Initiate risk assessment on AI asset's risks

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Request risk assessments for risks identified during the AI system's impact assessment. These risks are generated based on the responses provided during the impact assessment of the AI system.

    Before you begin

    Role required: sn_grc_ai_gov.ai_risk_and_compliance_analyst

    Procedure

    1. Navigate to All > AI Risk and Compliance > AI Risk and Compliance Workspace.
    2. Select the list icon .
    3. From the List, open the AI asset for which you want to request risk assessments.
    4. Navigate to Risk and compliance posture > Risks.
    5. Select the required risks from the list.
    6. Select Assess risks.
    7. On the Request risk assessments dialog box, fill in the fields.
      Table 1. Request risk assessments form
      Field Description
      Assessment methodology Risk assessment methodology (RAM) that you use to assess risks. This is auto-populated based on the published risk RAMs.
      Assessor type Option to select a user or group responsible for assessing the risk. Options are as follows:
      • Same as AI system analyst: Option to select the AI system analyst as the assessor.
      • Specify user: Option to select a user responsible for assessing the risk.
      • Specify group: Option to select a group responsible for assessing the risk.
      Assessor Person or group responsible for assessing the risk.
      Note:
      This field is automatically set to AI system analyst's name, when Same as AI system analyst is selected from Assessor type.
      Approver type Option to select a user or group responsible for approving the risk assessment. Options are as follows:
      • Specify user: Option to select a user responsible for approving the risk assessment.
      • Specify group: Option to select a group responsible for approving the risk assessment.
      • None: Option to select if no specific user or group is assigned for approving the risk assessment.
      Approver Person or group responsible for approving the assessment.
      Note:
      This field is available only when Specify user or Specify group is selected from Approver type.
      Days to overdue Number of days within which the assessment should be completed after it’s initiated. For example, if you define a value of 10, the due date of the assessment is set to be 10 days after the date the assessment is initiated. The default value is 0.
    8. Select Request assessments.

    What to do next

    Perform advanced risk assessment in the Risk Workspace