Ibm-openpages Placement Papers - Ibm-openpages Interview Questions and Answers
Q1. Explain About Openpages Policy And Compliance Management ?
OpenPages Policy and Compliance Management allows you to consolidate policy and compliance management, as well as manipulate regulatory exchange and regulator interaction. This software enables lessen the complexity and fee of complying with enterprise, ethics, privacy, and government regulatory mandates.
OpenPages Policy and Compliance Management can be used to automate the coverage control lifecycle to help you to reap compliance, mitigate dangers, and adhere to company regulations and strategies.
Key functions consist of:
Integrated answer for managing policy and regulatory compliance
Compliance evaluation on the business unit, process, or nearby stage.
Regulatory alternate control to tune regulatory alerts and proactively speak to help force the trade control process
Flexible incorporated coverage management that helps full lifecycle of guidelines that include the Microsoft Word import capability for report-centric-policy, editing workflows
Support for the regulatory certification and audit process that consists of regulatory management
Business advantages include the capability to:
Standardize compliance throughout regulatory requirements to help reduce value and deliver a holistic information of all compliance risk.
Help guarantee compliance is accomplished. Risks are mitigated. Corporate regulations and strategies are enforced.
Deliver programmatic, regulatory alternate management and steady regulator control.
Q2. Explain About Openpages Internal Audit Management?
OpenPages Internal Audit Management : Helps to automate internal auditing procedures and provides new efficiencies and standardization to the assessment of threat and compliance performance, which might be designed to enhance the efficiency and effectiveness of internal audit approaches, while it enables you preserve independence and objectivity.
OpenPages Internal Audit Management permits auditors to automate and manage inner audits, and conduct broader danger and compliance management activities.
Key capabilities include:
Audit making plans
Allows you to automate regularly performed calculations and evaluation metrics.
Facilitates advent and protection of audit scope and targets, useful resource scheduling and allocation, and the audit paintings application.
Promotes definition of the expected scope, risk assessment, techniques and agenda for every audit.
Can be configured to assist many audit methodologies.
Workpaper management
Designed to streamline overview and approval procedures to drive down expenses and growth efficiency.
Facilitates collaborative workpaper authoring and management, designed to result in better quality and consistency
Time and expense reporting
Helps you control audit applications, and identifies opportunities for development.
Enables insight into operational effectiveness, and promotes fieldwork efficiency.
Audit report and wrap up that lets in you to:
Automate audit close techniques.
Deliver competencies to facilitate the reporting and escalation of problems and findings.
Q3. Explain About Users, Groups, And Domains?
Users and companies are prepared beneath the following top-level groups:
Entity Group icon Security Domains - this institution is a field for the safety area businesses that are automatically created by means of the system whilst a enterprise entity or sub-entity is delivered. You can use protection domain names to distribute your users and organizational corporations so they may be administered through delegated administrators. For an overview of protection domains, see Security domains.
Group icon Workflow, Reporting and Others - this institution is a box for organizational businesses which might be used system-wide. Administrators frequently create organizational organizations to arrange users and different corporations. You can outline all of your customers and corporations beneath the Workflow, Reporting and Others institution, and later associate them to different protection domain names. For improve clients, this top-stage organization also includes the businesses that existed in previous releases of OpenPages GRC Platform.
To create and administer users and companies, you should have administrative privileges. For facts approximately delegating and assigning administrator permissions, see The Super Administrator.
When a consumer or organization is disassociated from an organizational or protection area group, and that user or organization isn't a direct or oblique member of every other institution, the system makes that user or group a member of a unique institution called Standalone Users and Groups. Only the Super Administrator has administrative get entry to to this institution.
Accessing customers, companies, and domains
Rules for person names and passwords
The Super Administrator
Delegate administrator permissions
Creating user debts
Associating users with a group
Disassociating customers from a group
Modifying consumer debts
Disabling and enabling consumer money owed
Creating an organizational organization
Associating and disassociating a set
Defining application permissions
Group application permissions
Application permissions
Application permissions no longer contained underneath the SOX heading
Configure password necessities
Q4. Explain Openpages Regulatory Compliance Management?
OpenPages Regulatory Compliance Management : OpenPages Regulatory Compliance Management permits companies to break down regulations into necessities, evaluate its impact to the business, and create actionable tasks.
