Live Search spaceKey ZenGRCOnboardingGuide additional none placeholder Search our site type page
Overview
The Risk Heatmap provides a graphical display of the risks impacting your organization. It is fully customizable and can be filtered to display multiple types of risk.
| Note | ||
|---|---|---|
| ||
Risk items in ZenGRC have a different set of permissions than other objects. To review those permissions and how they impact user access, please see Role-Based Permissions for Risk. |
Accessing the Risk Heatmap
To access the Risk Heatmap, complete the following:
- Click Dashboard | Risk Heatmap.
- The Risk Heatmap home page displays.
Filtering the Heatmap View
The heatmap displays a color-coded matrix that is configured on the Heatmap Settings page. When a risk is identified and scored, it displays as adds to the a numerical value in the associated grid.
Several dropdowns allow users to narrow results displayed and are explained in the next sections. If you select options in more than one filter, the heatmap takes them all into account and only displays results matching all selections. If you're having issues locating a risk, deselect some of the filter items.
Filter by Risk Score
To filter the heatmap by risk score, complete the following steps:
- In the Select Risk Score section, select an option in the list. These selections are transferred from the setup in the Settings | Risk Settings | Scores tab and may be customized for your organization.
Filter by Mapped Object or Status
To filter the heatmap by mapped object, complete the following steps:
- In the Filter Risks by Mapped Object section, select an option in the first dropdown. The options only include objects that have a mapping to a risk. For example, in the below screenshot, the only objects that have mappings are controls, issues, policies, programs, tasks and vendors. You may have more or fewer depending on the maturity of your program.
- Once a selection is made, the page refreshes with the number of risk items populating each cube.
- You can further refine results by clicking the next dropdown box and selecting a specific item to review its risk rating.
If there are more than one risk attached to the option selected, they will all display in the heatmap.
- To view the risks associated with any cube in the quadrant, click the cube.
- The page refreshes with the selected cube highlighted and its risks displayed at page bottom or to the right of the matrix depending on your resolution.
- Click a risk in the Title column to open the Risk Details page.
Filtering Risks by Status
To filter the heatmap by status, complete the following steps:
- In the Filter Risks by Status section, select an option in the first dropdown. The options only include statuses currently assigned to risks, not all statuses available. For example, in the below screenshot, the only statuses currently being used in use this application are Draft and Closed.
.
Setting the X and Y Axes
The number of boxes in the heatmap grid and all calculations are determined by selections in the X-Axis and Y-Axis dropdowns. These are created on the Risk Settings page in the Scores tab using calculations of factors, vectors, and even other scores.
Using the Threshold Slider
Directly above the heatmap, the threshold slider can be manipulated to provide a quick view into how risk objects fit into different ranges. Each area bubble, with the exception of the one at far right, can be moved to temporarily recalculate scores.
For example, the bubble between the risk calculation of High and Very High can be moved to see at what point those rated High would be designated as Very High.
The result shows when those calculated as a High risk are pushed into the next level.