User Risks by Business Process

The User Risks by Business Process report contains similar information to the User Risks by Rating report, with the added dimension of the Process Area defined in the rulebook. The breakdown of risk and drill-down reporting acts the same as the User Risks by Rating and the total risk numbers will be the same.

Use Case

This summary-level report is often used by business process owners or owners of specific functional areas to review users who pose the most risk within their respective area. You can view and filter by the different business process areas and see which users have that access. This can identify if the expected users have access to the risks that might be expected of them so you can use that information to determine if risk remediation or mitigating controls are needed.