Key features consist of the ability to:
Define regulatory scope.
Create a library of regulatory regions that effect the organisation.
Benchmark purchaser controls towards regulatory requirements.
Enable customers to evaluate controls based on running and layout effectiveness.
Focus on critical regulatory compliance troubles and examine impact of new rules via visualization.
Q5. Explain About Business Process Visualizations?
By visualizing the enterprise manner, which could encompass the subproceses, activites, risks, and controls, you could sped the hazard management proces and records evaluation.Some of the visualizations that you can advert on your proceses are Busines Entiy Organization charts and proces diagrams.
The busines proces visualizations offer customers with the folowing blessings:
Navigation
Users can cross from the proces go with the flow to the info web page of the GRC item or
to the Activity View in OpenPages GRC Platform.
Representation
Data is displayed graphicaly for easier interpretation and evaluation.
Context
To recognize the context wherein fashions are proven, suporting records is provided.
Q6. Explain About Openpages Model Risk Governance?
OpenPages Model Risk Governance : OpenPages Model Risk Governance allows banks and economic establishments deal with this chance that arises from the inaccuracy or misuse of models. Featuring dynamic dashboards for clear, concise reporting, this customizable platform allows corporations to create and hold a complete version stock for greater collaboration and regulatory compliance throughout more than one regions and geographies.
Enabling companies to illustrate strong controls throughout the model lifecycle, IBM Enterprise Model Risk Governance provides control with the reporting, gear and choice aid necessary to assist ensure model data fine, regulatory compliance and usual economic danger governance.
Key features include the potential to:
Support version risk regulatory compliance.
Create and keep a complete model stock.
Help file and music issues and metrics related to fashions.
Provide dynamic dashboards for reporting on version inventory control.
Assign appropriate roles and duties for version possession.
Enhance normal monetary chance governance.
Q7. Explain About The Super Administrator?
The Super Administrator (distinct all through the deploy or improve procedure) is a consumer who has complete get entry to to all gadgets, folders, Role Templates, and companies inside the machine.
In a brand new set up, the Super Administrator is the simplest user within the device. In an upgrade set up, you can input a brand new user or choose one of the current users (such as SOXAdministrator or OpenPagesAdministrator) as a Super Administrator at some stage in the improve procedure.
A Super Administrator can create users, businesses, other machine administrators, and assign roles. A Super Administrator can decentralize and delegate administration activities via assigning roles to users via the use of Role Templates (for more records see Role templates) and institution administrator permissions (for more facts, see Delegate administrator permissions).
A Super Administrator also can assign an administrator to a safety area or organizational group without making the administrator a member of that organization.
Some examples of the varieties of directors a Super Administrator could create are:
A Regional or Group Administrator - this will be a user with at least one safety control permission assigned to carry out administrative sports for a security area or organizational institution.
A Delegated Administrator - this will be a collection administrator with positive security control permissions who could, in turn, assign new directors to the equal institution or to any of the kid businesses, granting them the equal protection control permissions.
Decentralized Administrators - every institution (protection area or organizational) could have an administrator who would have one or more directors chargeable for growing and associating customers to that organization as well as for allow/disable, lock/liberate, assign roles and reset password operations. A decentralized administrator might be able to perform these operations on all toddler organizations related to their institution but no longer on other companies inside the gadget.
If you exchange the logon person name and/or password of the Super Administrator account after installation (using the utility interface), you need to manually make corresponding changes to the Cognos Framework Generator belongings document so the reporting framework will update nicely.
Q8. What Are The Rules For User Names And Passwords?
When you create consumer names and passwords, sure guidelines practice.
User names are case sensitive. For instance, MyName and myname would be two precise customers.
User names can be up to 256 characters.
User names can incorporate alphanumeric characters and any of the following unique characters:
@ - ! . _ / : * " # % ? < >
Passwords can incorporate up to 32 characters.
Passwords can't include spaces.
Q9. What Are The Types Of Visualizations?
Built-in visualizations are provided as a starting point for designing new method diagrams or viewing the organizational chart for a Business Entity.
