Info |
---|
Note: This section is available only in the flexible hierarchy framework. |
Creating User Roles and Assigning to Staff
Creating a User Role
STEP 1: Click on the new menu item ‘Role Management’, included under the ‘Administration’ area within Camms.Strategy. This can be accessed by clicking on the Strategy Navigation Menu.
...
STEP 4: Click on the ‘Expand’ icon placed in front of each area to expand the areas/ permissions.
Users must have both the 'Edit' and 'Link' permissions for editing, and to add/edit the hierarchy linkages.
If the user has the 'Edit' permission, but doesn’t have the 'Link' permission, he/she cannot add/edit hierarchy Linkages.
STEP 5: Tick the relevant permission under each area required for the role as shown in the below figure, and click on the ‘Save’ button to save the user role. User will be saved according to alphabetical order.
...
Role Permissions
Product: CAMMSRISK | ||||
Permission | Description | |||
Show Planning Hierarchy | Select this option to display the planning hierarchy tab under the Executive Intelligence section and under the Links tab when adding a Hierarchy Linkage for a Risk record.
| |||
Strategic Risk | Add | Select this option to be able to add Strategic Risk types. | ||
Delete | Select this option to be able to delete Strategic Risk types. | |||
History | Select this option to be able to view the History button in a strategic risk type. Once the History button is clicked, you will be able to view history details in an Audit separate window. | |||
Register |
| |||
Details | Initial/Current/Future
Review
Document
Link
| |||
Control |
| |||
Risk Solution |
| |||
Show Risks Prior To The Approved Stage | ||||
Operational Risk | Add | Select this option to be able to add Operational Risk types. | ||
Delete | Select this option to be able to delete Operational Risk types. | |||
History | Select this option to be able to view the History button in an operational risk type, to view history details in a separate window. | |||
Register |
| |||
Details | Initial/Current/Future
Review
Document
Link
| |||
Control |
| |||
Risk Solution |
| |||
Show Risks Prior To The Approved Stage | ||||
Project Risk | Add | Select this option to be able to add Project Risk types. | ||
Delete | Select this option to be able to delete Project Risk types. | |||
History | Select this option to be able to view the History button in a project risk type, to view history details in a separate window. | |||
Register |
| |||
Details | Initial/Current/Future
Review
Document
Link
| |||
Control |
| |||
Risk Solution |
| |||
Show Risks Prior To The Approved Stage | ||||
Project | Register
| |||
Corporate/ Business Risk | Add | Select this option to be able to add Corporate/Business Risk types. | ||
Delete | Select this option to be able to delete Corporate/Business Risk types. | |||
History | Select this option to be able to view the History button in a corporate/business risk type, to view history details in a separate window. | |||
Register |
| |||
Details | Initial/Current/Future
Review
Document
Link
| |||
Control |
| |||
Risk Solution |
| |||
Show Risks Prior To The Approved Stage | ||||
Workspace | My Quick Update | |||
Risk Register | ||||
Executive Intelligence | ||||
Risk Analysis | ||||
My Settings | ||||
Dashboard | ||||
Framework | Risk Settings |
| ||
Quick Search | Quick Risk Action Search | |||
Administration | Client Details |
| ||
Hierarchy |
| |||
Staff |
| |||
Users |
| |||
Role Management |
| |||
Actions |
| |||
Projects |
| |||
Key Risk Indicators |
| |||
Risk Administration |
| |||
System Settings |
| |||
Configuration |
| |||
Risk Management | Strategic Risk Register | |||
Operational Risk Register | ||||
Project Risk Register | ||||
Corporate Risk Register | ||||
Risk History | ||||
Risk Control Register | ||||
Reports | Risk Reports | |||
Report Uploader | ||||
Risk Approver | ||||
Risk Preparer | ||||
Risk Confidential |
Assigning User Roles to Staff
STEP 1: Navigate to the ‘Staff’ page (Framework > Staff).
STEP 2: Create a new staff member by clicking on the ‘New’ button and fill in the details.
...
