Skip to main content

Controls Overview

Updated over 2 months ago

The Controls page in your compliance dashboard lets you view and manage all controls across your active frameworks. It provides tools for monitoring completion status, assigning owners, tracking evidence, and ensuring every control is tested and documented.

Main Page Components

  • Summary Panel – Shows overall completion percentage and a donut chart indicating how many controls are completed, need attention, or have no evidence.

  • Search & Filters – Use the search bar to find controls by name or ID. Filter by status (Completed, Needs Attention, No Evidence) and framework to narrow the list.

  • Controls Table – Lists each control with its ID, description, associated framework, owner (if assigned), and current status. Status indicators are color-coded.

  • Add Control Button – A green plus button at the bottom right for adding a new control (if enabled).

How to Use the Main Controls Page

  1. Review Overall Status – Check the summary panel to see how many controls are complete vs. need attention.

  2. Find Specific Controls – Use the search bar or filters to locate controls based on ID, name, status, or framework.

  3. Sort Columns – Click column headers (ID or Control Name) to sort the list.

  4. Open a Control – Click any control row to open its detail view. That view provides deeper context and allows you to manage tasks and evidence.

  5. Add a New Control – Click the plus button, fill in the required details, and save. New controls will appear in the list.

Individual Control View

Clicking on a control opens a detailed pane or modal where you can manage all aspects of that specific control. The example below uses the control “Physical security perimeters”

app.dsalta.com, but the layout is similar for any control.

Header and Overview

  • Control Name & Description – At the top you’ll see the control’s title with a brief description of its purpose (e.g., defining and implementing security perimeters to protect information assets).

  • ID and Source – Lists the control’s unique identifier (e.g., PES‑72) and its origin (e.g., DSALTA or external framework).

  • Owner – Shows who is responsible for the control. If no owner is assigned, you’ll see an “Assign Owner” button; use it to choose a person or group responsible for this control.

  • Frequency – Indicates how often the control needs to be reviewed or tested (e.g., Annual, Quarterly).

  • Risk Level – Describes the control’s importance or potential impact (e.g., Medium).

  • Results – Shows the current status such as Needs Attention, Completed, or No Evidence with a colored dot.

Actions in the Overview Section

  1. Assign or Change Owner – Click the “Assign Owner” button and select the person or group responsible for managing the control.

  2. Update Frequency or Risk Level – Depending on permissions, you may be able to edit these fields to reflect changes in risk assessment or audit requirements.

  3. Change Status – The status indicator will update automatically as you complete tasks (e.g., after uploading evidence or marking tests as passed). Some systems allow manual updates; if so, use the options provided.

Mapped Elements

Below the overview, you’ll see several expandable boxes labelled Policies, Documents, Tests, and Risk Scenarios

app.dsalta.com. Each represents a type of item linked to the control.

Policies

  • Shows policies that relate to this control and tracks how many are “OK” vs. total (e.g., 1/3 OK).

  • Each row lists a policy title with a status icon (green check for OK, yellow/orange for needs attention, grey for no evidence).

  • Add Policies – Click the plus button in the Policies header to search for and link additional policies.

Documents

  • Displays documents tied to the control (e.g., procedure manuals, audit evidence).

  • If no documents are found, the panel will state “No documents found.”

  • Add Documents – Use the plus button to upload or link relevant documents. This helps provide evidence that the control is in place.

Tests

  • Shows tests or assessments related to the control (e.g., periodic reviews or control verifications).

  • If no tests are found, it will say “No tests found.”

  • Add Tests – Click the plus button to schedule or add tests. You can define testing steps, assign testers, and record results here.

Risk Scenarios

  • Lists any risk scenarios connected to the control (e.g., potential threats addressed by the control).

  • If there are none, the panel shows “No risk scenarios found.”

  • Add Risk Scenarios – Use the plus button to link relevant risk scenarios, which helps contextualize why the control is important.

Mapped Frameworks (if available)

  • At the bottom of the modal, there is often a section for Mapped Frameworks where you can see which compliance frameworks this control supports and how it maps to them.

  • Adding or reviewing mappings ensures that one control can satisfy requirements across multiple frameworks.

How to Work with a Control

  1. Review Details – Read the description and check the risk level, owner, and frequency to understand expectations.

  2. Assign an Owner – Click “Assign Owner” to select the person responsible for the control’s upkeep.

  3. Link Policies, Documents, Tests, Risk Scenarios – Expand each section and click its plus button to add or associate relevant items.

  4. Upload Evidence – Under Documents or Tests, attach files or results that prove the control is functioning (e.g., security policy documents, test logs).

  5. Check Status Icons – Each mapped item shows a small icon indicating whether it meets requirements. Aim for all items to display a green check mark.

  6. Update or Close – When changes are complete, simply close the modal (usually via the “X” in the top right). The control’s status will update on the main controls page.

Related Articles
Control Owners
Control Details
Frameworks Overview
Policies Overview
Documents Overview
Did this answer your question?