Request failed with status code 502

Project Management

Manage proactive and reactive improvements to your GRC program - long

  • Episodes7
  • Duration17m 16s
  • LanguagesEN
Episode 7

Reviewing Projects and Tasks

How to review items in the module

Introduction

After creating items in the module you will most likely need to track their progress and changes with the help of the people involved in them.

Comments & Attachments

Each Project and Task record has the option to include Comments and attachments that track down who wrote what and when. We use this functionality to track down interactions between the two key roles involved in an Project/Task (Project/Task Owner and GRC Team).

When you or the person giving you feedback click there they can write whatever they want, for example, "There are no updates on this project". You can then click there as well and reply back. In the end, a trail of conversations will be logged where "who", "wrote what" and "when" will be evident.

After all discussions take place you can then complete the review. Is of course important to remind you that accessing those menus is completely controlled by Access Lists, so you can remove the "Remove" function, etc to those that provide you with feedback.

Review Process

As mentioned before the review process is typically an interaction between two roles, the "GRC Contact" and the "Project/Task Owner". This interaction typically works in two ways:

  • Offline: the interactions take place between the two roles over email or in person and once they agree to something, the "GRC Contact" updates the Project/Task and attaches as evidence whatever discussion took place.
  • Online: both parties might talk offline, but their feedback goes into eramba as "Comments & Attachments" (in the offline mode only the GRC Contact uploads content to "Comments & Attachments").

The online mode:

The offline mode:

Update the Record

There are two scenarios when a Project/Task needs to be reviewed:

  • The Project/Task deadline is approaching
  • The Project/Task has not been updated by the Owner in a while
  • The Project/Task has been completed

The discussions that will take place in regard to these scenarios will ideally be documented using the process above (online or offline).

If the Project/Task is completed, then the following is required in eramba:

  • Set the status to "Closed"
  • Set the "Closure Date"

The associated items (Policies, Risks, Compliance Requirements) then would be disassociated from the Project/Task.

If the Project/Task must be extended or updated then the following actions should be performed on the Project/Task

  • Change the "Project/Task Deadline" to something new