Rome Release: GRC – what’s in it for me?

The Rome release of ServiceNow has arrived and with it a host of new features across the platform. Today I’m going to review my favourite new features in the Governance, Risk and Compliance application suite which includes and an overhaul of the user interface, crisis mapping and a new portal. In this post, I’m going to discuss the highlights for customers and how they can start to get the most out of this release. 

Workspace has arrived for IRM! 

Each of the core IRM modules has received a significant overhaul for the UI like that which exists for the BCM application. This provides users with a modern user interface with the same configuration capabilities of the previous UI16 through the latest UI builder, this will allow customers to personalise any of the new workspaces with ease. The new workspace comes with persona-based landing pages to ensure each user has the right information at their fingertips, the new UI covers the following applications: 


Policy & Compliance Management 


Risk Management 



Audit Management 



Vendor Risk Management 



Regulatory Change Management 


In addition, a 360-view workspace of all IRM relations has been added, which significantly helps you visualise complex and interconnected GRC data such as controls, risks, and issues. The 360-view can be drilled down into to get detail on the underlying data. The following screenshot shows a 360 view for an ERP system and all relational data. 

We now have a risk portal 

Another great addition in the Rome release is the new Risk portal which provides employees with an interface to report risk events, issues and respond to other tasks such as risk assessments. 

Crisis map launched 

Possibly my favourite update from ServiceNow comes in the form of a crisis map. This has been launched for the BCM application to bring disaster information to the forefront and feels very mission control centre to me. The online map includes the latest satellite imagery and provides information such as storm paths, flood zones, evacuation routes, shelter location and power outages. This helps users understand the scope and impact of crises by location and to plot out the critical assets that may be affected due to the threat. 

Vendor Risk landing page 

The newly released workspace UI for Vendor Risk comes with a new landing page that gives users an overview of the VRM program. This includes an overview of all vendors and engagements including their criticality rating and some quick actions to common tasks such as creating a new tiering assessment. 

SIG 2021 Integration 

This isn’t necessarily a new feature, but the Vendor Risk application has been updated to align with the latest SIG questionnaire to reduce time to respond to the. This allows a vendor to upload a copy of their SIG directly to the vendor portal and converts the answers in the excel file into a record in ServiceNow. 


Closing thoughts 

The Rome release has seen a significant number of updates and new features in the GRC suite which customers will see an immediate benefit from. I’m specifically excited to start showing customers the new workspace UI as it really does provide a much better experience for those using it day-to-day. 

If you’re looking to expand your GRC program we’ve recently launched our GRC the whyaye way service offerings which get customers started with each of the three applications IRM, BCM and VRM. For more details, please click here. 


By James Morrisey

‘The Adviser’

We work with