
Evidence owners can receive email notifications (white-labeled) or via integration with communication or productivity tools, such as JIRA or SLACK.
C1Risk is also a REST API platform, which enables data collection from most modern business systems via integration.
For more information on API integration, please contact your account manager.
Mapping Evidence to your Regulation or Standard
Once your evidence records have been created, you can map them to the Obligation via an internal control. C1Risk enables a “one to many” mapping option for both internal controls to evidence (map multiple internal controls to a single evidence request) or evidence items (map multiple evidence items to a single internal control).
Map Multiple Internal Controls to a Single Evidence Item
- From the list view of the Internal Controls tab in the Compliance Management module, select one or more internal controls that you wish to map to an evidence item.
- Click on the ellipsis drop down menu and select the “Link to Evidence” option
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI-ORgf3TvXirSno7WH029FQpRDZigXdLQ3SgbZRSsKWF-yIJ1gl2dU7hOnsu7YrGneyIQlrZAc6qV0xpHXPN_XZvMI-ONaFbjQckoIg7txFPQ1yI4N95v9Ch1eVm1g3hLfeR4Yu0j9nc5xABQM0wL7SBdM0AyhGvvdeAr9I_DlxE7fm5GVkzeQ5tJenvpvZGwcpBxz9XXr0eFmXvGA7w)
- Search and/or select the evidence item to map and click Apply.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIDrFvsjTBoF0M6I_cRjv4Ebc41hGPqECLi7xhMRyRRaQFN1locR_s6utdtti9aQ-qtB_QN5_IQZQr5XrsXy_jnL6-_000raG1GfknrHuCSJ301OSHfPggPgSjFIBI1iSUXkd7N_FQ5Z-05gVXQXhHQ76as3z_qNnVrVVR2Hre6Qb3ymDS8qap41mqU_v6M1XTEQHaSywZZrQJeEKbwmg)
Map Multiple Evidence Items to a single Internal Control
- From the list view in the Evidence tab in the Compliance Management module, select one or more evidence items that you wish to map.
- Click on the ellipsis drop down menu and select the “Link to Internal Control” Option.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIestLPN8YDdT0nnOaWVtgGdcynf7kbPfvY3WTaWhQrjqDfv5fCF_csUBbZLGO3hEPiQmP5iHBY0hdPAz4gXd_Nfw3XAJvYPTFf-H7cIFJvfhDzJx6shRBJpsNccuIw6_3SyLRMfqD7OwqapEOWR_aq68npms2YUVlgHH8_JFfhK1OfdhiReUC60gJxkuUjpo_rlWAGo9pAdGe4NhyjvQ)
- Search and/or select the internal control to map then click Apply.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKD-6Eb7wYcYAvstWgwoe0RvJcLFMgoDC6RWUJKZ-4WR0Zo9wkZREKf8JOKvv-v9rcXHfDCu9qpYKz-wTGM0Gndxf1jfgrEp4S3OyXDBvxFmPW38JEB_V-DVTeymMp4IcfVADxgB66XhyqsR7YHt8K7kmesWWcTJAt8YdBCuwM5lge_MGVsb3DpU6Ff-5n0VSgC0t72JB2XtOvleyFTtg)
View Evidence from the Control Library
Once your evidence is mapped to an internal control that is linked to your obligation, you can see the evidence record and its status in your Obligation record or in the dashboard. This is most helpful for audit purposes, where you can use the evidence tab in the control library to edit and manage any evidence records related to your specific audit.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL1B1mZD_MNjNq3izLx1aCxNAaGuJb679K0x4bo5-moDT9nZedyEa-frzqpqpCp2FderDiXvbdC8rbiDhr3HaPLqCcT55GSXE7lZWrTbmJwAAjQEK8TRVxbGnjIpS04-8f6d4HXfzhstMVEBij0wObjG2o3cT8h0qrUOdJsgsajw_4WcGRvOgSOkq_8uAxg20nKVP1URPseKQ107SKmJw)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI9XX2Q12yt0tC4T9nsWmqcCitUtaW4tH66SdXViKaGPXqCsvSJjPoLBV_uKADbWBfacFzAiybLfyhC16hZLlZMaTpBS90opC6-B-FBh1gzyoCaMtMMNpW0tIKd6eMrW45c-2zWwAarF8gyD2bwt-PwTLNXu3RXJ3cs8TPvnEyS3QlfMRsImu2bic6U_P5C0WrTNKJbFt9MKHXxNvH7NQ)
The Evidence Collection Process
Evidence records are used to launch Document Requests, which notify evidence owners that they must provide information for compliance.