By default, the subsequent visualization templates are established on all IBM® OpenPages® GRC Platform systems:
Business Process Flow visualization
Business Entity Organizational Charts
Business process waft visualization :
Risk specialists can use the method flow visualization to make sure that the documented go with the flow correctly reflects the business manner and its sub-approaches, facts inputs and outputs, risks and controls. Users can also replace in actual time to reflect any adjustments.
A process float visualization is a child item of the Process. You can use the following foremost elements to build your procedure glide diagram.
Process Object : Process object types represent the fundamental end-to-stop business sports within a commercial enterprise entity which might be situation to hazard. Process objects are usually used in areas inclusive of economic reporting, compliance, and statistics protection. Depending on the diagram, the procedure object isn't explicitly shown; however, it exists to offer context.
Subprocesses (or Activities) : A Subprocess object kind is a part of a Process item. It is used to break down methods into smaller granular units for assessment functions.
Risks : Risk item kinds constitute capability liabilities. Risk gadgets can be related to, as an example, enterprise strategies, enterprise entities, or compliance with a selected mandate. Each Risk object has one or extra Control gadgets which might be related to it that offer safeguards in opposition to the danger and assist mitigate any outcomes that might end result from the risk.
The process waft is visually most efficient while risks for every manner are fewer than 5.
Controls : Control object types usually constitute guidelines and procedures to assist make sure that threat mitigation responses are accomplished. After you perceive the dangers for your practices, you may then establish controls (together with approvals, authorizations, and verifications) that get rid of, restrict, or trfer these capability dangers.
A method float is visually ultimate when you have one to two Controls in line with Risk.
Data Input and Data Output objects : Data Input items and Data Output items are baby gadgets of the Process and may have institutions most effective to existing Risks. They represent factors of a flow to depict an Input into the Business Flow or an Output from various sports inside a technique, together with running a record or updating a CRM gadget or getting an external information supply feed.
The waft of the technique is represented by way of connectors that hyperlink the activities, inputs and outputs, and decision-branching points. You can specify labels for the choice connections.
All elements and relationships of the Business Process visualizations are stored as facts within the OpenPages GRC Platform repository on the OpenPages GRC Platform server. The detail sorts are proven or hidden within the Application Object Views which can be based totally on Profiles. You may have multiple diagrams according to technique. For example, some diagrams can be at extraordinary degrees of the method, which includes the ones diagrams which might be posted or are being revised or accredited.
Business Entity enterprise charts :
The Hierarchy diagram affords contextual and combination views of the Business Entity information version. The organizational shape of a business enterprise is captured as Business Entity objects inside the OpenPages GRC Platform GRC repository, which can be visualized as an organizational chart.
This type of structure is useful for infrequent users who ought to recognize the complex version fast and who've enterprise entities with risk assessments. Color codes imply the fame that is based on aggregation.
Q10. Explain About Openpages Operational Risk Management?
OpenPages Operational Risk Management : Helps to automate the system of identifying, measuring, and monitoring operational chance. It combines all danger data, which incorporates danger and manage self assessments, loss occasions, situation analysis, outside losses, and key danger indicators, into a unmarried incorporated module.
Key capabilities include:
Risk and manipulate self exams, which include the subsequent sports:
Identification, measurement, and mitigation of dangers
Testing and documentation of inner controls
Loss events, which encompass the following activities:
Tracking, assessing, and managing both inner and outside events that could result in operational loss
Managing multiple impact events and recoveries which are related to operational losses
External loss activities that offer the capacity to import loss records from IBM Algo®, ORX, and ORIC loss databases into OpenPages Operational Risk Management for scenario evaluation, benchmarking, and reviews era. You also can export loss information to analytic equipment or capital allocation packages.
Key chance signs, which could tune overall performance metrics to probably display the presence or kingdom of a threat circumstance or fashion.
Scenario analysis, that is an assessment technique that is used to become aware of and measure specific forms of dangers, in particular, low-frequency, excessive-severity activities.
Reporting, monitoring, and analytics.
Ability to get admission to integrated capital modeling skills.
Q11. How To Create A Organizational Group?
To make it easy to find a selected person with out surfing via a couple of companies and subgroups, you could create a group named Everyone (you could use different name) as a sub-group of the Workflow, Reporting and Others group.
This is useful because typically you create customers within the context of a set, after which upload them to more than one companies immediately. This me that in an effort to locate an existing user, you want to know a collection to which the person belongs. To assist this method, follow the subsequent tips.
