What is Mitigation?
The Mitigation allows you to mitigate certain risk violations that you want available to specific users or roles. This is done by creating and assigning a Mitigation Control.
Mitigation Control performs the following functions:
- Identifies the Segregation of Duties (SoD) as a known Risk.
- Establishes a period of time during which the Risk may exist (is monitored).
- Associates a list of Monitors with the Control. Only Monitors associated with a Control definition may be selected when mitigating a Risk.
Mitigation Controls can be assigned to Users, Roles, Profiles, or HR Objects to mitigate a Risk.