Manage Risk Definitions
Detailed overview of Manage Risk Definitions module of Risk Controls feature in IBM Verify Identity Governance.
Manage Risk Definitions
You can create SoD or Sensitive Access risks. Perform the following steps.
- In the main menu, go to Manage Access Risk Controls → Manage Risk Definitions.
- Click Create Risk.
- Provide the required Risk Details.
- Name
- Description,
- Type (Separation of Duty OR Sensitive Access)
- Level
- Impact
- In the Risk Owner page, select the user who would be responsible for the activity.
You can either search using the free text search box, or you can use a search criteria such as begins with and choose one or more user attributes.
From the displayed list, select the user name.
Click Save.
Risk is created. Status is shown as Not Assigned.
Next, we will add business activity to this risk definition.
- Click the kebab menu option (three vertical dots at the end of the record) and click View. View Details page opens.
- In the Business Activities tab, click the Add Activities button.
- Select one or more of activities. Click Add.
- In the Add activities tab, choose whether it is an individual activity or a group activity. In case of a group activity, you need to provide a group name, and also specify whether you want to apply all the activities or any of the selected activities.
- Click Save and then again click Save.