Configuration
Risk Signals configuration lets administrators customize the risk framework to match your organization’s terminology, processes, and compliance requirements. All configuration options are available under Risk Management in the sidebar.
Risk classifications
Classifications categorize risks by domain or area of concern. Common classifications include operational, strategic, compliance, financial, reputational, and technology risks. You can create, rename, and reorder classifications to match how your organization thinks about risk categories.
Navigate to Risk Management → Classifications to manage your classification options.
Risk priorities
Priorities indicate how urgently a risk should be addressed, separate from the risk score itself. Default priorities include Critical, High, Medium, and Low. You can customize these labels and add additional priority levels as needed.
Navigate to Risk Management → Priorities to manage priority options.
Risk types
Risk types provide a secondary categorization for risks. While classifications describe the domain, types describe the nature of the risk — for example, threat, vulnerability, control gap, or compliance requirement. Configure your risk types under Risk Management → Risk Types.
Risk level management
Risk level management controls two things: the labels used for risk levels and the score thresholds that determine which scores map to which levels.
Managing risk level options
Navigate to Risk Level Management
Go to Risk Management → Risk Level Management and select the Risk Level Options tab.
Add or edit levels
Create new risk levels or rename existing ones. Each level needs a name, a color indicator, and a display order.
Set the default levels
The defaults are Critical, High, Medium, Low, and Informational. You can rename these or add new levels to match your terminology.
Managing score thresholds
Open the Score Thresholds tab
Navigate to Risk Management → Risk Level Management and select the Score Thresholds tab.
Configure ranges
Set the minimum and maximum score for each risk level. Ensure ranges do not overlap and collectively cover the full scoring range.
Save changes
Click Save to apply the new thresholds. Existing risks will be re-evaluated against the updated ranges.
Changing score thresholds affects all existing risks. Review the impact before saving — risks may shift between levels.
Risk settings
The Risk Settings page provides additional configuration options for the risk management module, including default values for new assessments, notification preferences, and integration settings.
Navigate to Risk Management → Settings to access these options.