As you create your list of customers, upload them directly to the Everyone organization, as well as to the purposeful corporations that the users want to belong to. In this manner, to discover a selected consumer quickly, you could open the Everyone organization and choose the person immediately.
If you want to disclaim a person get entry to to the software through eliminating him or her from all corporations, you need to get rid of the user from the Everyone organization as nicely.
Users with the proper permissions can create organizations the use of the User/Group interface. Groups can include other groups and customers, and inherit utility permissions from the agencies that they belong to.
Procedure :
Select the Administration menu and click on Users, Groups and Domains.
Expand the listing and click the call of the institution to which the brand new organization will belong. If there's no better-degree group for the new organization, choose the root Security Domains or Workflow, Reporting and Others group.
On the detail web page of the chosen institution, navigate to the Groups tab and click Add New.
Fill within the required facts for the brand new institution and click Create. The determine group's detail web page is displayed with the new group indexed inside the Sub-Groups section.
Click the call of the new group to view the element page if you want to feature users to the institution or regulate the organization permissions.
Q12. Explain Delegate Administrator Permissions?
Delegate administrator permissions : By assigning specific security control permissions to an administrator's user account, you could delegate diverse protection management sports to that administrator. For example, you can installation an administrator for a protection domain organization (consisting of a local or nearby workplace) who would most effective have the capacity to reset passwords for that organization.
If there are toddler groups under a parent institution, the administrator can delegate an administrator for each toddler group as well.
Administrators do not need to be contributors of corporations for which they perform administrative responsibilities. By default, simplest the Super Administrator has Read and Write access to objects inside the gadget. Delegating management responsibilities to a user on a safety area, does no longer robotically supply Read and Write get admission to to gadgets under the corresponding entity.
You can simplest assign those permissions that you need to other administrators.
If you disassociate an administrator from a safety domain or organizational organization, all person management privileges (along with manipulate customers, lock/unlock customers, reset passwords, enable/disable customers, assign roles) are retained via that administrator and are not revoked.
Example
You want to designate Mary Smith as an administrator who can reset passwords for any users inside the Boston Sales Office. You could navigate to the Boston Sales Office entity organization element web page and assign the Reset Password permission to Mary Smith’s user account.
If there are multiple baby companies underneath the Boston Sales Office entity institution, Mary Smith may want to delegate an administrator for each baby institution. She would simplest be able to assign the Reset Password permission to another administrator.
Q13. Define Trigger?
A cause is a bit of code that can be delivered earlier than or after the execution of an operation is achieved on the OpenPages platform. This piece of code can perform whatever this is written in Java.
A trigger includes the following components:
A rule - this is a situation that applies to the operation being carried out and the parameters worried within the operation. For instance,
The operation being performed
Type of object
Condition on a assets of the item(s) in context
One or extra event handlers - an event handler is completed if the cutting-edge operation satisfies the rule of thumb described for the cause. These moves can carry out any business logic. For example,
Throw a validation blunders.
Create a brand new object.
Delete an current item.
Reset or modify residences of an object.
Modify properties of a associated item.
Execute a report or program.
Kick off a workflow.
Q14. How To Associate Users With A Group?
Associating users with a set : If a new user simplest belongs to an "Everyone" or "All_Users" group, you need to provide the user get admission to to the proper commercial enterprise entity or entities.
You do this by using associating customers to the security area organization that corresponds to the commercial enterprise entity for which they need get entry to. For statistics about protection domains, see Security domain names.
Procedure :
Select the Administration menu and click Users, Groups and Domains.
Navigate to the organization to that you want to accomplice an present person.
From the list of organizations, click the name of the organization you want.
On the element page of the chosen institution, at the Users tab, click the Associate icon.
On the Associate Users with Group web page, choose the test container next to each user account you need to companion, and click on Associate.
To assign access manipulate permissions to a person, see Assigning a position to a consumer or institution.
Q15. Explain About Openpages It Governance?
OpenPages IT Governance : Helps to align IT operations control with company business tasks, strategy, and regulatory requirements. This software program lets in you to sustain compliance throughout quality-practice frameworks and rules whilst coping with inner IT control and hazard consistent with the business procedures they assist.
