The Control Tower operating model includes the following Control Tower-specific asset types:
| Asset type | Description | Public ID |
|---|---|---|
| Managed Control | A control that is actively monitored and validated through automation to ensure ongoing compliance and effectiveness. | ManagedControl |
The following image shows the relations between the Managed Control asset type and other relevant asset types.
Description
A measure taken to mitigate a risk. Any process, policy, device, practice, or other conditions and/or actions which maintain and/or modify risk.
Relation types
| Relation type | Head role / corole tail | Public ID |
|---|---|---|
| enforces Policy | Managed Control enforces / is enforced Policy | ManagedControlEnforcesPolicy |
| mitigates Risk | Managed Control mitigates / in mitigated by Risk | ManagedControlMitigatesRisk |
Attribute types
Important Attribute types Failed Asset Count, Failed Since, and Invalid Query are system-managed fields. They are updated on each control run. Any manual edits are overwritten.
| Attribute type | Description | Public ID |
|---|---|---|
| Control Status | The current operational state or health of the control, either Pass or Fail. | ControlStatus |
| Control Type |
The nature or purpose of a control, based on how it manages risk or enforces policy. Possible values are: Preventative, Detective, Corrective, or Directive. |
ControlType |
| Description |
General description of the control. |
Description |
| Enabled | Indicates whether an item is enabled. | Enabled |
| Failed Asset Count | The number of assets that failed the most recent control run. | FailedAssetCount |
| Failed Since | The datetime from which the control has been failing. | FailedSince |
| Invalid Query | Indicates whether the query used to evaluate the control is invalid. | InvalidQuery |
| Resolution | The solution of how this issue can be or is resolved. | Resolution |
| Severity | Indicates the criticality or impact level. | Severity |
Domain type
Control assets can be created in domains of type Risk and Control Register.
Asset statuses
The asset statuses are the following:
- Development
- Candidate
- Accepted
- Archived
The statuses for this asset type are locked, meaning you can't add or remove statuses.