Step 1 - Registration

Step 1 - Registration

Registering your risk assessment

All risk assessments in Diri have to be registered. It is important to register the necessary information for the risk assessment for auditing and traceability purposes. The information registered in this step will also be a part of the report print.


Common documentation requirements

Common information registered for all risk assessment types except the Overall risk assessment:
  1. Start date: Automatically registered creation date
  2. Name: Is the name of the risk assessment that will be displayed in the list containing all risk assessments.
  3. Risk assessment owner: The person that owns the risk assessment or the object being risk assessed.
  4. Description: Brief description of the risk assessment object.
  5. Delimitations: Describe relevant delimitations and assumptions made for the assessment. An accurate description of what is included and not is important for an accurate assessment scope.

Participants

The final page in all risk assessment types includes a participant registration list for documentation purposes. The list does an active search in the user database for your organisation once you start typing, if the participant is found, click the name and the role and organisation fields will autofill. Participants that are not registered in Diri can be added manually by typing their name, role, and organisation.


Specific registration requirements for risk assessment types

For specific registration requirements per type check out the "Risk assessment types" topic in the help center.


    • Related Articles

    • The Diri five step process

      Why the five step process Diri is developed to support companies that need to carry out risk assessments. Diri is designed to give your company an overview of risk together with risk reducing measures. Processes and methods are developed by Diri, but ...
    • 3 - The Problem Risk Assessment

      What is the Problem Risk Assessment? Put plainly, the Problem Risk Assessment (PRA) is a simplified risk assessment with lower documentation requirements when compared to IT system assessments. The PRA is an option for risk assessing problems that ...
    • The Diri Risk Matrix

      What is the Diri Risk Matrix? The Risk Matrix in Diri is a classic visualization matrix that illustrates risks on two axes, with probability on the Y-axis and consequence on the X-axis. In Diri, a risk is a combination of a cause, an event, and a ...
    • 2 - The ICT System Risk Assessment

      What is an ICT system? ICT (information, communication, and technology) systems are the most basic type of risk assessments in Diri: An ICT system is a set-up consisting of hardware, software, data and the people who use them. It commonly includes ...
    • The Diri Control Matrix

      What is the Diri Control Matrix? The Diri control matrix (DCM) is an innovation unique to our software. In short, the DCM is a security control visualization tool that allows for in-depth analysis of how well the system security is managed. The DCM ...