Move risks through their full lifecycle in one place, from spotting a new threat to closing the loop. Capture risks from a curated scenario library, score them automatically with the Business Rules Engine, link the controls and policies that mitigate them, and assign treatment plans your team can act on.
Required Editions
Available in: Lightning Experience
Available in: Enterprise, Performance, and Unlimited
Editions with Agentforce IT Service.
Risk Management Workflow for IT Compliance Follow how a compliance team identifies, evaluates, and mitigates compliance risks that threaten regulations and policies. See how risks are linked to controls that reduce risk severity, and how risk scores update dynamically as controls pass or fail tests.
How Risk Scores Are Calculated for IT Compliance Agentforce IT Service calculates two scores for every risk—an inherent score that reflects raw severity before any safeguards, and a residual score that shows what remains after mapped controls are factored in. Both scores are calculated automatically by the Business Rules Engine using the active risk scoring expression set.
Continuous Risk Monitoring for IT Compliance Background agents continuously watch your IT environment and your controls, flagging new risks and re-running evaluations the moment something changes, so your team always works from a current view of the risk landscape.
AI-Based Summaries for Risk Records in IT Compliance Agentforce summarizes risk data, evaluations, and treatment history into a concise narrative for compliance leaders. This helps your team analyze potential impacts and understand current mitigation strategies without opening every related record. By providing clear rationales and suggested next steps, these summaries simplify stakeholder communication and help you decide treatment plans.
Work with Risks for IT Compliance Capture, score, and treat the risks facing your IT environment. Build a reusable scenario library so your team logs threats consistently, gather evaluations from the stakeholders who know each risk best, map risks to the controls and policies that protect against them, and assign the treatment plans that drive each one to closure.
Did this article solve your issue?
Let us know so we can improve!
Loading
Salesforce Help | Article
Cookie Consent Manager
General Information
Required Cookies
Functional Cookies
Advertising Cookies
General Information
We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required Cookies
Always Active
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional Cookies
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising Cookies
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.
