Getting Started

Advanced setup and customization

title: Advanced setup and customization description: Customize your Tidal Control environment by creating controls, managing risks, and setting up manual tasks sidebar_position: 3

Advanced setup and customization

When to use advanced setup

This article is for users who need to customize their Tidal Control environment beyond the basic templates. Use these instructions when:

  • Starting without a template and need to build your compliance framework from scratch
  • Modifying existing templates to fit specific organizational requirements
  • Adding custom controls not covered in standard frameworks
  • Creating manual tasks for one-off compliance activities

Creating and managing controls

Adding new controls

Create controls that aren't included in standard frameworks:

  1. Go to Compliance → Controls
  2. Click "Add Control" in top right

Add control interface

  1. Fill in control details:
    • Title - Clear, descriptive name
    • Description - What the control achieves + specific test steps for your organization

Linking controls to frameworks

Connect custom controls to compliance frameworks:

  1. Go to Frameworks section
  2. Select target framework (ISO 27001, SOC 2, etc.)
  3. Click "Link Control" for relevant framework section

Link control to framework

  1. Map control to framework requirements - Select applicable clauses or requirements

For detailed framework management, see Frameworks getting started.

Control implementation tasks

Use Plans to automatically create tasks for new controls.

You can also add manual tasks:

  1. Open control details page
  2. Click "Add Task" in tasks section

Add task to control

  1. Configure task parameters:
    • Task type - Implementation, review, or testing
    • Assignee - Team member responsible
    • Due date - Implementation deadline
    • Priority - High, medium, or low

For comprehensive task management, see Creating and managing tasks.

Risk management and control mapping

Creating custom risks

Add risks specific to your organization:

  1. Go to Organisation → Risks
  2. Click "Add Risk" in top right

Add new risk

  1. Define risk parameters:
    • Name - Choose a clear, descriptive name for the risk
    • Custom ID - Your own reference number (e.g., "R.IT.01", "R.HR.03")
    • Assign owner - Select the responsible person from the dropdown
    • Description - Explain what this risk entails and why it's relevant

Linking controls to risks

Connect risks to mitigation controls:

  1. Open control details page
  2. Click on "Risks"
  3. Search or select relevant risks

For comprehensive risk management, see Creating and editing risks.

Creating tasks and automating with plans

Beyond standard control implementation, you often need specific one-off tasks. Think of audits, external assessments, or organizational changes that don't fit into regular compliance cycles. Tidal offers flexible options for both manual task creation and automated batch creation via plans.

Creating a task

  1. Go to the Tasks page via the main menu
  2. Click "Add task" in the top right of the overview
  3. The creation form opens where you can fill in task information Create new task

Filling in task information

Required fields:

  • Name - Choose a clear, descriptive name for the work
  • For example: "Conduct management review" or "Test backup procedure"
  • Task Type - Select Execution or Assessment

Optional but recommended fields:

  • Assign owner - Assign responsible person
  • Description - Extended context and instructions

Automatically creating tasks

  1. Go to Organisation → Plans

  2. Click "Add Plan" to create new plan Create new plan

  3. Configure plan settings:

    • Plan name - Descriptive identifier
    • Scope - Select specific assets or controls
    • Execution schedule - Set to next hour for immediate execution

  4. Set execution date:

    • Creation date - Set to next hour or another future date
    • Due date - Leave empty or set to a date after the creation date

Tidal automatically creates tasks when the execution time arrives. Monitor progress in the Tasks section.

Using one-off Plans for batch creation

You can also use the Plans functionality to create a one-off Plan that creates tasks in one go for a selection of controls and/or assets.

In this case, set the Creation date to next hour, and set the 'Valid to' date of the Plan to tomorrow. The Plan will then run once and deactivate itself afterwards.

For comprehensive plan management, see Creating and configuring plans.

Asset and policy integration

Connecting custom elements

Link your custom controls and risks to existing assets:

  1. Go to control or risk details
  2. Navigate to "Assets" tab
  3. Select relevant organizational assets - Systems, processes, or data that the control protects

For policy connections:

  • Controls link to policies via tests and evidence requirements
  • Use policy management to create supporting documentation

For detailed policy management, see Creating and editing policies.

Testing and validation

Ensure your custom setup works effectively:

  1. Test control implementations - Verify controls achieve intended outcomes
  2. Validate risk assessments - Confirm risk levels reflect actual organizational exposure
  3. Monitor task completion - Track progress on manual and generated tasks
  4. Review framework compliance - Check that custom controls meet framework requirements

For comprehensive testing approaches, see Executing and monitoring tests.

Next
Getting started with Frameworks