Notifications can be sent immediately, or scheduled for the future. An automated frequency can thereafter be established to send Document Requests to evidence owners:
- Daily
- Weekly
- Monthly
- Quarterly
- Semi Annually
- Annually
Notifications can be sent to a primary and multiple additional contacts (EG. The HR Director may be copied on a request to the HR Manager to ensure that leadership is aware of any data being provided to the compliance team).
A due date can also be established for the evidence to be provided. Escalation will occur in two forms past the due date.
- The Manager (where appropriate) will be notified.
- Notifications of expired requests will be sent to the evidence owner on a daily basis.
Populating the Evidence Record Fields
Evidence Name
Use a name that is familiar and consistent and helps the evidence owner easily identify the relevant information to provide.
Evidence Description
Similarly, the description is provided to the Evidence owner, so should be written as to assist the evidence owner in identifying the information necessary to provide.
Note also that the evidence description should not mention time specific time periods to avoid confusion or the need to update future document request notifications.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKtu-J99rQ8yx2B31jk5Rq1WkpAmk73IpUYZ7o-aMyFmMRL3ompeMstD99YzDfM_5Lohgh7G_Wahabi5nSIqPqDTxs7dovFwHsJOAvzvfvHDmCuUmjhb8Jz0UvJMdWgIrIm2aKxP8XXjujUUuZ43blgizJ6QfsEDdccAiJEfWcO_ccnAqnnNmHeDmMMw9BrfYGRzvxeMRSJLXnkHosvzA)
Asset/Internal Controls
Assets and (additional) Internal Controls can be mapped to evidence records here.
- Select the “+” sign to create a new Asset.
- Select the
to look up an existing Asset or Internal Control
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJFbgnn_w6GEg9RT4UFTggu3gpuvm8efdh9o53q9cAB7zL9W6kL6ukjwS2jt5uEZjzj1d-BI7syzp9ooilD5TdrF2qHPZ6GSW9g562O5DvN4wlbavSvy07ulizyrN4VUWMKwj8SNJyQIqtorxSUGOPNS6aOj0r5r6xd5kDH15DX-vNsIcwP37YrzzVi4iVJ7y5aQQZ7JyR6xuLATpsuFg)
Setting the Evidence Start Date / End Date
The Evidence Start Date and End Date reflect the acceptable period (provided by the external auditor) for creation of the evidence.
Once you have established the Start / End Dates, the system will automatically launch a notification for evidence collection to the evidence owner(s) on the End Date selected.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLKhhNYE344PaBaObYLfXLMzSg8L3xhW4Pc2ogSiwzly6ebwnCqAP6W9kSkzpwYQDCMx7UHLszc5TA_oZDF24HiPs-TBpbwegdaj2iaQ-CN7aQF6GTvFFe_vGWAazJKdzbAEFbFssvr0ErzoHdm-2O7Ikkvjw63-QxKABe0Up2QEghv4is7OMjrRmLEpnZ-HB6BGMRTGF219H8P5A5iMg)
Tips for Setting up the Start Date / End Date
Typically, your external auditor requires the latest version of a document and/or evidence to have been created within a certain timeframe to be acceptable for use as validation of an implemented control.
- The Start Date allows you to control and limit the period within which evidence must be created/produced. Typically, this does not extend prior to the year of the current Audit Period.
- The End Date ensures that the notification is sent in a timely manner and allows the evidence owner enough time to provide the required evidence, as well as for the compliance team to review and approve the evidence prior to providing it to an external auditor.
NOTE: For first-time users setting who are collecting evidence for the first time on the C1Risk platform, we recommend scheduling the END DATE in advance of your external audit period and create sufficient time to a) train end-user evidence providers to use the platform to provide evidence and b) provide the compliance team sufficient time to review and approve evidence and/or work with end-users to ensure the correct evidence is in place.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyK_vjVTiznkSSa4Kq5HTnMRFzgFmyqk-HiIOkvQvKF9KdI2pxNWrSEKllVTcZo7R6PPfj2n6rDOo5pIDHm4iXiCSK4mleoPCZSrxemz4Anb9CSut76pIsZHI-8D2HBLyU3GbiBkKLDK1zygKgn8oqRV_SwUOaXsbjEMHifaaZ2rj6M3B3QJSNXKrF4XFDP-hTeQ029HcKUHxz9Sq3lG2w)
Establishing the Frequency of Collection (Cadence)
The initial Start Date /End Date might not be the same as the subsequent collection period. The Request Frequency automatically establishes the correct collection period based upon the initial End Date.
