GRC - Governance, Risk & Compliance > HOPEX Enterprise Risk Management > Managing Risks > Risk Workflow
Risk Workflow
 
Risk validation steps
Validating or rejecting a risk
The risk creation process is managed by a workflow. Only certain profiles are authorized to create, submit, validate or reject a risk.
*For more details on the risk creation workflow, see Risk Workflows.
Risk validation steps
The steps in the validation process of a new risk are the following:
Having specified the characteristics of a new risk, the risk creator (who is also the risk owner) must Submit the risk.
When a risk has been submitted, the Risk Manager can:
Validate the risk (it takes the "Validated” status).
A notification is sent by mail to the user defined as "Owner".
Reject the risk.
In this case, the risk takes status "Rejected", but is not deleted.
Validating or rejecting a risk
To validate or reject a risk:
2. From the Risks drop-down list, select Risks to review.
3. Select the risk and use the Workflow button to validate or reject it.
*You can also select several risks to perform a mass transition.