Summary of Rights by Profile

	IT RM functional administrator	IT GRC Manager
Establishes the application inventory See "Inventory of IT Assets".	X
Establishes the inventory for threats and vulnerabilities See "Inventory for Threats and Vulnerabilities".	X	X
Identifies the vulnerabilities for each asset See "Positioning Vulnerabilities on IT Assets".	X	X
Identifies and assess risks linked to IT assets See "Identifying and Positioning Risks", "Direct Risk Assessment".	X	X
Identifying Risk Scenarios See "Identifying Risk Scenarios".	X	X
Defining Action Plans for Improvement Purposes See "Treating risks".	X	X

	IT RM functional administrator	IT GRC Manager
Identifies controls See "Identifying Controls on Applications".	X	X
Assesses the efficiency of controls See "Direct Control Assessment".	X	X

	IT RM functional administrator	IT GRC Manager
Establishes the inventories for vendors and publishers See "Vendor Inventory".	X
Specifies the annual amount of purchasing See "Specifying the Cost of Products and Services".	X	X
Assesses the vendors (attributes a score) See "Assessing Vendors".	X	X