One of the primary purposes for a risk heatmap (RHM) is to allow customers to document, track, and manage risk. It allows users to visualize the ranking of risk objects in relation to each other. Each risk object drives visualization with the following elements:
Measure of Impact (how damaging a risk could be to the business).
Measure of Likelihood (what is the chance this risk could happen).
Risk Score = Impact x Likelihood.
Risk heatmaps are especially valuable for executive level customers, as they can be used by decision makers to identify areas of the business where additional resources may be necessary (e.g. a software product with a high number of vulnerabilities or a business process that has unmitigated risks).
The ZenGRC Risk Heatmap provides the following:
To modify the Risk Heatmap according to your organization's metrics, please see Customizing the Risk Heatmap. |
| Continue to the next section - Accessing the Risk Heatmap. |