STEP 8: Click on the ‘Delete’ button to delete a role assigned to the user.
Assigning Multiple Product Permissions to User Roles
A user can select multiple products from the ‘Product’ dropdown and assign permission to the same user role. The staff assigned to this particular user role will have access to multiple products based on the given permission.
...
Since ‘Risk Manager’ role has been assigned permission under both ‘Risk’ and ‘Strategy’ products, the staff assigned to the ‘Risk Manager’ role will have access to both ‘Risk’ and ‘Strategy’ areas based on the permission.
Replication of User Roles
STEP 1: Navigate to the ‘Role Management’ page and create a user role.
STEP 2: The ‘Replicate’ button will appear once the user role is saved.
Click on the ‘Replicate’ button to create a copy of the user role.
...
The duplicated user role will be renamed as ‘Copy of [User Role name]’ by default.
For an example, the duplicated user role of ‘Risk Manager’ will be renamed as ‘Copy of Risk Manager’ as shown in the below figure.
The user role will get arranged according to the alphabetical order by default.
...
SYCLE Mode – Flexible Hierarchy Menu Items
If the SYCLE mode has been enabled for a client, the flexible hierarchy menu items will be displayed as shown in the below figure.
...
‘Staff’ page – ‘Framework’ area.
Once clicked, the page will open in a new tab.
To assign user roles to staff, view section 'Assigning User Roles to Staff'.
Risk Standalone Mode – Flexible Hierarchy Menu Items
If risk standalone mode has been enabled for a client, the mega menu will be visible as shown in the below figure.
The ‘Role Management’ page and ‘Staff’ page will be displayed within the ‘Administration’ area.
Role Management’ page and ‘Staff’ page will open in a new tab when clicked.
For creation of user roles, view section 'Creating a User Role'.
To assign user roles to staff, view section 'Assigning User Roles to Staff'.
...
Hierarchy Filters
The following three filters have been added as filter options.
...
Camms.Risk Audit – Filters have been added within the following areas.
Audit
Findings
Recommendation
...
Functionality of Hierarchy Trees within EIS and Analysis Areas
‘EIS’ will load based on the permission assigned to a user. The hierarchy tree will be filtered accordingly.
For an example, if the user is linked to the ‘Chief Executive Officer’ node and the user has been given the ‘View Node with children’ permission, the hierarchy tree will show the ‘Chief Executive Officer’ node and its child nodes.
Actions, KPIs, Budget, Scorecards and Risks will load accordingly.
The level and node the user is linked to will be displayed in the following manner.
...
The ‘Risk Analysis’ will load based on the permissions assigned to a user.
The hierarchy tree will be filtered according to the hierarchy level and node the user is linked to.
‘Risk Analysis’ will display only the risks assigned to the user under the linked node.
...
Hierarchy Linkages
Link to the Organisation Hierarchy
‘Add/ Edit Links’ button has been added within the following areas in order to link risks/ audits to the flexible org hierarchy.
Risk Registers
Strategic Risk Register – Initial Risk Assessment
Operational Risk Register – Initial Risk Assessment
Project Risk Register – Initial Risk Assessment
Risk Control Register
Risk Solutions tab
Risk Control tab
Audit Register
Audit – Audit Details tab
Recommendation – Recommendation Details tab
The following shows an example of how ‘Risk Solutions’ are linked to the flexible org hierarchy. The same logic applies to all other areas mentioned above in the same manner.
Navigate to the ‘Risk Solutions’ tab and click on the ‘Add/ Edit Links’ button.
...
Click on the ‘Save’ button to save the selected nodes. The selected hierarchy, level and node will be displayed in the manner of a breadcrumb. f. The selected node will be displayed in bold as shown in the below two figures.
...
Linking Risks to the Custom Organisation Hierarchy using Links tab
The hierarchy tree will be filtered according to the permissions given to a user within all risk registers.
STEP 1: Click on the ‘New’ button within the ‘Links’ tab to link a risk to a hierarchy.
STEP 2: Select ‘Hierarchy’ from the ‘Create a New Linkage’ dropdown.
