Skip to main content

Using Data Portfolios in the Enterprise Risk Console

Data Portfolios help organize, filter, and restrict access to risks and related records across Essential ERM.

N
Written by Nigel Groen
Updated over 3 weeks ago

What Are Data Portfolios?

If your subscription includes the Risk Portfolios feature and it has been enabled by an Admin, you will see an additional Portfolio filter in the Enterprise Risk Console.

Portfolios can be used to:

  • Control user access to specific risks and related data

  • Filter and organize risks, mitigations, causes, and reports

Access and Visibility Rules

  • Admin Users see all data in all portfolios

  • Standard and Read Only Users:

    • See all data in the General Portfolio

    • Can only view records in locked portfolios they are assigned to

Each record can only belong to one portfolio at a time

Portfolio Types

1. General Portfolio (Unlocked)

  • All users have access

  • Any record not assigned to a locked portfolio remains here by default

  • Admins should periodically review it to prevent sensitive data being left open

2. Locked Portfolios

  • Created by Admins in the Admin > Risk Portfolios section

  • Access is restricted to assigned users

  • Used to limit access to sensitive data (e.g., HR, M&A) or simplify user views

Example: A Finance user may only see risks tagged under the “Finance Department” portfolio

Portfolio Use Cases

  • Departments: Finance, Sales, HR, etc.

  • Strategic Projects: Assign a portfolio per major initiative

  • Sensitive Functions: M&A, legal, board reporting

Filtering with Portfolios

Portfolios appear as a filter in:

  • The Enterprise Risk Console

  • System-wide explorers and reports

If a user has access to multiple portfolios, they will see a combined view by default and can use the dropdown to filter to one.

Limitations and Rules

  • Only the following data types can be placed in portfolios:

    • Risks

    • Root Causes

    • Mitigations

    • Consequences

    • Action Plans

  • The following are always visible to all users:

    • Indicators

    • Strategic Objectives*
      (Objectives can only be restricted if using the Essential Strategy™ module)

Advanced Features

Hybrid Model

  • Most portfolios are visible to all users for transparency

  • Sensitive ones (e.g., HR, M&A) are restricted

  • Admins can customize access per user

Parent-Child Rollups

  • Combine portfolios with sub-risk functionality

  • Roll up department-level risks into higher-level enterprise risks

  • Supports weighted scoring and strategic views

Portfolio Administration

  • Create and manage portfolios in the Admin > Risk Portfolios screen

  • Assign users directly to the portfolios they need

  • Portfolios act as both access controls and filters

See the Administration section for detailed instructions and setup examples

Applies to: Admin Users

Keywords: portfolios, risk portfolios, data access, locked data, user permissions, filtering, enterprise console, admin settings

Did this answer your question?