HOPEX Aquila EN

PLATFORM - Concepts > Attributes (MetaAttributes) > Residual Risk Computing Mode

Residual Risk Computing Mode

Residual risk calculation mode enables specification of how the residual risk value was obtained.

residual risk = absolute risk - absolute risk*(global evaluation of controls/100)

Global evaluation of controls can be:

- value 1 if no evaluation is available. In this case, residual risk is equal to absolute risk.

- the prevention coefficient directly specified on the risk by the risks manager. This is the case if no other information is available on controls associated with the risk

- an average of the evaluation of each of the controls connected to the risk.

Evaluation of each of the controls can be defined by:

- global evaluation of control defined by the risks manager

- or the average of control tests calculated from results of questionnaires sent to the different stakeholders to evaluate control efficiency.

For each control, priority in the calculation is given to the most precise evaluation.

- So, if an average of control tests derived from questionnaires is available, it is this that is taken into account.

- If not, but there is a global evaluation of control specified by the risks manager, it is this that is taken into account.

- If nothing is specified on the control, but the risk prevention coefficient has been specified by the risks manager, it is this value that is taken into account.

- If the prevention coefficient has not been specified, value 1 is used.

This calculation can be modified in the "Risk Level Residual Matrix" macro.

Translations

FR	Mode de calcul du risque résiduel
EN	Residual Risk Computing Mode
DE	Berechnungsmodus des Restrisikos
IT	Modalità di calcolo del rischio residuo
ES	Modo de cálculo del riesgo residual

Type

String (159) Standard

Products

HOPEX IT Architecture, HOPEX NAF, HOPEX Risk Mapper, HOPEX Business Process Analysis, HOPEX IT Architecture V2.

List of MetaClasses

Risk.