Risk Level Management
Configure custom risk level options and score thresholds for your organization
Risk Level Management allows you to customize how risks are categorized in your organization. It consists of two main components: Risk Level Options (custom labels like Critical, High, Medium, Low) and Score Thresholds (score ranges that map to each risk level).
Risk Level Options
Define custom risk level labels that match your organization's terminology and risk classification standards.
Score Thresholds
Configure the score ranges that automatically assign risk levels based on calculated risk scores (likelihood × impact).
Accessing Risk Level Management
Navigate to Risk Management
From the sidebar, click on "Risk Management" to expand the section.
Open Risk Level Management
Click on "Risk Level Management" in the Risk Management menu. The page has two tabs: "Score Thresholds" and "Risk Level Options".
Risk Level Options
Risk Level Options are the labels you use to categorize risks (e.g., "Critical", "High", "Medium", "Low"). These can be customized to match your organization's terminology. For example, you might use:
- Standard levels: Critical, High, Medium, Low
- Extended levels: Critical, High, Medium, Low, Informational
- Custom levels: Catastrophic, Major, Moderate, Minor
Managing Risk Level Options
Open Risk Level Options Tab
Navigate to Risk Level Management and click on the "Risk Level Options" tab.
Create New Option
To add a new risk level option:
- Enter the option name in the input field (e.g., "Critical", "High")
- Click "Add" to create the option
- The new option will appear in the list
Add Default Options
Click "Add defaults" to quickly add the standard risk level options: Critical, High, Medium, Low, and Informational.
Edit Existing Option
To modify an existing risk level option:
- Click "Edit" next to the option you want to modify
- Update the option name in the input field
- Click "Save" to apply changes
Delete Option
Click "Delete" next to an option to remove it.Note: Only delete options that are not currently assigned to any risks.
Score Thresholds
Score Thresholds define the numerical ranges that automatically assign risk levels based on calculated risk scores. Risk scores are calculated by multiplying the likelihood level by the impact level (typically ranging from 1-25 if using 1-5 scales, or 1-100 if using 1-10 scales).
Managing Score Thresholds
Open Score Thresholds Tab
Navigate to Risk Level Management and click on the "Score Thresholds" tab.
Configure Threshold Ranges
For each risk level option, configure:
- Min Score: The minimum score value for this risk level
- Max Score: The maximum score value for this risk level
Thresholds should not overlap and should cover the entire score range (typically 1-25).
Save Changes
After configuring thresholds, click "Save Changes" to apply the configuration. The system will use these thresholds to automatically assign risk levels to newly assessed risks.
Reset to Defaults
Click "Reset to Defaults" to restore the standard threshold configuration:
- Critical: 20-25
- High: 15-19
- Medium: 5-14
- Low: 1-4
Default Configuration
Critical
20-25Extremely high risk requiring immediate attention
High
15-19High risk requiring prompt action
Medium
5-14Moderate risk that should be addressed
Low
1-4Low risk that can be monitored
Best Practices
Use clear, standardized labels that match your organization's risk terminology
Avoid creating too many risk levels (4-5 levels is typically sufficient)
Don't delete risk level options that are currently assigned to risks
Ensure threshold ranges don't overlap and cover the entire score range
Align thresholds with your organization's risk appetite and tolerance
Review and update thresholds periodically as your risk management practices evolve
Next Steps
Need Help?
Our support team is here to help you configure risk levels for your organization.