Risk management settings
Aus HITGuard User Guide
Weitere Optionen
In "Risk management → Settings", experts can configure the risk management and add further configurations in addition to the risk policy, to adapt the risk management to the requirements of the management system.
Risk/opportunity/impact:
- Used categories of risks and opportunities:
- Define which categories of risks and opportunities are to be used in this management system.
- Extent of damage classification:
- Here, define the classification used in this management system to assess potential damage. If you do not make a selection, the default extent of damage classification will be used.
- A use case for your own extent of damage classification would be, for example, to assess potential damage in the data protection management system from the perspective of the affected party. As a result, the Risk Management dashboard, hazard situations, and structural analysis will by default only display hazard situations and SBA weightings for the associated extent of damage classification.
- Caution: Changing the extent of damage classification potentially affects the meaningfulness of previously evaluated risks as well as protection needs analyses made in the management system.
- Show gaps tab
- Define whether the list of assigned gaps should be included in the view of risks and opportunities.
- Show threats tab
- Define whether the list of assigned threats should be included in the view of risks and opportunities.
Module
Die Berechtigungen der Experts und Professionals für das ESG werden unter Administration → Benutzerrollen vergeben.
Menüpunkte
- Strukturanalyse einblenden
- Schutzbedarfe einblenden
- Schwachstellen einblenden
- Bedrohungen einblenden
Definieren Sie hier, welche Menüpunkte im Risikomanagement enthalten sein sollen und blenden Sie jene aus, die Sie für Ihr Managementsystem nicht benötigen. Je nachdem, welche Menüpunkte Sie verwenden, werden auch die dazugehörigen Berichtsseiten entsprechend ein- oder ausgeblendet.