OpenPages IT Governance helps you to construct a sustainable risk and compliance technique to address touchy records, management of era property and regulatory requirements. Key features encompass:
IT Regulatory and Policy Compliance
IT Asset Assessment
IT Incident Management
Out of the field connection to QRadar®
Risk and control exams
Control checking out and difficulty remediation
IT aid control
Incident tracking
Key performance and key risk indicators
Reporting, tracking, and analytics
Q16. What Are The Capabilities Of Openpages?
OpenPages GRC Platform V7.2 abilties consist of: Central platform for incorporated reporting, workflow, and rules Patented, adaptable framework that enables clean configuration Interactive dashboards and advert hoc reviews for choice assist Powerful workflow for automating commercial enterprise strategies
Q17. How To Enable And Disable System Administration Mode?
Enabling and disabling System Administration Mode : You need to have the System Administration Mode utility permission set in your account to view the System Administration Mode link and the System Administration Mode menu object from the Administration menu.
Settings for System Administration Mode :
If Link... If icon... Use to...
Enabled Enable enter System Administration Mode
Disabled Disable exit and terminate System Administration Mode
The hyperlink switches between Enabled and Disabled, and the icon switches between Enable and Disable relying on which mode it's miles in.
If the machine is processing operations that require System Administration Mode, you may must wait until processing is whole before you can disable System Admin Mode.
Procedure :
Log on to the IBM->OpenPages->GRC Platform user interface as a consumer with the System Administration Mode permissions.
Do one of the following:
Click the System Administration Mode Enabled or Disabled link.
From the menu bar, pick Administration and click System Administration Mode and click on Enable or Disable.
Q18. How To Create User Account?
Creating consumer debts : When growing a new consumer in IBM® OpenPages® GRC Platform, you need to first choose the organization to which the user will belong. Then, enter data about the user and person account.
If you have not created the perfect institution for the new user, you can upload the consumer to the pinnacle-level Security Domains institution or Workflow, Reporting and Others group. In addition, you could create an "Everyone" or "All_Users" organization under the pinnacle-level Workflow, Reporting and Others institution and upload all the customers to this institution. At a later time, you can then partner those customers to the desired security domains. In this manner, there is one group that lists all users. See Creating an organizational organization for information.
If a consumer is responsible for including, editing, or disposing of folder-based get right of entry to control (ACLs) using the Custom Security menu alternative at the Administration menu, the user ought to be related to a group that has Access Control Lists software permission.
Procedure
Select Administration from the menu and click on Users, Groups and Domains.
Expand the listing of organizations and click the name of the institution to display the element page.
On the Users tab, click on Add New.
Enter the necessary information for the brand new person account. It is first-rate exercise to encompass the first call and surname when you create a person.
To assign a profile to the user, pick the profile cost from the Profile discipline.
Select the Password by no means expires password behavior. If you select a distinct option, an Admin user ought to change the password while it expires.
Click Create.
What to do subsequent :
If the brand new consumer account changed into created under an "Everyone" or "All_Users" group, visit Associating customers with a collection to provide the person get admission to to a enterprise entity.
If the new user account become created below a safety area group that corresponds to a particular commercial enterprise entity, go to Assigning a role to a consumer or institution to assign the user access manage permissions.
Q19. Explain Openpages Capital Modeling?
OpenPages Capital Modeling : OpenPages Operational Risk Capital Modeling software is an included tool that gives a set of gear to research, simulate, and quantify operational risk capital by using the use of a selection of techniques.
The device gives 3 different procedures to calculate operational hazard capital, the Basic Indicator Approach (BIA), the Standardized Approach (TSA), and also the Advanced Measurement Approach, which presents an actuarial-based, bottom-up method for aggregating loss calculations by growing first-rate-match frequency and severity estimates. The application can estimate capital by using multiple data sources, which consist of internal loss records, external loss records, and based situation records. It also offers advanced modeling functions, along with copula based totally correlation.
The software is likewise integrated with the OpenPages Operational Risk Management module, which permits you to concurrently acquire, model, and document on operational risk statistics and capital. You can observe the robust OpenPages platform framework to capital models, which include position primarily based safety and audit trail and create pass-practical, capital modeling reviews through the usage of IBM Cognos®. By presenting a one prevent store for operational danger management and dimension, OpenPages Operational Risk Capital Modeling application lets in you to appropriately degree and mitigate your operational chance.
