Run your risk management program
Stand up your risk program, assess risks across your domains, maintain the register with owners, treat risks to a residual position, and track key risk indicators.
Try it in CybervergentOverview
Operate risk across your organization end to end: assess, register, treat, and monitor.
Step-by-step
- 1 Create a risk initiative with a risk framework so the program covers risk types such as operational, IT, cyber, and strategic.
- 2 On the 'Risk Assessment' tab, run assessments across your risk domains, rating inherent likelihood and impact and capturing the risk context.
- 3 Maintain the 'Risk Register' with an accountable owner on every risk.
- 4 Treat each material risk: choose a strategy (Avoid, Reduce, Control, Accept, Transfer), apply controls, and assess the residual risk.
- 5 On the 'Risk Indicator' tab, add KRIs with targets and tolerances to monitor risk between assessments.
- 6 Use the Dashboard and the Risk Observer, Cyber Risk, and Enterprise Risk tabs to review risk by domain, and report it to leadership in Executive Overview.
Related articles
Risk Program Reduce your risk exposure Drive material risks down from inherent to an acceptable residual level. Posture Management Manage your risk posture Establish, measure, and reduce your risk posture across the organization. Third-Party Program Stand up a third-party risk program Build a tiered, owned third-party risk program from framework to live register. Third-Party Program Onboard and tier your vendors Bring the vendor population into the register and classify it by criticality and tier.