Assessing a risk on a risk card

From the Assessments app, you can set risk rating factors and edit the weight of controls on all the risks assigned to you. There are two types of risks:

• Risks from Projects These are general risks assessed by a single individual, typically a domain expert. The risk score represents the overall risk as a single entity.

• Risk assessments These are more comprehensive and involve input from multiple individuals or departments. The risk owner solicits feedback from various stakeholders on specific aspects of the risk, such as its likelihood and potential impact. After all the feedback is collected, the risk owner compiles the data to determine the final risk score.
  Risk assessments provide a more focused approach, allowing the risk owner to make a more informed decision about the overall risk.

Risk card widgets

The widgets displayed on the risk card provide the following information:

Assessments Widget	Description
No Control associated	No controls are associated with the risk.
Completed	The Assessments is complete, and both the inherent and residual risk scores have been calculated.

Assess risks

To view and complete all your assigned risks, follow these steps:

1. From the Launchpad home page (www.diligentoneplatform.com), select the Assessments app to open it.

   If you are already in Diligent One, you can use the left-hand navigation menu to switch to the Assessments app.

   Note

   Diligent One Platform also supports the domain www.highbond.com. For more information, see Supported domains.

   Note

   You will receive an email notification with a link to the app to begin the scoring process. This may include a single assessment or multiple assessments in bulk, each with different headlines for the same risk. For bulk notifications, all links are provided in one email.

   Bulk emails are applicable only for Risk Assessments.

2. From the Activities dashboard, select a risk card.

   The Risks view displays tasks, associated controls, risk ratings, descriptions, and other related activities. The cards are labeled as either Projects or Risk Manager, depending on their integration source.

3. In the Tasks tab, select the risk scoring factors from the Impact and Likelihood dropdown menus.

4. Complete the following steps based on the risks assigned to you:
   

   Risk Type	Steps
   Risks assigned to you within Projects	After updating the risks details and metrics, select Submit and complete to save your changes. To finalize the risk updates, select Complete in the confirmation pop-up. The risk card displays the calculated scores, Inherent Risk Score and Residual Risk Score, as a toast message based on the information you entered. You can review the scores from the Completed view. Issues tab View existing issues or create new ones by selecting Add Issue. Enter the required details such as title, description, and issue type. Then select Save or Save and Add Another. Requests tab View existing requests or create new ones by selecting Add Request. Provide the necessary details such as requester, owner, and description. Then select Save or Save and Add Another. Associated controls tab View or modify existing control associations. To update, select Edit Associations, adjust control weights as needed, and then select Save. View completed risk cards in the Completed dashboard. (Optional) Modify the Impact and Likelihood and then select Update to save your changes. (Optional) If you still wish to switch platforms to make changes, select Open in Projects. This opens the Projects app in a new tab.
   Risk assessments assigned to you within Risk Manager	After updating the risks details and metrics, select Submit and complete to save your changes. To finalize the risk updates, select Complete in the confirmation pop-up. The risk card displays the calculated scores, Inherent Risk Score and Residual Risk Score, as a toast message based on the information you entered. Associated controls tab View or modify existing control associations. To update, select Edit Associations, adjust control weights as needed, and then select Save. View completed risk cards in the Completed dashboard. (Optional) Modify the Impact and Likelihood and then select Update to save your changes. (Optional) If you still wish to switch platforms to make changes, select Open in Risk Manager. This opens the Risk Manager app in a new tab.

Getting information about assessing a risk

You assess risks to determine their potential threat level to the organization by evaluating the impact and likelihood of the risk, and then calculating the risk score. You can calculate the inherent risk score in both risk and risk event assessment records.

Risk Scoring Factor	Description
Likelihood	Low, Medium, High
Impact	Low, Medium, High

How are risk values handled between the Risks and Risk Assessments sections?

Risks section

• You can select values for impact and likelihood to update both the inherent and residual risk scores.

• The inherent and residual risk scores represent the overall risk and can be updated when the card is still in progress or even after it’s completed.

• Impact and likelihood values can be adjusted or removed at any time.

• The dropdown menu for selecting impact and likelihood offers options for low, medium, and high.

Risk assessments section

• The inherent and residual risk scores are not shown because they relate to the parent risk. Instead, they help you (the risk owner) make decisions by focusing on specific details.

• The rating options can extend beyond low, medium, and high, allowing for customization and color coding to represent different risk levels. This includes default colors for improved visibility and clearer differentiation of risk levels.

• Info icons appear next to Likelihood and Impact. Hover over them to view definitions added by the risk owner or admin during Risk Manager setup. If no definitions are set, the icons do not appear.

• After a risk assessment card is finalized, you cannot deselect values. To make changes, you must go to the completed list and update them, but deselecting is not allowed.