On which records is the entity a required field?

The entity being a required field specifically relates to Control records in ServiceNow's Risk and Compliance module because controls are essential elements that help manage and mitigate risks. In the context of regulatory compliance and risk management, controls are practical measures put in place to achieve risk treatment objectives.

When documenting controls, it's necessary to include information about the associated entity, as it provides clarity on the context in which the controls are operating. By linking controls to specific entities, organizations can better understand how each control fits into their broader risk management framework. This association allows for effective reporting, tracking, and evaluation of the adequacy and effectiveness of controls in place.

While Policies, Risk Statements, and Issues also have their own unique fields and requirements, the emphasis on controls typically highlights the necessity of defining the operational scope through the entity field. Therefore, in the context of ServiceNow's system for managing risk and compliance, the identification of the entity is critical for control records to ensure clarity and proper alignment with risk management strategies.