For example:
STEP ONE: Initial Set up
- Initial Start Date: January 01, 2023
- Initial End Date: June 30, 2023
- Collection Frequency: Quarterly
STEP TWO: After Automation (System will automatically change to)
- Start Date: July 01, 2023 (the day after the initial End Date)
- End Date: September 30, 2023 (Quarterly/3 months from the previous end date/new start date)
- The process will repeat on a quarterly basis.
Note: When establishing a frequency for evidence collection, the Start Date and End Date will automatically update based upon the frequency selected.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL2WdFyhncA_ogZ_03zklpKkRrl8vdoDm03KHVO_1nW8pY7CR1rTTN8-ji2XTwtA9d9AZwknge-1t2S0XtGn5VaBwyaWj5MMoj4M_M-uGBdXtaCKTywbCBcx5MRxpdUW5gYhWZZfM1LAzbocGLekDEil9POiVk2yiphbkIhbvg_9Ithat06_PgoeUaw19u7XR2buUlSMTvfeqUFRzI)
Adding Evidence Owners
- You can assign one or more team members to receive Document Request Notifications using the Primary Contact / Additional Contact fields. This enables you to copy leadership or provide groups/teams with the ability to collaborate on providing evidence for compliance.
- Note that you can add one a single Primary Contact (typically the person who is responsible for providing the evidence) and multiple additional contacts (team leaders, assistants, stakeholders).
- Primary and Additional Contacts can be Administration or General Users on the platform. To add Users at any time to the platform, contact support, please contact our support team: https://c1risk.freshdesk.com/support/tickets/new
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKLl73qgzYotKJOAvjXbV_EULZIzL7MUKiyp_k8zcZWbc_0C3MrGG2yM6qRlCHty2AoxsnOsoXCp0FZm253fJUbCiQO1Q2FxYvZLjAdyxPaX-eSP30Ba1umvaavLZtt3ZeZejTq_C9rmoEBSZc2qRM_pFkY9awrQa0wtkXTT0mps4-kDPty1qCyeT6VF4AoryNawngf5wWnoVcqO-dgtw)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJyrtmhxwq4HwsjOpJE1p6eI23SgfH1nhK01y5gNwMv79CKj8Wi85Mi5GMhWNczwNrEZrwkzok10FiXTeroLm332gzYo0AKsL9Jn7m1CWGAumDBmuAJqRgeJyeRQQvc1H2JFgljRld-8eA2YKa04LR4VkoY5YtUZ5wmNydnvlUdIt5E6cSZ2y-My4azGkiB1K477hioF4SezvagA8NF9w)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL1tUUHJ9HxVjc-MpeeA9flQodjMRO5iDk0Lxioxw12yKWv00KmO3Fv3C2ac8Q-_Olxh_FrV2N4tW75xiRRbcb9251Yv3lk0OWUyRDU2a_X4cLe1oHw_oQ-TLdILMhVxRQglgXgSHdX73Oj0H3A_rasfEbjWYZpm-skR5WIV43D903REdqFM_oJlgIOmNcmyO1W6GyO7QWB0rgtuaBd5A)
How to Set up the Evidence Review Process (optional)
The final step in setting up the evidence collection process is to establish your desired review protocols.
While review is optional in the platform, C1Risk recommends adding review as a step to the process as it enhances the options to collaborate with evidence owners if/when supplemental evidence is needed or there are issues with the information provided.
The C1Risk platform always provides the following approval rule options:
Approval Rule Table
At least one must approve | Assign one or more reviewers. Any one reviewer can approve or reject. |
All must approve | Assign multiple reviewers. All must approve in any order. |
All must approve in order | Assign multiple reviewers and the order in which they each approve. All must approve. |
Contd.
