Risk Workspace for the IT risk manager
Information technology or IT risk is any threat to your business data and critical systems. It is the risk associated with using and operating IT within an organization. An IT risk manager is the primary person responsible for establishing and maintaining the organization-wide IT risk management program.
IT risks vary in nature. It is important to be aware of all the different types of IT risks potentially affecting your business. An IT risk manager works with various stakeholders to confirm that IT risks are managed within the risk appetite of the organization. To facilitate risk assessments for IT risk managers, a preconfigured risk assessment methodology (RAM) is also provided by default. IT risk managers can use this RAM or make modifications to it according to their requirements.
| Activity | Task |
|---|---|
| Identify risks using a workflow. | Workflow for risk identification in the Risk Workspace. |
| Identify, assess, mitigate, and monitor all IT risks. | |
| Manage IT risk remediation actions and define the action plan. | Managing risk responses. |
| Communicate the IT risk posture. | Risk heatmap for classic risk assessment. |
| Define the key risk and control indicators. | Risk indicators, control indicators, and indicator templates |
| Create control test plans | Create a test plan in Risk Workspace |