Risk Assessment
- Andrea Harvey
On This Page
Overview
The Risk assessment helps you understand the potential cost exposure for the scanned content. This is based on the Cost per incident value added to the policy tracking groups. If no cost was added, the values will be 0.
Risk Exposure and Cost
The first section of the report provides an overview of the risk exposure and cost exposure. By default, the graph displays information for the file count. You can select to view the data based on file size if preferred.
Critical and high-risk files are represented by red, and medium-risk files are represented by yellow. The darker shades represent the unremediated data (data against which no action has been taken), and the lighter shades represent the remediated data (data that has been handled by an action on the policy). When you however on a section of the graph, it displays the the risk level, total number of remediated and unremediated files in this group (or total size depending on the filter) and the percentage of the total content the files constitute.
The vales in the graph are used to calculate the three values at the top of the page. The first value identifies the total number critical or high risk files. Again, this information is red in the graph.
The next value identifies the percentage of the files remediated by the policy actions. This is calculated by taking the total number of remediated critical and high-risk files and dividing it by all critical high risk files (both remediated and not remediated). The Exposure level is determined by this percentage.
Remediated % | Exposure level |
|---|---|
>66% | Low |
Between 33-66% | Medium |
Below 33% | High |
The cost exposure values under the Exposure level are calculated based on the Cost per incident value set for each tracking group. Cost savings is based on the remediated files (number of remediated files x cost per incident for the corresponding tacking group), and the cost exposure is based on the the unremediated files (classified files - remediated files) and the potential cost of those files.
Risk History
The second chart allows you to see the risk exposure history. By default, it shows the data for the critical risk level, but you can select a different risk level from the filter list if preferred. Use the arrows next to the date to scroll through dates to view the risk assessment for other periods in time. This helps you visualize how the risk level has changed, so you can better manage your data governance. You can hover on any date in the graph to see the file breakdown for that period.