- In the Evidence Record, in the Approval Process Section, choose ‘Yes’ for Approval Required.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLluA5Hz9FIhE8dtW6OvsTJ4oNPqDJWWMR07A5u4It2gTOWUzjEQVyv3P2abIQYmngjOa2Tjw00k1U0EJ9Sc1YpFrOWG_sKPSFtx0_mkIvaiNVMlJtrQZKCBnLW7VSdIC1BJycBkcyf59ddOszZpq6FEwhedlhjhnYExyZVo9XAB7ysbVZkpZbPOBMFktqOKjOlupoLIyJuCvcdec3C3Q)
- Add the reviewers using the drop-down menu.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI55ST2KOYQqmNG4Ywc2coTDHOst-uSJrsFpKLL6hHRtYZY8grzaRAvAKilZlMaBjJm8D9mozJgECRuP-h0lJmB8vYDari1u8lm-JxOHPFWTrSjNLHP2ivsZ6DXz93762QiNNFtyHjjjF0gRZqQ6fBMcWAr_99p2Z9dX2GaihDvaZrmNkTQnyXxFua-SOklX7NGMJkFzZiSEer4k1rdKg)
- Choose the approval rule (see table above).
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKTR8xGLfYL8LmDZ7GE_-mSx7YVYN5XsoiQciVGXfULbKe4g3CtP0yXpq4Ltys5MKpVVSFsM8kdawZyuEbaiAQTFrnZSti9CZCC1aSitml9U4quwxNdCG4sfGr67ruAo28AAEhxdiZQ5L3dxlKIgmkywHsGMcZhAg5ewJuFkOZDtMBMH9V9w5I9uLT3u7GkDZVMtUTK0GYKyh22Bvk)
How to Bulk Update Evidence Records
Evidence can be set up for collection from the evidence record or in bulk from the list view using the Ellipsis drop-down menu and setting the following criteria using the menu options:
- Select the appropriate evidence records.
- Choose the desired function to edit:
- Change Request Frequency
- Change Evidence Start Date
- Change Evidence End Date
- Change Primary/Additional Contacts
- Change Reviewer (coming soon)
- Make the appropriate changes and click Apply or Save
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKC7-MOFSne4YGirbh3dScvq5PF0G6oNtBycy9_M0TZzIXjR0bdABtZGnN4i0kbTlEFOCmXRTaK-EsmY2f4IZfAqQfzYjrBgTQ9wNiIhJDfWry0Jpy8Za3-5rcWaIc06EAPWh76w2USHcDCb2dhzWT-x4C8OYRdTuY-BiIJ2VxFrms16CE1FCWvBm7UsJRVu0IDN-4NNRCmHQlZ1cY)
How to Launch Evidence Collection
Launch Document Requests
The evidence collection process is launched by the system based upon the end date selected for each evidence record.
On the specified end date, a Document Request record will be auto-created in the system and a notification will be sent via email (unless API integration is in place) to the Primary Contact and any Additional Contacts Associated to the Evidence record.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJmX8TgPLFuefASJLySqZ7V8GCZI2zAD5dsBCOHLZdxtppeHCzDZ1KTLsrO7qcixN1ow9K9H9evsOaibConnbgDhYgktf12mpPaat7YnDKsMPGCVk1A9J0cJamL_nX-GaYaCb1jjKiab2IQG5EzobXKc9jePJq7pMgN5t1t-vOfZG6mRyU0sJbuWbogTdoogI_LA2E5Q95i59BE--7iFg)
For Audit Purpose, Document Request Status and records can be reviewed from the Obligation dashboard and tabs in the GRC Library. (1)
The Document Request can be seen in the Document Request Tab (2) in the Evidence Record and the Status monitored in the List View of the Evidence Collection (3) or Document Request (4) sections in the Compliance module.
