...
Section 1 - meta information
...
Title
The system copies the title from the risk itself - can be changed if desired
Description
If desired, the evaluation can be described here in more detail: why, change, situation, project, is it a periodical evaluation, etc.
Next evaluation
The system automatically sets the next evaluation to one year in the future. Can be changed during evaluation.
Owner
The person who owns the risk is automatically entered here - can be changed.
Deputies
Here, those who are proxies in the risk itself are copied in - can be edited
Participants
Here, the participants from the risk itself are copied in - can be edited
Section 2 - Associated with
...
Here, when creating a NEW evaluation, you can choose to copy relevant data tagged to the risk itself. All can be changed if necessary. It is recommended NOT to change any attachments during RE evaluation because then the "outcome" will change. In these cases, it is often best to create a NEW evaluation with a different combination for the outcome in question. Feel free to use Title/Description to clarify whether there are different outcomes for the same risk.
Vulnerabilities
This field is a plain text field used to describe vulnerability(s) - often in connection with information security risks
Project
Project is copied from the risk itself and is locked for change
Section 3 - choice
...
In this section you make choices that have these explanations
Significant
There can be various reasons for ticking off that an evaluation is significant. It could be, for example, that the risk:
is triggered by a legal requirement
is triggered by a high-level policy
for one reason or another is business-critical in terms of, for example, production, delivery of raw materials, implementation of projects, etc
Evaluations that are significant can be filtered out in the Analysis Dashboard.
Evaluate opportunities
By ticking this off, you will also see the positive consequence axis for those who have this and you can make a positive choice. In the standard setup, this applies, among other things, to:
quality
environment
health and safety
information security
it is possible to use the Risk matrix builder under the "System tools" menu to define which consequence categories should have this option.
Set target
This choice makes an additional matrix set visible for each axis of consequence and for probability so that you can define a desired situation for the risk evaluation, or "target risk" as some also call it. This makes it easier to see when you can accept residual risk.
Environmental aspect evaluation
If this evaluation concerns an environmental aspect (not environmental risk), this is selected. If the risk is ticked, the evaluation will automatically inherit the selection.
This means that these can be separated in the Analysis tool.
Remember then that Probability then has the meaning "Amount".
Overview of the evaluations
Use the Home page in the risk module to quickly view my or my unit's risk/ratings.
In the process map, the assessments will be made visible.
Analysis Dashboard provides an overview of the entire organisation's risk assessments, you can view/filter all the organisation's risk assessments per:
Company, department, process, type, group.
A given snapshot at the desired time.
Can filter and display only project risks.
Click on the number in a matrix to display details of the risks in the table to the right.
Switch to ID to find your risk assessment more easily.
Graph of the risk assessments over time - see if the risk picture has changed over time, see the impact of implemented measures.