displayName
Technology Risk Assessment
workflowKind
governance
triggerType
scheduled
typicalCadence
quarterly
complexity
cross-team
description
Assesses technology and IT risk across the organization --
maintaining the technology risk register with categorization across
obsolescence, vendor lock-in, architectural debt, and scalability
constraints, evaluating end-of-life and end-of-support timelines for
critical infrastructure components, assessing single-vendor
dependency concentration and contractual exit barriers, reviewing
disaster recovery and business continuity readiness for key
technology stacks, scoring technology risks on likelihood, impact,
and velocity dimensions, and recommending risk treatment actions
including modernization, diversification, and contingency planning.
Produces technology risk register, vendor concentration analysis, and
risk treatment roadmap. Excludes technology selection and migration
planning.