Skip to main content

Risk intake overview

Risk management works best when employees can easily flag new risks and organizations have a clear process to review and add them to the right register. Hyperproof’s risk intake feature streamlines this workflow end-to-end. It allows teams to gather cross-company feedback and seamlessly add validated risks to the Risk Register. Once submitted, proposed risks can be added to risk assessments, allowing teams to quickly evaluate likelihood, impact, and control gaps. With Hyperproof’s integrated intake portal, organizations can maintain an accurate, up-to-date risk posture without relying on external tools or manual data transfer.

Risk intake workflow

  1. Set up your risk intake register to contain any proposed risks submitted by your organization. See Setting up the risk intake register.

    Note

    Hyperproof only supports one risk intake register.

  2. If you don't already have a risk assessment, start a new one. Ensure that a default risk register is configured to move proposed risks into once they have been evaluated and become actual risks. See Creating an assessment.

  3. Configure your risk intake survey. See Creating a risk intake survey.

  4. Distribute the survey link to your organization via email or on your company intraweb. See Providing the risk intake survey link.

  5. Instruct team members in your organization to complete the risk intake survey any time they perceive a possible risk. See Completing a risk intake survey.

  6. View the responses to the risk intake surveys for additional information about a risk. See Viewing a risk intake survey response.

  7. Optionally, add proposed risks manually to the risk intake register. See Adding a proposed risk to the risk intake register.

  8. Review the proposed risks and add them to an assessment for evaluation. See Adding proposed risks to an assessment for evaluation.

  9. Evaluate proposed risks to determine whether they should be actual risks. See Evaluating proposed risks.

  10. Approve evaluations for proposed risks to create actual risks in the selected risk register. See Evaluating proposed risks.

  11. Close evaluations for proposed risks that shouldn't become actual risks. See Rejecting a proposed risk.

  12. In the risk intake register, archive proposed risks that are rejected and will not be moved to the risk register. See Archiving and unarchiving a proposed risk.

  13. Update the survey as needed to add or remove questions. See Updating a risk intake survey.

In this section: