Cybervergent
Risk Assessment

Run a risk assessment

From the Risk Assessment tab, start a General Risk assessment, pick the risk domain and asset, add vulnerabilities and threats from the libraries, rate inherent likelihood and impact, and capture the risk context (owner, velocity, appetite, impact sub-categories).

Try it in Cybervergent
Run a risk assessment

Overview

Assess a risk in any domain (operational, financial, IT and cyber, compliance and regulatory, legal, strategic, reputational, ESG, supply chain, and more) against an asset, using vulnerability and threat analysis with inherent risk scoring.

Step-by-step

  1. 1 Open your risk program initiative and click the 'Risk Assessment' tab.
  2. 2 Click 'New Assessment', choose 'General Risk' in the 'New Risk Assessment' dialog, then click 'Continue'. (You can also use the quickstart to select the assets to assess and click 'Start Assessment'.)
  3. 3 On the Initiative step, set the 'Initiative Name' to the risk domain (for example Operational Risk, I.T / Cyber Risk, Strategic Risk) and add a description.
  4. 4 On the Asset step, choose the asset the risk applies to and enter the 'Risk Description'.
  5. 5 Add 'Vulnerabilities' and 'Threats', either generating them or importing from the library.
  6. 6 On 'Inherent Risk', select the likelihood and impact (Very Low, Low, Medium, High, Very High).
  7. 7 On 'Risk Context', set the risk owner, target remediation date, how quickly it could materialize, the risk appetite, the impact sub-categories (Financial, Operational, Reputational, Regulatory, Strategic, ESG, I.T / Cyber), the estimated financial impact, and notes.
  8. 8 Click 'Submit' to record the assessment. It appears in the Risk Register.
Try it in Cybervergent

Related articles

Risk Posture Read and manage your risk posture Find your risk posture, read the key risk score and KRI breaches, and drive it down over time. Program Setup Create a risk initiative Launch your risk program, the overall risk module, or its third-party (TPRM) submodule, depending on the framework you choose. Risk Register Work the risk register Track identified risks with their inherent and residual ratings and owners. Risk Register Explore a risk Drill into a single risk to see its profile, assessment, owners, treatment, and activity.