STEP 3: Select a hierarchy type from the ‘Hierarchy Type’ dropdown.
STEP 4: Once the hierarchy type is selected, the hierarchy tree will be filtered according to the permission given to the user.
For example, if the user has been given the ‘View Node Only’ permission, the hierarchy tree will show the user’s linked node as well as its parent nodes.
STEP 5: Click the ‘Link’ button to link the risk to the hierarchy.
...
Display of Linked Organisation Levels/Nodes – Organisation Link column
The ‘Organisational Links’ column displays the organisation level to which a particular risk is linked to.
This column has been added within the following areas:
Risk Register
Operational Risk Register
Corporate Risk Register
Audit Register
‘Audit’ tab
...
Linking Actions to the Hierarchy
A user will be able to link an action to the custom/ flexible org hierarchy based on the permission assigned to a user.
The user’s linked node will be displayed on the top left corner as shown in the below figure when he/she initially navigates to the ‘Action’ page.
...
Info |
---|
Note: The staff member will only be able to create actions if he/she is linked to the organisational hierarchy. |
Enhanced Security Permissions
The list of permissions below have been added within the ‘Role Management’ page in order to restrict a user’s ability to view, add, edit and delete components within certain areas of a product.
Camms.Strategy
The following permissions have been added under the ‘Actions’ and ‘KPI’ areas within Camms.Strategy.
...
Actions | |||
---|---|---|---|
Add | Allows the user to only add actions. | ||
Delete | Allows the user to only delete actions. | ||
View All | Allows the user to view all actions within the application. | ||
View All Not Linked to Hierarchy | Allows the user to view all actions not linked to any node of the hierarchy. If you wish to link such an action to the hierarchy, either one of the permissions; view all, view node only or view node with children, should be assigned in addition to the ‘View All Not Linked to Hierarchy’ permission. | ||
View Node Only | Allows the user to only view all actions assigned to the node that the user is linked to. | ||
View Node With Children | Allows the user to only view all actions assigned to the node and the children of the node that the action is linked to.
| ||
View All Responsible Officer | Allows the user to view all actions to which he is assigned to as a ‘Responsible Officer’. |
...
Camms.Risk
The following table shows a list of permissions added within all four risk registers.
...
Strategic Risk | |||
---|---|---|---|
Add | Allows the user to only add strategic risks to the Strategic Risk Register. | ||
Delete | Allows the user to only delete strategic risks in the Strategic Risk Register. | ||
Strategic Risk Register | |||
View All | Allows the user to view all strategic risks within the application. Allows the user to link strategic risks to all levels/ nodes of the hierarchy. | ||
View All Not Linked to Hierarchy | Allows the user to view all strategic risks not linked to any node of the hierarchy. If you wish to link such a risk to the hierarchy, either one of the permissions; view all, view node only or view node with children, should be assigned in addition to the ‘View All Not Linked to Hierarchy’ permission. | ||
View Node Only | Allows the user to only view all strategic risks assigned to the node that the user is linked to. | ||
View Node With Children | Allows the user to only view all strategic risks assigned to the node and the children of the node that the risk is linked to.
| ||
View All Created | Allows the user to view all strategic risks created. | ||
View All Responsible Officer | Allows the user to view all strategic risks to which he is assigned to as a ‘Responsible Officer’. | ||
Control | |||
Add | Allows the user to add controls to a strategic risk. | ||
Delete | Allows the user to delete controls within a strategic risk. | ||
View All Responsible Officer | Allows the user to view all risk controls to which he is assigned to as a ‘Responsible Officer’ (Control Owner). |
...
Camms.Risk Audit
The following table shows a list of permissions added within the audit registers.
...
Audit Register | |
---|---|
View All | Allows the user to view all audits within the ‘Audit Register’. |
View All Responsible Officer | Allows the user to view all audits to which he is assigned to as a ‘Responsible Officer’. |
...
Camms.Risk Incident
The following table shows a list of permissions added within the Incident registers.
...