Working with Controls
The Controls page provides a centralized view of all controls in your organization. From here, you can search, filter, and review controls, and open individual records to view or manage their details.
Access the Controls page
From the Internal Controls app, select Controls in the left navigation panel. The All controls page displays a list of all available controls.
Find and organize controls
Use the tools in the table toolbar to quickly locate and organize controls:
-
Search Search for controls based on available control attributes.
-
Filter Narrow the list using available filter criteria.
-
Columns Show or hide columns in the table to customize your view.
Controls list
Each row in the table represents a control. Click a control name to open its details page.
The following table describes the columns available on the Controls page.
| Field | Description |
|---|---|
| ID | The system-generated unique identifier for the control. |
| Name | The name of the control. Click the name to open the control details. |
| Control frequency | Specifies how often the control is executed, such as annually, monthly, daily, or at another defined interval. |
| Control type | The classification of the control. Types include Manual control, IT General control, Application/System control, and IT dependent manual control. |
| Prevent or detect | Indicates whether the control is designed to prevent issues or detect them after they occur. |
Note: The field labeled "Name" in the list view corresponds to the "Control name" field displayed in the control details.
Working with an individual control
When you open a control from the Controls list, the control details page is displayed. This page is organized into tabs that help you view control information, link assessment methods, manage control assessments, and review findings.
Control details
The Details tab displays key information about the control.
| Field | Description |
|---|---|
| ID | The unique identifier assigned to the control. |
| Control name | The name of the control. |
| Key control | Indicates whether the control is designated as a key control. |
| Prevent or detect | Specifies whether the control is designed to prevent issues or detect them after they occur. |
| Control type | The classification of the control, such as Application/ System control, Manual control, IT General, or IT dependent manual control. |
| Control (usage) frequency | How often the control is performed. |
| Owner (name) | The user responsible for managing the control. |
| Business owner (name) | The business stakeholder accountable for the control. |
| Linked org units | Organizational units associated with the control, if applicable. |
| Description | A description of the control and its purpose. |
Assessment Methods
The Assessment Methods tab shows the assessment methods linked to the control. Assessment methods define how a control can be evaluated and can be reused across multiple control assessments.
Use this tab to:
-
View assessment methods linked to the control
-
Link existing assessment methods
The following table describes the columns available in the Assessment Methods tab.
| Field | Description |
|---|---|
| ID | The unique identifier of the assessment method. |
| Name | The name of the assessment method. |
| Applicable to | Indicates the assessment type the method applies to, such as control assessment, operational test, or design test. |
| Estimated effort (hrs) | The estimated effort required to complete the assessment method. |
| Procedure (steps) | The number of procedure steps defined for the assessment method. |
| Description | A short description of the assessment method. |
| Status | The current status of the assessment method (for example, Draft, Active, or Archived). |
Control Assessments
The Control Assessments tab lists all control assessments created for the control. Control assessments are used to evaluate the effectiveness of a control over time.
Use this tab to:
-
View existing control assessments
-
Create new control assessments
-
Track assessment progress and status
The following table describes the columns available in the Control Assessments tab.
| Field | Description |
|---|---|
| Control assessment ID | The unique identifier of the control assessment. |
| Assessment type | The type of assessment, such as control assessment, operational test, or design test. |
| Status | The current status of the assessment. |
| Start date | The date the assessment period begins. |
| Date closed | The date the control assessment was closed, if applicable. |
| Duration | The length of time the assessment has been open. |
| Assignee | The user responsible for completing the assessment. |
| Approver | The user responsible for approving the assessment results. |
| Results | The outcome of the assessment, including the effectiveness rating and any documented findings. |
| Source | Indicates how the assessment was created or initiated. |
A control is a way to prevent or reduce risk and ensure compliance with standards and regulations. Controls helps reduce the impact of risks and the likelihood of risk occurring.
