Risk Managment

The risk2value® Risk Management module enables risk managers to perform structured risk-assessments based on flexible and configurable risk-catalogs and evaluation methods.

The modeling interface hosts a screen to individually build a hierarchical risk-catalog in the system with as many hierarchy levels as needed. This enables a integrated Risk Management process with multiple risk-types and risk-categories.

In risk2value® multiple individual evaluation methods (quantitative, qualitative, semi-quantitative, etc.) can be used including their specific calculation and aggregation mechanisms. Thus risk managers who previously already used Microsoft Excel or other tools with their individual risk evaluation method don't have to change their methods as risk2value® can easily be configured to use their method.

The Risk Management module in risk2value® is seamless integrated in other risk2value® software modules by internal interfaces. Evaluated risks can for instance be directly mapped to controls from the Compliance Management module or the Internal Control System. This leads to a tihgt integration of different management systems. Also the Audit- and Actvity-Management can be used to dokument measures, audit results and audit findings or referenced object from the Loss & incidents Database..

Furthermore an integrated audit trail automatically logs all changes performed at the risk analysis, the risk owner can add evidence to the documentation and the riskmanager can track the completion status of running assessments.

Features

  • Modeling of individual risk catalogs with various risk types / risk categories
  • Modeling of multple individual evaluation methodes incl. calculation and aggregation
  • Workflow-based management of dezentral risk assessments by risk owners in the web-browser
  • Central management and tracking of risk-assessments and mitigation-measures
  • Mapping of risks to compliance-controls, ICS-controls, etc.
  • Traceability provided by the central audit trail
  • Risk evaluations can be commented with additional documentation
  • Transfer of the evaluation of previous assessment and review of these risks

Screenshots

Risk Modeling: Risk / Control Mapping: Risk Assessment: 
     
Risk Evaluation Exp. 1: Risk Evaluation Exp. 2: Risk Evaluation Exp. 3: 
 
     
Risk Evaluation Exp. 4:     
   

 

Back to the overview of risk2value® Modules

Share Ihren XING-Kontakten zeigen

avedos™ Links

risk2value® Info-Center

risk2value® Online-Demo

avedos™ Event-Calendar
avedos™ News auf Twitter

avedos™ News

 26.09.2011
risk2value 4.0 Launch

avedos is pleased to officially announce the brand new version 4.0 of its GRC-framework risk2value.

 



12.09.2011
avedos continously expands its customer base

In the recent months, many new customers such as T-SYSTEMS, Volkswagen AG and Volkswagen Financial Services could be won for risk2value because of the comprehensive capability of the risk2value GRC software framework.

 



05.09.2011
avedos participates with a presentation of IQ-NET IT-security Offsite

avedos joins the IQ-NET IT-security event on the 09th of November 2011 with a lecture on tool support in GRC applications in the field of IT governance.



19.04.2011
Workshop "Security Management on all levels"

avedos™ together with its partner cirosec hosts workshops in four German cities from the 6th to the 9th of June 2011. The topic of "Security Management on all levels" is meant to demonstrate efficient ways of handling an ISMS with the support of the risk2value® GRC suite.