Drova GRC: What is a Security Centre? How to create and edit a new positions?
Ever think of a Control room? That is the purpose of the Security centre in Drova GRC. The access to the security centre is totally controlled by the Drova GRC administrators. Those who have the access as an Administrator can manage the security centre and give access to all Drova GRC users. To access the Security centre you have to click on the Maintenance Tab and then click on the Security centre. Once you are there a page with a display that will look like this. Before jumping on how to add a position. Lets talk about what is a Position in Drova GRC?
A Position identifies:
1. A role within the organisation that has responsibilities for owning or managing Records in the various Drova GRC modules
2. A position will be the actioned by roles for completing a task(s).
Each person with a Drova GRC account is assigned to a Position. The usual practice is to make the Drova GRC Position title the same as the person’s job title. Position titles are required to be unique in Drova GRC. Each Position will still have unique security accesses.
So lets start with Navigating the security centre iand creating a new Positions. All you need is Access to Drova GRC as an Administrator.
Once you are there you will see four tabs on the top which are Positions, Task Teams, Security Groups, System Groups, User Emails and Obsolete Positions.
We will explain more about security groups, Systems groups, Obsolete positions and task teams in our next training video.
Let's start with looking at the basis of a security centre which is How to create a Position?
To create a position, you need to click on the + sign on the left-hand side menu. Once done you will see a new page displaying which requires you to fill in the details of the new position who is going to join Drova GRC. A new window will pop up with the essential credentials to fill.
1. You need to provide the Title of the new positions
2. Then you need to provide the email address of the new position who is going to join Drova GRC.
3. Escalate to Manager- An optional field that determines who should be notified if a Task assigned to the Position becomes overdue. Click the dropdown to select an Escalation position.
Please Note: The default ‘Escalate To’ position can be overwritten at each individual Task this position is ‘Actioned By’.4. Display in list- Tick this field to display this Position in the Position selection lists throughout Drova GRC. Position selection lists consist of responsibility roles and Actioned By roles. Once security access is granted this will allow Tasks to be assigned to this Position.
Please Note: If you want a user to have access to Drova GRC without being able to have Tasks assigned to them, un-tick this field.5. See own data only- Tick this field to restrict the Position’s access to Records and Tasks that the Position has no direct involvement with.
Once all these steps are performed then you can see a new position has been created.
The next step is to assign the security rights to this position:
You assign Security Rights to a Position by making the Position a member of one or more Security Groups that have the necessary permissions. Higher Privileged Security Rights can also be granted by making the Position a member of one or more System Groups.
This has many benefits. For example, if an Administrator needs to change the Security Rights for all Managers, the Administrator only has to make the changes once in the ‘Managers’ Security Group, not to every Position within the group.
When a new incumbent takes over a Position
An advantage of using Positions is that the Administrator can simply change the personal details (name and email address) of a Position when a new incumbent takes over the role. This way, the new incumbent has access to the whole history of Ansarada GRC activity for that Position, and will inherent all Roles and Responsibilities of the Position.
Here is the Overview of the Security System:
This diagram shows how Positions access Records through the Security System.
Overview of Security System
Related Articles
Drova GRC: How to set up a new Position user
Are you looking to add a new Position user to the system ie. a user requiring access to the full Drova GRC system who may own, be responsible for, manage record items, or be assigned tasks to complete? The system provides the capability to add new ...Drova GRC: How to set up a new Portal user
Are you looking to add a new Portal user to the system ie. a user requiring access to the Portal to submit forms and view documents? The system provides the capability to add Portal users individually or in bulk. Security permissions required to ...Logging into Drova GRC (legacy sign-in)
Are you looking to add a new Position user to the system ie. a user requiring access to the full Drova GRC system who may own, be responsible for, manage record items, or be assigned tasks to complete? The system provides the capability to add new ...Ansarada GRC: How to Bulk upload Positions?
Bulk uploading positions is possible on the system. It streamlines the creation of Positions by allowing the bulk upload of Positions from a spread sheet, cutting time-costs of creating a new position for every user. In the Maintainence tab, select ...Drova GRC: What are Task Teams (TT)?
Task Teams are used to allocate tasks to a group of Positions. Task Teams can be allocated to Process Controls, Risk Treatment and Event Tasks. For example, all Branch Managers could be members of the ‘Branch Managers’ Task Team and the team could be ...