First, import regulatory documents by clicking on the icon in the bottom right corner


   Then enter your company's entities on the "Entities" page (second page from the left in the navigation)

  Add entered entities to groups

The way in which the application itself creates risks is made possible through grouping. Risks are created in the following way:

• Risk is viewed as a combination of threat and entity.

• Groups are the link between these two catalogs.

• If the entity (eg Core banking application) is in a group (eg Applications), and a certain threat is in the same group (eg Program error), a risk will automatically be created (Program error – Core banking application).

• This applies only to those entities that are selected in a project.

Groupings are performed by selecting one of the Grouping options.


When assessing risk, it is possible to assess risk more quickly through risk assessment for a particular group


  Start a new risk assessment project (click on the Projects option [third from the left in the navigation], then the Add project button)


  Once done, click on the newly created project, and in the lower part of the screen select the entities for which you want to perform a risk assessment (click on the desired project. In the lower part of the screen, add the entities you want by clicking on the "New" button)


  Automatically create risks for the desired project (stay on the selected project and then click on the "Auto. create risks" button. After clicking on OK, the risks will be automatically created in the database, and the status will change to "In Progress")


  Update the system of internal controls (select the sub-page Compliance->Control assessments in the navigation, and by clicking on the "New" button enter the percentages of the implementation of controls)


  Evaluate the risks for the selected project (select the "RiskAssessment" page (i.e., sub-page under Risks), filter the risks by the desired project (click on the "Project" field and choose your project to filter). Then evaluate each risk


  Create a control implementation plan (click on each risk, and in the second tab at the bottom of the screen, add control implementation plan items by clicking the "Pick" button). When adding a new plan item, a screen will first open to select an existing plan item (eg it is possible to have one plan item for multiple risks). If it is necessary to add a completely new plan item, click the "Add" option and the form for adding a new plan item will open