(1a)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL4vdH2UWt2dLWLvQRunMnTVdRVDpKQrDEOrF__zup826-3g2_7ZJ41oSZvClJv9FfGJlcCfPPFe3vs-MBDC_GlmGdXH4Kr4NoZSKbDkr8_8aYnlm85EwNlbdmJsAMJEiOhlfBJIVzr0_p6WuU-Yk4O69NAlKj5A8tXLPvZIpS1297TctATVvDxpEzb8HLIBCHR7wksmnqLa5eWLWsWHg)
(1b)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLkQDJH6cppbfZZlO4dP1JM6si-0vUTQbvRg6ZWLmx4GFd1sNQkVXMPHzmmXBMcqEa2Sj1n5sQA6ryXDcx6as2dn1-ctax8vbstCGm81Sw-S1ZHlGdAA3QOIjlXhnjfInGYQ37mf09zDCD_pI6dEbdjopEvi3QRPQMyjxVc6Xyc_EPQc0Xj8JZHVlcxD6uwi1p8Psf2TcmIlc3mTFjrag)
(2)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI5fydx0IoOU1lLpPG0RfWXn-wlz0Ddii1vfwCfZqgkBsqO0eMRWcMGYE7589K6ebTOqjY9ZtPTVXn3JSzobt-UfiTrabK6n_0Q1ZCGcEZ2XT1kbTEv6uAxx6QMArehCmVB_LNewc54prEH7z-CsoxMlQ-xy0UrMJnrX96uFx_wtTyxoSjjDc_INbry9iCUPcHlrgN5DfhbjklDe2-qXA)
(3)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJtIMfGBc26URjAMuubaH8MwEaNflfzK4pbgJ7ibX_k2L8ebtZ91OCURzssMmL7hPrDIoTiBLYmPlg8sNNqyeRrUDRpt7aJSoqez6DH7HJUMIA7xkr7EirZqPavRbfIASIBU5zcEkBTwxlJDwpoSYA92lyY3CCxS5tGr_GPFpop_6hlKwvfVyA1QKgtAz2sgTZYoB47VT0sA4aDm2g)
(4)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyL89KWQISZrdI6RLAw0QNramEN4F3kP531R1ADgli31h_oGgJQXiEreRRsGLJ2FJGDAn-f9S0hY7rdjjMRVAVzPjNJlstNUAdAD8vvOOA5PP10n_tXYEwwFS6PXRZ1HzkdxRwcvckT6BhehbaMMVmHc7hszz1XMi-_Cv3cU0rjf9XgyjWtkzmeRFqH4qpbrqxHa-qTO8FucPFp3dmbJgA)
Notification of Submitted Document Requests
When an evidence owner responds to a Document Request, the evidence record owner will be notified via email (1).
The owner will also receive an approval request in their Dashboard (2)
(1)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKfXIAF3UZnV9iEOqRc5IEjHFYzQ9MaE9IeVfVJ6e0-GxzndAbVtawCOOfyZkb6X25dTK94VB3ydibd0XwIYH4ktwx_QF0e7vMh6o3-rhJSX2BT0Z0YT-QbfySGlk65CDOEEaAeo-5HtiFRcXvai71SZsrY9tYOv4pUfXPj9KNhkrldAjkqHMTBLBMw4hM33OtuFgSwbNV2ieTF3VAQCg)
(2)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLOtBk-SPC3eY_wHqWmad_AVlO0E2Rsj6PH635bWCbjdh5LiJP3KX4f7z7YN10-AUXh0FKJAtla-LYmikNotzuq_lGFo0kHKNXMLD5f9U1IvbIoQkY8N0AEsTmJOb0SuFnTt0gz8IY9Fad3QD1vzBCwa72BfdE7oxVo8b19clZnYxmAVgHhvG9PwZJzuQ-Z-QkeB5lEr5eZck43UGCGiA)
Approve or Reject or Respond a Submitted Document Request
Click on the link in the email notification or the link in your Dashboard to access the Document Request record that you need to approve.
The link will take you to the Document Request record.
- You can review the data/document/information provided in the Document Response Section (1).
- Click on the attachment or URL link to view/download.
(1)
![A screenshot of a computer
Description automatically generated](https://lh7-us.googleusercontent.com/docs/AHkbwyK3Bw9ZHCX5PLKCtmx8D6wLXDlSMDF3H5hlNMqwnEK_8HJOnlx87AKtK-VVowB00FY1Pyo4y_9PfxpyoMqyDQ6XAHYeJdSv6Og7UPi1HobXyERWPvGmLW2Dne0vZFoZceVCckzaIA71vnyufEV1_r1lNv0r77T0F1Cl30UxzNGIUI0oC-8orGOA13NJy7LTa3upjlRKbb3kCTbO4mOIxw)
- You have the option to respond by approving or rejecting the submission in the Approval Process section (2)
(2)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJmEHjkaGRoQibo1X6R9wDz9iNt3p-P9V9YvM7YmD3fMrGp68--4tz6wzTRjqaqXbZq68cXUI3i-SzHVxICAp13s9aIIHnSCq9jHY8ZrPNeU7A0_6gB_6FKfPoGuKELPp3M858ysRtFOI4Mo_0wFDTEvaC_2VO1i4Klv9NgboJ7eEKGjlxs6UtZ8FPh-NYHrmbZO_CFonLRVgBxtI4mnA)
- You have the option to Comment, prior to Approving or Rejecting, or when approving or rejecting the Document.
