Skip to main content

Step 1: Add a Risk

Adding a risk is the first step in identifying and addressing potential threats or vulnerabilities within your organisation. This section outlines the process for creating and managing risks effectively.

Steps to add a risk

To Add a Risk, Follow These Steps:

  • Navigate to the “Risk Assessment” tab within the Risk demand section

  • Next, you must click on the blue button labeled '+ Add a Risk' located on the right side of the interface.

    Add_a_risk-3.png

The RSK_ID will be automatically generated for the new risk entry.

Once the risk is added, you can begin analysing the identified risk based on the provided details.


Risk options overview

For each risk that has been added, the following options are available:

  • Add a Comment: Facilitate discussions and collaboration with stakeholders.
  • Add Evidence: Attach supporting documents or proof to validate the risk assessment.
  • Delete Risk: Remove risks that are no longer relevant or valid.
  • Assign Owners: Designate responsibility for managing and mitigating the risk.

These options ensure that risks are not only identified but also actively managed, tracked, and documented throughout their lifecycle. This structured approach provides transparency, accountability, and a clear path for ongoing risk assessment and mitigation efforts.


Risk reference added in the Demand diagram summary

Once created, the Risk (RSK) is automatically referenced in the Demand Diagram Summary.

This ensures that risks are visually represented and easily traceable within the overall risk demand workflow. Example:

Demand_diagram_risk_relation-2.png


Risk reference added in the Risk Remediation Plan registry

As soon as a Risk is created, it is also added to the Risk Registry. This registry serves as a centralised database for tracking all identified risks, ensuring:

  • Visibility: Easy access to all risks.
  • Accountability: Clear ownership and up-to-date status information.
  • Traceability: A structured record of risk details, including status updates, ownership, and key decision points throughout the risk management lifecycle.

Further details on the Risk Registry will be covered in the Risk register module section.