CONTROL RISK

SELF ASSESSMENT

The CRSA process is used to investigate risk threats, its causes and financial impact whenever it occurs. CERRIX supports the CRSA process over time since it presumes the CRSA process is executed in a frequency as desired by the users.

• Period concept: CRSA’s are typically executed at certain moments in time. Organizations change over time (responsibilities, process flows, new products etc.) and so its risk profile. CERRIX can handle these changes. It is possible to retrieve risk information according to the risk-status at any moment in time. There is no other GRC solution that can handle these dynamics in such a way.
• Catalogues: CERRIX combines flexibility and standardization within a organization. Risk managers prefer the use of standards because it enables them to compare, aggregate and analyze more easily. End-users like to store the data in text-format they recognize.
• Responsibility: Any risk is the risk register is linked to a responsible employee or manager. Different roles might conclude for different response types.
• Reporting: Powerful and neatly formatted reports are available with different  selection, filtering and aggregation criteria.