II.
Workflow overview
Reference · liveworkflow:enterprise-risk-register-review
Enterprise Risk Register Review overview
Reviews and updates the enterprise risk register across all organizational risk categories -- reassessing likelihood and impact ratings for existing risks based on emerging indicators, identifying new risks from regulatory changes, market shifts, and technology evolution, validating risk-owner assignments and mitigation-plan progress, evaluating control effectiveness through key-risk-indicator trend analysis, conducting risk-appetite alignment checks with board-defined thresholds, and escalating risks that breach tolerance limits. Produces updated risk register and quarterly risk dashboard. Excludes risk-mitigation implementation.
Attributes
displayName
Enterprise Risk Register Review
workflowKind
governance
triggerType
scheduled
typicalCadence
quarterly
complexity
cross-team
description
Reviews and updates the enterprise risk register across all
organizational risk categories -- reassessing likelihood and impact
ratings for existing risks based on emerging indicators, identifying new
risks from regulatory changes, market shifts, and technology evolution,
validating risk-owner assignments and mitigation-plan progress,
evaluating control effectiveness through key-risk-indicator trend
analysis, conducting risk-appetite alignment checks with board-defined
thresholds, and escalating risks that breach tolerance limits. Produces
updated risk register and quarterly risk dashboard. Excludes
risk-mitigation implementation.
Outgoing edges
applies_to_domain3
- domain:operations·DomainOperations
- domain:finance·DomainFinance
- domain:legal·DomainLegal
involves_role3
- role:security-reviewer·RoleSecurity Reviewer
- role:engineering-manager·RoleEngineering Manager
- role:planner·RolePlanner
performed_by_org_unit3
- org-unit:risk-management-team·OrgUnitRisk Management Team
- org-unit:compliance-team·OrgUnitCompliance Team
- org-unit:finance-team·OrgUnitFinance Team
requires_skill_area2
- skill-area:threat-modeling·SkillAreaThreat Modeling
- skill-area:data-quality·SkillAreaData Quality
triggers_responsibility2
- responsibility:security-review·ResponsibilitySecurity review
- responsibility:threat-modeling·ResponsibilityThreat modeling
Incoming edges
None.