Accessing Requirements
A requirement is a need or expectation explicitly expressed, imposed as a constraint to be met within the context of a project. This project can be a certification project or an organizational project or an information system project.Via a list
To access all requirements in the form of a list:
In the HOPEX IRM desktop, click Libraries > Regulatory Library > All Requirements.From the drop-down list you can select:
• All Requirements
• High Priority Requirements
By implementing controls
To view requirements implemented by Controls:
In the HOPEX IRM desktop, click Libraries > Regulatory Library > By Implementing Controls.Drop-down lists display:
• Requirements implemented by Controls
• Requirements not implemented by Controls
Number of constrained elements
To view requirements constraining the organization:
In the HOPEX IRM desktop, click Libraries > Regulation Library > By Constrained Elements.The list displays the number of elements to which the requirements apply (processes, entities, applications).
You can also display requirements not constraining the organization through the drop-down list.
By non-compliance risks
This list displays requirements showing non-compliance risks.
In the HOPEX IRM desktop , click Libraries > Regulation Library > By Non-Compliance.The following lists are displayed:
Requirements with non-compliance risks
Lists requirements linked to risks
Requirements with deficient controls
Lists requirements linked to implementing controls having open issues
Requirements with Unexecuted Controls
Lists requirements implemented by one or more controls with an execution rate below 90%.
By Incidents Against Constrained Elements
Lists requirements with constrained elements at Risk where incidents occurred.
The columns display:
• the number of incidents against the elements constrained by the requirement
This concerns open incidents.• the date of the last incident occurrence
• the number elements constrained by the requirement