Key characteristic encompass:
Integration with OpenPages Operational Risk Management module
Monte Carlo simulation engine to calculate capital at a couple of confidence c programming language levels
Simulation of distributions for internal loss information, outside loss information and state of affairs facts by the usage of IBM SPSS® Statistics
Enhanced loss facts analysis
Numerous frequency and severity distribution selections
Copula-primarily based correlation
Fully incorporated curve fitting device
Audit path
Cross useful reporting
Q20. Explain About Openpages?
OpenPages GRC Platform V7.2 is an included governance, threat, and compliance platform that enables agencies to manipulate danger and regulatory demanding situations throughout the agency. It affords a fixed of center services and functional additives that span hazard and compliance domain names, which include operational hazard, policy and compliance, financial controls management, IT governance, and inner audit.
Q21. What Are The Characteristics Of A Trigger?
Triggers have the subsequent traits:
Are only to be had for precise platform operations.
Triggers ought to be written in Java.
Can invoke any application or module that can be known as from Java.
Can be used with all functionality that is supported via the OpenPages GRC Platform API.
Have get right of entry to to the modern-day consumer’s OpenPages consultation.
Are carried out inside the present traction boundary of the authentic operation.
Can be configured to execute earlier than or after the unique operation execution.
When a person performs an operation that could have triggers, the framework determines which triggers are relevant and invokes them.
Q22. Explain Openpages Financial Controls Management?
OpenPages Financial Controls Management :
OpenPages Financial Controls Management combines powerful report and method control with rich, interactive reporting abilties in a flexible, adaptable, smooth-to-use environment. They enable CEOs, CFOs, managers, independent auditors, and audit committees to carry out all the necessary sports for complying with Sarbanes-Oxley and comparable monetary reporting rules in a simple and green manner.
OpenPages Financial Controls Management provides trparency into the country of monetary controls and helps ensure that compliance needs are addressed.
Key features consist of:
Single facts repository
Business intelligence and decision guide
Risk and compliance automation
Configurable and interoperable with other systems
Q23. What Are The New Features Included In Openpages?
OpenPages GRC Platform improves universal usability and efficiency with a new set of features which are designed to boom average productivity and agency-huge security. This launch also introduces a model chance governance and regulatory compliance control functionality. New capabilities consist of:
Questionnaire-primarily based assessment applications that permit you to have interaction with subject depend experts throughout the business enterprise.
Easily on hand single purpose programs which can be targeted on rare users. Updated OpenPages API, the most comprehensive set of APIs, that enable clients to increase and extra effortlessly adapt the functionality in their present answers.
Improved usability for customers by using building new competencies and improving existing abilities inside the utility.
Global go-item seek functionality.
Technical basis upgrades.
Integrated Model Risk Governance and regulatory compliance management capability.
Q24. By Using Visualizations,what Goals Can Users Can Achieve?
By using visualizations, customers can attain the folowing desires:
Proactively ases dangers that afect he business enterprise.
Analyze materialized risks, such as loses or violations.
Identify and tune actions in response to dangers.
Identify issues or trouble regions.
Conduct a danger and manipulate self-asesment o identify mising dangers.
Determine whether the enterprise has the necesary controls at the dangers, and examine those controls.
Capture modifications to laws and rules, and provide visibilty into policies, incidences, and isues, and ultimately offer the fame of regulatory compliance.
Report on the facts.
Q25. What Are The Requirements To Configure Password
IBM® OpenPages® GRC Platform helps using strong passwords (passwords that consist of letters, numbers, and symbols).
It additionally lets in directors to put in force obligatory password changes and other password conduct.
Configuring password rules : The IBM OpenPages GRC Platform permits directors who can get entry to the Settings administrative section to adjust the password rules for the utility.
Configuring password encryption : You can adjust the encryption algorithm, and trade the key this is utilized by the encryption algorithm to encrypt passwords in IBM OpenPages GRC Platform.
Modify password encryption : To alter password encryption, you use the Update Password Encryption Algorithm (UPEA) device.
Using the UPEA device : The UPEA tool defines the parameters of the password encryption algorithm.