Create bulk risk assessment

  • Release version: Australia
  • Updated March 12, 2026
  • 3 minutes to read

    • Create a bulk risk assessment project to perform assessments on multiple risks and controls simultaneously using the AI Risk and Compliance workspace. You can define the project context, including the assessable entity, Risk assessment methodology (RAM), project name, description, and identify and add stakeholders.

    Before you begin

    Role required: sn_risk_advanced.risk_asmt_project_user

    To create bulk risk assessment, you must install the Advanced Risk application.

    Procedure

    1. Navigate to All > AI Risk and Compliance Workspace.
    2. Select the list icon.
    3. Navigate to the AI asset inventory and open the AI asset record.
    4. To create a bulk risk assessment, you can use one of the following two methods:Choices to create bulk risk assessment from the AI asset record.
      • Select the AI assessment drop-down, and select Bulk risk assessment.
      • Navigate to Assessments > Bulk risk assessments and select New.
    5. On the Create bulk risk assessment dialog, fill in the fields.
      Table 1. Context
      Field Description
      Related entity Entity that needs to be assessed.
      Note:
      The Related entity field is grayed out, if only one related entity is associated with the AI asset.
      Risk assessment methodology (RAM) Risk assessment methodology (RAM) that you use to assess risks within the project. The default RAM is Risk assessment for AI inventory. You can create your own RAM and perform the bulk risk assessments.
    6. Select Create.
    7. In the Risk assessment project, do the following.
      1. In the Details section, fill in the fields.
        Table 2. Details
        Field Description
        Name Name of the risk assessment project. The name is automatically generated based on the selected assessable entity, followed by the current month and year, with a separator between them. You can modify the name if necessary.
        Description Description about the risk assessment project. It helps the assessors to understand the project in detail.
      2. Select Next.
      3. In the Stakeholders section, fill in the fields.
        Table 3. Stakeholders
        Field Description
        Owner Name of the project owner. This field is automatically set to the user who created the project, but you can modify it if needed.
        Assessor type User or group who is responsible for assessing the project. Choices are as follows:
        • Users: Option to select users responsible for assessing the project.
        • Group: Option to select group of users responsible for assessing the project.
        • Entity owner: Option to select the assessable entity owner as assessor.
        • Entity stakeholder: Option to select assessor from the assessable entity stakeholders list.
        Assessors User who is responsible for assessing the project. This field appears only when Users is selected from Assessor type.
        Assessor group Group that is responsible for assessing the risk. This field appears only when Group is selected from Assessor type.
        Assessors from entity Assessors from the assessable entity stakeholders list. This field appears only when Entity stakeholder is selected from Assessor type.
        Watchlist type Users or group who can view and receive notifications about the project. Choices are as follows:
        • Users: Option to select users who can view and receive notifications about the project.
        • Group: Option to select group of users who can view and receive notifications about the project.
        • Entity stakeholder: Option to select watchlist users from the assessable entity stakeholders list.
        Watchlist users Users who can view and receive notifications about the project. This field appears only when Users is selected from Watchlist type.
        Watchlist group Group who can view and receive notifications about the project. This field appears only when Group is selected from Watchlist type.
        Watchlist users from entity Watchlist users from the assessable entity stakeholders list. This field appears only when Entity stakeholder is selected from Watchlist type.
      4. Select Next.
        The project moves to the Scope risk stage and you can see a list of risks mapped from the assessable entities.
    8. To add risks in the Scope risk stage, you can do the following:
      1. Optional: To create risks from the risk statement, select Create from risk statements.
      2. Optional: To add a risk that is not in the library, select Create ad-hoc risk.
      3. Optional: To remove risks from the assessment without deleting them from the underlying entities, select the risks, and select Remove.
      4. Optional: To add any risks that have been removed, select Add risk.
    9. Select Next.
      The project moves to the Assess stage, and a notification goes to the assessor.