Benefits
One of the primary purposes for a risk heatmap (RHM) is to allow customers to document, track, and manage risk. It allows users to visualize the ranking of risk objects in relation to each other. Each risk object drives visualization with the following elements:
Measure of Impact (how damaging a risk could be to the business).
Measure of Likelihood (what is the chance this risk could happen).
Risk Score = Impact x Likelihood.
Risk heatmaps are especially valuable for executive level customers, as they can be used by decision makers to identify areas of the business where additional resources may be necessary (e.g. a software product with a high number of vulnerabilities or a business process that has unmitigated risks).
IMPORTANT
Risk items in ZenGRC have a different set of permissions than other objects. To review those permissions and how they impact user access, please see Role-Based Permissions for Risk.
Overview
The ZenGRC Risk Heatmap provides the following:
- At-a-glance perspective into the risks impacting the organization.
- Immediate access to the individual risks.
- Ability to customize the heatmaps using your organization's metrics.
Accessing the Risk Heatmap
To access the Risk Heatmap, complete the following:
- Click Dashboard | Risk Heatmap.
- The Risk Heatmap home page displays.
NOTE
To modify the Risk Heatmap according to your organization's metrics, please see Customizing the Risk Heatmap.
NOTE