HOPEX Enterprise Risk Management Profiles
In HOPEX Enterprise Risk Management, there are default user profiles with which specific rights and accesses are associated. The profiles available are:
• Risk Functional Administrator
• Risk Manager and Local Risk Manager
• Business User (ERM)
• GRC Contributor (Lite)
Risk Functional Administrator
The functional administrator has rights on all objects and workflows.
He/she prepares the work environment and creates elements required for management of risks.
Manages:
• environment description
• entities and processes
• regulatory environment
• IT resources
For more details on description of the environment, see the “Defining the Environment for Solutions", page 689 chapter. • users and assignment of roles.
Can intervene in:
• declared risks
• assessment campaigns
• action plans and actions
Risk Manager
To adapt to centralized or decentralized risk management, HOPEX Enterprise Risk Management distinguishes:
• the Risk Manager
• the Local Risk Manager
The Risk Manager is responsible for execution of the following tasks on risks within his/her responsibility domain:
• Risk identification
• Direct assessment
• Assessment campaign management
• Action plan definition
• Analysis and follow-up report creation
Business User
The business user has a simplified desktop accessing questionnaire functions, action plans and objects for which he/she is responsible:
• Risks and controls
• Questionnaires
• Action plans
• Incident Declarants
• Incident Approvers
GRC Contributor (Lite)
As an occasional user, you may also connect with the “GRC Contributor (Lite)" profile. For more details on this profile common to all GRC solutions, see The GRC Contributor Desktop.