Residual Risk: a quantitative method to evaluate risk.

Residual Risk can be used to quantitatively identify where pockets of residual risk exist, determine the magnitude of the remaining residual risk and evaluate if the residual risk needs to be mitigated, transferred, or accepted.

The Residual Risk tool assesses the risk that remains after an organization has implemented appropriate controls.

The Residual Risk assessment tool will provide you with a Residual Risk score for each of your plans and help you determine whether it is within or outside the Risk Appetite set by management.

ASSIGN IMPACT FACTORS
The Impact Factor represents the potential impact the loss of the Business Unit, IT System, or Critical Application may have on the business.
The Impact Factor represents the potential impact the loss of the Business Unit, IT System, or Critical Application may have on the business.
RISK-BASED AUDITING
Mitigating controls are measures that are put in place to reduce the risk of failure of a critical Business Data Unit, IT System, or Critical Application.
Mitigating controls are measures that are put in place to reduce the risk of failure of a critical Business Data Unit, IT System, or Critical Application.
DETERMINE RESIDUAL RISK
The risk after implementing mitigating controls to comply with industry standards, regulatory requirements, and best practices.
The risk after implementing mitigating controls to comply with industry standards, regulatory requirements, and best practices.
EVALUATE FOR IMPROVEMENT
Identify residual risk, determine its magnitude, and evaluate if the risk needs to be mitigated, transferred, or accepted based on management’s risk tolerance.
Identify residual risk, determine its magnitude, and evaluate if the risk needs to be mitigated, transferred, or accepted based on management’s risk tolerance.

See Residual Risk in Action

Key Functionalities

      • Cloud-based, secure tool to measure enterprise BCM program residual risk.

     

    •  

 

      • Easy to use tool provides the opportunity to perform unlimited self-assessments of your enterprise BCM program based on your needs.

     

    •  

 

      • Scoring provides you with areas of success and opportunities for improvement.

     

    •  

 

      • Assign administrator, planner and auditor access based on need.

     

    •  

 

      • Lock completed assessments to prevent unauthorized or accidental modifications.

     

    •  

 

    • Comprehensive Management reporting.

Flexible Pricing Options

Unlimited access to all 4 tools
or pay-per-use available.

Assess your Residual Risk and receive action-based reporting.

RESIDUAL RISK DETAIL REPORT

The purpose of the Residual Risk Detail Report is to provide management with a detailed report of mitigating controls, risk factors, threat landscape, and residual risk for all business units/departments and/or IT systems/applications.

RESIDUAL RISK EXCEPTION REPORT BY RTO

The Residual Risk Exception Report by RTO displays a listing of any business unit or IT system evaluated where residual risk is outside of the company’s risk tolerance.

ACTION ITEM REPORT BY RTO

The Action Item Report by RTO displays all action items listed by RTO, along with Mitigating Control, Due Date, Assigned To,
and Status.

RISK TOLERANCE GRAPH BY RTO

The Risk Tolerance Graph by RTO uses a pie chart to depict areas outside and within risk tolerance. The BCM practitioner can select the RTO to show in the pie chart. Clicking on the pie chart produces a bar graph depicting areas outside of tolerance along with their scores.

See Residual Risk in Action

Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Start typing and press Enter to search