1. Using Financial Reporting Compliance
  2. Create or Edit a Process

Create or Edit a Process

As you create or edit a process, name it and describe it. Then optionally select perspective values that set it in a context, and relate it to risks that may affect it.

Use either of two methods to open the page to create a process.

  • Select the Create Risk Management Process quick action from the Risk Management springboard. (Depending on the number of quick actions available to you, you may need to select a Show More option on the springboard.)
  • In the Processes work area, select the Processes tab. Then select the Create icon.

To edit a process, select the Processes tab, select the row representing a process, and select the Edit icon. Or, click the name of a process and, in a page to view details about it, click Actions > Edit Definition.

As you work with the process:

  1. Enter or modify required values:

    • Create a name.

    • Accept the default status, Active, or change it to Inactive.

  2. Optionally, enter or modify additional values that define the process further:

    • Compose a description. Along with the name, this may in effect document the steps required to complete the process. For example, if the name of a process is Year-End Closing, its description might summarize the activities required to complete the closing.

    • Select a type. Your organization can use the lookups feature, available in the Setup and Administration work area, to create its own type values (see Manage Lookups).

    • Select in-scope values. These correspond to activity types selected for assessment batches, and so determine whether the process can be included in assessment batches. You can:

      • Select the Audit Testing in-scope value to make the process eligible for assessment batches whose activity type is Audit Test.

      • Select the Assessment Testing in-scope value to make the process eligible for assessment batches whose activity type is Certification, Operational Assessment, Design Review, or Documentation Update.

      • Select both in-scope values to make the process eligible for assessment batches assigned any of these activity types.

      • Leave both in-scope values unselected. In this case, the process can't be included in assessment batches. You can, however, create "impromptu" (individual) assessments for it, because in-scope values have no bearing on impromptu assessments.

    • Enter comments, if any are germane.

    • Attach documents to add detail to the definition of the process (see Attach and View Documents).

    • In the Perspectives panel, select perspective values appropriate for the process (see Select Perspective Values in Financial Reporting Compliance).

  3. If descriptive flexfield segments have been defined for the Process object, these appear as fields in an Additional Information panel. Provide values for these fields.

  4. Select related risks, to indicate that those risks present a threat to the process. (You must create the risk records you want to select before you add them to the process.)

    • Expand the Related Records panel. In it, select Actions > Add.
    • An Add page opens. In it, select one or more risk records. You can use the Ctrl or Shift key to select a discontinuous or continuous set of records.
    • Click Done (an icon that looks like a less-than symbol) to return to the create or edit page.

    You can dissolve a relationship: Select a risk record in the Related Records panel of the create or edit page. Then select Actions > Delete. (The risk continues to exist. Only its relationship to the process is deleted.)

    Once you save or submit the process, you can view its relationships in the Definition tab of its record, once again in its Related Records panel. Here, the name of a related risk is a link to its record. However, the link is active only if you're authorized as an owner, editor, or viewer of the related risk.

You can authorize other users to work with the process only after you create it. Save it or submit it, and the create page changes either into the edit page or into the completed record of the process. These pages, unlike the create page, display a Security Assignment button; click it to authorize users' access to the process. (See Secure Records in Financial Reporting Compliance.)