- Prior to approval Use the Comment Section (3) to add a comment.
- Click on Add Comment
- Use “@” to bring up a list of users and select the appropriate user (4). The user will be notified via email and in their Dashboard and will be able to respond and provide attachments in the comments section.
Contd.
(3)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyITn4rtNwfMtq7fNzSdrZXPAumN-3PbM1qpleWxqzJGTnNVasBeu6UFWyLo4h-qlX650WZ-sSmvj6Zi6YHfuh5Tx8FVwA0ZWxyAxYbDRcCegtsNpNW7rHtT9X9uGTg3zEXm6vWcwnbTDZ5rE5KES--FocatWRLyxic9ZtwHU_ZB5t99x09ICz_JLnmxecYaayB_VFzQ--AzMTpDv37CCA)
(4a)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIVgxlsG-36GnOaYJN8M8_6CKhmWr8chotjbXS5sYqrslFSY9GdfJ6DgnPyz5K1yiWkU_c96Zi1kdZI5DoKoNGbS3FSmpWtb5RnEIMxH8Md9j5gP9HSHy0JYAGIhYfVGRMAcKVw5HVaEbaPHZb_mcdcXccb7p_4uDhFC16Vj5UMGdTUGcM8QT007mdvi62Jy7525nFEijb-tAAcEvVjig)
4(b)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI5NNee5GOglosw9KregQEXY6Isj39VXFrH98CjfC4AnGrConXDJx1qy2kXOrsXBEGI3cgPdJaqI-FRw3XoJKeS6O_i4Sgc-qn9Z0r-rUxnBm_XeOVLD-FtSeiOHQ83ZYcxXbvs6zIIyVdNCjgS3QUFuynJVNOE0iD8j53SOaayRsmBMtUK6rMDQ6aoNF5u5fhaT9Y6vAX1QKsr3eu8Gw)
- Use the Comment box provided to comment when approving or rejecting evidence (5)
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKIQRpNTzjntrJ398P3Us-m2u8L1nlyDwUkOlLBJnoJPVxYEogZmq5noTen3tR8BmTacaFV9fiwmyv07RDEUV5CIH0pS1hFjA6l8ZZ5RLCe3xUIzJoRKyuByXczQmFylfOjGOIXrKwaIdMO_GR16cGa_wWEu3nNCKIgfIlQNzXlaKQsxI2mzTSYJplGzx3rtvlAoqN0ENkshLtnj9Y)
Why & what happens when a Document Request is rejected.
If the evidence owner response is incorrect or insufficient, new, or additional evidence can be requested by rejecting the Document Request.
- When rejecting a Document Request, be sure to comment to provide guidance why the document request was rejected and what the evidence owner needs to do to complete the transaction (i.e. what was wrong with the submitted evidence and what should the evidence owner provide to complete the process?).
![](https://lh7-us.googleusercontent.com/docs/AHkbwyKYnLwv93Mts9Q4eNMcq0uuxSbg-b33NzGfuShInASYmX27IB8nS9BkUgRah9xBkMetVc69s065105Wbtzbr-2cesvFvEJQ1CK5A5wnZUTryo5NjB7nyWaCZmlsCver0rJ1lCvzuC8nPfen6Mhspe689O4bpAmPbnTQBq8fkw5n0Vld2fZE5kWIuqoU1aAMhoGkTmKu9V48_EnQocc)
- When a Document Request is rejected, the evidence owner is notified, and the comment provided.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyI0gnyU4N5AgEksO2n-clvPKQN-bu1Ri7yUVkfSiLKqm5Wrq4htBgjE72M5pWbB7IrPoIjeViJa1-61OZI3b3BGa2gkAqaaImEY1qq7cyyoPfk3mt7HwE0MWJmWiLGEZan2b50uLMNRU4xiamU4dwOHDJ6H_z1aCc1t7XuuvaBfXrCdD4t1oBTI8EzovD-WoLgdY52uV9EDMIsI6rBwow)
- The evidence owner may now click on the link and, based on the comment, provide additional/supplemental evidence and re-submit.
