As with other “policy attestation” posts, we’re having issues with the current workaround methods being insufficient for auditors.
Last year, we used a survey training assignment where we asked users to type their name to confirm they attest to understanding and adhering to our IS policy and Acceptable Use Policy. However, a few users submitted garbage responses, and survey assignments (at least as far as I can tell) do not allow displaying a user’s specific response after the fact for evidence collection (the only option we have is to export a full list of all responses). Our auditors pushed back this year on having adequate evidence re: each employee’s attestation to policies, so I’m trying to make something else work for this year’s training.
I am looking for a way in which to use the email shortcodes in test and/or survey questions and test validation responses, so that I can display what the system has on record for each user re: their [first_name] [last_name] in the question, and then validate that they’ve typed a response that matches the system name dynamically by making the correct answer [first_name] [last_name].
Is anyone aware of a way in which to use shortcodes dynamically in questions and in test validation responses? I appreciate any insight you can provide (and also, if anyone is aware of a way in which to display the individual user’s survey response after submission, we could at least then use the “Impersonate” feature to capture the appropriate per-user evidence if a survey type is used). Thank you!
Best answer by alekwo
View original