Determining your level of risk requires an assessment and knowledge of security policies, laws and regulations governing your environment. Risks exist, they are unavoidable. Risk exception begins with identifying an exposure. By planning, you will create awareness throughout your organization of the risks present and increase your ability to minimize the consequences. The Risk Exception Module provides security program managers and risk managers the ability to identify, track, monitor, report, authorize and escalate risk exceptions and policy exceptions, as well as correlate multiple findings to a risk exception.
• Customizable Workflow approach to manage all exception requests.
• Automated Notifications for approval and management authorization, upcoming re-certifications, and more.
• Formal, Repeatable, and Scalable workflow for risk exception management.
• Correlates risk exception to the risk exposure.
• Defines different levels of approval.
• Automatic notification of upcoming recertifications.