- The status of the Document Request will show as “Re-open” in the record and all list views/dashboards.
- The rejection comment is also tracked and visible in the record.
Image below, contd.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyLxxV-n-vECse4QZ8B1ZiCqQDWeasMERoa6K9X6bUEYZd6aMV1h6oY8sSA8DYe0UkDzwGMAhgVDs-b8XuxQAOUm8ziO_ZUqyTIlnEiVx4Mut1KpTNIcnsrC_waIgpRiipKPM-o0KcLa4wFXhjD9S69vwcWBP6ggxv-oNTaXEG1v5kFtzEtkQYNDsaOn6ehqwNns_1dpBsMh-veGCJHeaA)
Continuous Compliance Monitoring on the C1Risk Platform
Dashboard/Task List
Now that your process is set-up, you can monitor the lifecycle of your process on the platform from your task menu and from your dashboard.
- Requests to provide documentation (by you) will appear in your Task List (1).
- Documents submitted for review (by you) will appear in the Approval Section (2).
- Comments/questions for you will appear in the Comments Section (3).
- Click on the relevant links to respond accordingly.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyIfQFvjKfmoQE0GwiaX4mgUaOvdQScMFNgSXAmSGyX4pVnHBpX1_zHNsXa79kv3xpQYGpfep2cSXdxjnVg3ucO6-DxeW-i3w5Z9kdBiCwTMCdYkTltHp3n6hIf8XKvlZ5piEIYg8vBQF_TzRPbTIQLMkug8v7hhPC2a5iHkaynBK1ZXo_ALA-05pZrvprWN4HqXM_BTE8MxOLELKlvqbg)
GRC Library/Compliance Dashboard
Similarly, if you are managing compliance for a specific regulation, you can monitor progress from your GRC Library in the Obligation record. Your dashboard will auto-populate based on your assigned Audit Period.
- To set your audit period, go to the Details tab of your obligation record.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJ15Zp7djQRMsM_xaTdOOcPsyCe3C165YIOd8xtnf8LfWgyH3TVL07CBuPlJZtx6gDgtkKx9XWoJdezjg8hCGYnNDXXmMePX_Yl9eLTxjaBhjoYtdrlzbWgNI-2hWQo5PwKIdXl1j0XlUWam6GRZr0VN3Bb8HxMEVrHrDz_-gfJf6bIg2rOYq7zewSOd7UkkJb9p-wrdSPqeGL8jgU)
Now your dashboard will auto-populate the following data:
- Compliance Status: An overall snapshot of your readiness for Audit.
- What percentage of in-scope (applicable) regulatory requirements have internal controls in place.
- What percentage of mapped internal controls have evidence records mapped.
- What percentage of evidence requests have been fulfilled with submitted document requests.
- Implementation Status
- How many/percentage of control requirements are applicable and are being implemented by one or more internal controls.
- Internal Control Frequency
- The summary of testing cadence for your internal controls
- Evidence Request Frequency
- Cadence of Evidence Collection.
- Document Request Status
- Status of evidence collection (open, submitted, approved, etc.)
- Calendar of Evidence Collection
- Evidence Collection by month.
- Findings
- Observation/Finding management.
- Risk Mitigation Status
- Status of Finding mitigation.
![](https://lh7-us.googleusercontent.com/docs/AHkbwyJczwUbqWdsvFCjCE3ocHVuD4bgcXavjaex_oTcqpmlqBNldqgTCM99Moq5l5-SdiVC9xAa8p3nd4foVfKb8L3VaFuHp0UxLUVZXtVtS_2MTDiYS4nXFyBbcqNxpsC-9zish66fdTrdHq8AB2GQALcmVrraujlEXwsfLCmG7LNVEIMEeDpNgHGIRp6lbRVEMHJSt6JOvfqdd077kVI)
Conclusion:
This concludes the compliance management training manual. Please see other instruction manuals and training manuals for further information on Compliance Management or contact C1Risk support with any questions: Submit a ticket : C1Risk Training Portal (freshdesk.com)
Reference Instruction Manuals:
Evidence Owner Training
Internal Audit Training
External Auditor Training
SOC 2 Type 1 and 2 Training
ISO 27001 Training
CMMC 2.0 Training
Annual Internal Risk Assessment Training