You must have the correct Permissions to effectively utilise the Risk Register Module. To learn more about accessing the Risk Register module, refer to Accessing the Risk Register.
Permission Levels
The table below will help you understand the different permission levels.
Permission Levels | Scope | Basic Description |
Risk RW Org Manage Categories, Risks & Owners | Entire Organisation | Full read/write access across all sites |
Risk RW Site Manage Categories, Risks & Owners | Assigned Sites Only | Full read/write access for assigned sites |
Risk R Org View all Risks | Entire Organisation | Read-only access across all sites |
Risk R Site View all Risks | Assigned Sites Only | Read-only access for assigned sites |
Risk Owner Assignable Risk Owner / Corrective Actions | Owned Risks Only | Access limited to risks they own |
Action Assigned Assignable Risk Owner / Corrective Actions | Assigned Actions Only | Access limited to actions they're assigned |
Risk Management Permissions
Permission Level | View Risks | Create Risks | Edit Risks | Transfer Owner | Transfer Actions |
Risk RW Org Manage Categories, Risks & Owners | ✓ | ✓ | ✓ | ✓ | ✓ |
Risk RW Site Manage Categories, Risks & Owners | ✓* | ✓* | ✓* | ✓* | ✓* |
Risk R Org View all Risks | ✓ | ✗ | ✗ | ✗ | ✗ |
Risk R Site View all Risks | ✓* | ✗ | ✗ | ✗ | ✗ |
Risk Owner Assignable Risk Owner / Corrective Actions | ✓† | ✗ | ✓† | ✓† | ✓† |
*Limited to assigned sites
†Limited to owned risks
Control Management - Non-Mandatory Controls
Permission Level | View | Add | Update | Delete |
Risk RW Org Manage Categories, Risks & Owners | ✓ | ✓ | ✓ | ✓ |
Risk RW Site Manage Categories, Risks & Owners | ✓* | ✓* | ✓* | ✓* |
Risk R Org View all Risks | ✓ | ✓† | ✓† | ✗ |
Risk R Site View all Risks | ✓* | ✓† | ✓† | ✗ |
Risk Owner Assignable Risk Owner / Corrective Actions | ✓† | ✓† | ✓† | ✗ |
Action Assigned Assignable Risk Owner / Corrective Actions | ✓‡ | ✗ | ✗ | ✗ |
*Limited to assigned sites
†Limited to owned risks
‡Limited to risks with assigned actions
Control Management - Mandatory Controls
Permission Level | View | Add | Update | Delete |
Risk RW Org Manage Categories, Risks & Owners | ✓ | ✓ | ✓ | ✓ |
Risk RW Site Manage Categories, Risks & Owners | ✓* | ✗ | ✗ | ✗ |
Risk R Org View all Risks | ✓ | ✗ | ✗ | ✗ |
Risk R Site View all Risks | ✓* | ✗ | ✗ | ✗ |
Risk Owner Assignable Risk Owner / Corrective Actions | ✓† | ✗ | ✗ | ✗ |
Action Assigned Assignable Risk Owner / Corrective Actions | ✓‡ | ✗ | ✗ | ✗ |
*Limited to assigned sites
†Limited to owned risks
‡Limited to risks with assigned actions
Actions Management
Permission Level | Add Actions | View Actions | Update Actions | Complete Actions | Delete Actions |
Risk RW Org Manage Categories, Risks & Owners | ✓ | ✓ | ✓ | ✓ | ✓ |
Risk RW Site Manage Categories, Risks & Owners | ✓* | ✓* | ✓* | ✓* | ✓* |
Risk R Org View all Risks | ✗ | ✓† | ✓† | ✓† | ✗ |
Risk R Site View all Risks | ✗ | ✓† | ✓† | ✓† | ✗ |
Action Assigned Assignable Risk Owner / Corrective Actions | ✗ | ✓† | ✓† | ✓† | ✗ |
*Limited to assigned sites
†Limited to assigned actions
Risk Review Permissions
Permission Level | Create Review | View Details | Update Schedule | Complete Review | Add Comments | View Associated Risks |
Risk RW Org Manage Categories, Risks & Owners | ✓ | ✓ | ✓ | ✓ | ✓ | ✓ |
Risk RW Site Manage Categories, Risks & Owners | ✗ | ✓ | ✗ | ✗ | ✓ | ✓* |
Risk R Org View all Risks | ✗ | ✓ | ✗ | ✗ | ✓ | ✓ |
Risk R Site View all Risks | ✗ | ✓ | ✗ | ✗ | ✓ | ✓* |
Risk Owner Assignable Risk Owner / Corrective Actions | ✗ | ✓† | ✗ | ✗ | ✓ | ✓† |
*Limited to assigned sites
†Limited to owned risks
Access Locations
Controls can be managed in:
Risk Register (Expanded/Consolidated view) > Risk Details View
Risk Register > Sites > Site Details View
Actions can be managed in:
Risk Register (Expanded/Consolidated view) > Risk Details View
Risk Register > Sites > Manage > Actions
Risk Register > Sites > View/Edit
Risk Register > Actions
Risk Register > Risk Review > Manage > Manage Review
Important Notes
Any user can be assigned a Risk Action
Risk R permissions allow completion of assigned actions only
Risk Owners should typically be granted Risk RW Site permissions
Controls visibility depends on site access and risk ownership
Only Risk RW Org has full control over mandatory controls
Risk RW Site permissions can fully manage non-mandatory controls, but only for assigned sites