Roles installed with GRC: Risk - Legacy

GRC: Risk adds the following roles.

Table 1. Installed user roles
Name Description
Admin [sn_risk.admin]
  • Provides administrative rights to the Risk application and modules.
  • Has all the rights of a sn_risk.manager and a sn_risk.user, as well as the ability to define Risk Criteria and set Risk Criteria Thresholds and risk Properties.
  • Inherits the following roles.
    • sn_grc.admin
    • sn_grc.manager
    • sn_grc.user
    • sn_risk.manager
    • sn_risk.user
  • Inherits the following roles if the Governance, Risk, and Compliance (GRC) application is activated.
    • grc_audit_reader
    • task_editor
    • certification_admin
    • grc_test_definition_admin
    • grc_control_test_reader
    • assessment_admin
    • certification
    • grc_compliance_reader
    • certification_filter_admin
    • grc_admin
    • grc_user
Manager [sn_risk.manager]
  • Provides management rights to the Risk application and modules.
  • Has all the rights of a sn_risk.user as well as the ability to create new Profile Types, Profiles, and Risk Definitions, and has access to the Risk Overview.
  • Has the ability to manage assessments.
  • Inherits the following roles.
    • sn_grc.manager,
    • sn_grc.user
    • sn_risk.user
  • Inherits the following roles if the Governance, Risk, and Compliance (GRC) application is activated.
    • grc_audit_reader
    • task_editor
    • certification_admin
    • grc_test_definition_admin
    • grc_control_test_reader
    • assessment_admin
    • certification
    • grc_compliance_reader
    • certification_filter_admin
    • grc_user
User [sn_risk.user]
  • Provides access rights to the Risk application and modules. Can view Profile Types, Profiles, Risks, and Remediation tasks.
  • Can create and manage new and existing Risks. Cannot view Risk Definitions, create new Profiles or Profile Types, and does not have access to the Risk Overview.
  • Inherits the sn_grc.user role.
  • Inherits the following roles if the Governance, Risk, and Compliance (GRC) application is activated.
    • grc_compliance_reader
    • grc_user
    • grc_audit_reader
    • grc_control_test_reader
    • task_editor