Define GRC risk criteria - Legacy

Use the Risk Criteria form to define risk criteria.

About this task

In the base GRC system, the risk criteria available on the form are Significance and Likelihood.

Procedure

  1. Navigate to GRC > Administration > Risk Criteria.
  2. Click New.
  3. Fill in the fields on the form, as appropriate:
    Table 1. Risk criteria fields
    Field Description
    Type Select one of the types provided, either Likelihood or Significance.
    Display value Create a name for the criteria that displays in the choice list. For example, enter 3 - Expected Behavior for the Likelihood type.
    Order The order in which this choice appears in the choice list. This order should be logical for the level selected.
    Weighting A numeric value for the risk, used to calculate |risk approach rules. Low weighting factor indicates a lower overall risk, and high weighting factor indicates a higher overall risk.
  4. Click Submit.
  5. To select the new criteria in a risk record, navigate to GRC > Risks and click New.
  6. Open the choice list for the Likelihood field.

    The new criteria appears in the list by it's display name.

    Configuring likelihood in a risk criteria