Risk Permissions and Staff Management

Owned by amani imtiyas
Last updated: Jan 05, 2024
21 min read

This article contains:

1. Permissions

Camms.Risk permissions has the following formats:

  • Static permission structure – designated roles entailing a standard set of capabilities around the system.

  • Flexible permission structure – dynamic roles with the ability to define the capabilities for the roles are.

Note: Refer the article 'Administration Role Management' in Camms.Strategy for guidance on setting up Flexible permissions.

2. Risk – Static Permissions

Risk Management is available at a read-only access level for most users, with edit access given via specific responsibilities and/or security roles as indicated in the below table. Permissions can be accessed via Manage Users under Administration for a staff member, where a user role can be created and assigned.

Security Level

Project Risk

Operational Risk

Strategic Risk

Corporate Risk

Register Access

Risk Actions

Risk Controls

Risk Settings

Administration Settings

Security Level

Project Risk

Operational Risk

Strategic Risk

Corporate Risk

Register Access

Risk Actions

Risk Controls

Risk Settings

Administration Settings

Administrator

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

All

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Edit

View, Edit

Risk Manager

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

All

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Edit

None

Business Unit Manager

View All, Create and Edit (Only to assigned Business Unit)

View All, Create and Edit (Only to assigned Business Unit)

View All, Create and Edit Only Assigned Records

View All, Create and Edit Only Assigned Records

All

View, Create, Edit (Only to assigned Business Unit)

View, Create, Edit (Only to assigned Business Unit)

Read Only

None

Director

View All, Create, Edit (Only to assigned Directorate and Business Unit)

View All, Create, Edit (Only to assigned Directorate and Business Unit)

View All, Create and Edit Only Assigned Records

View All, Create and Edit Only Assigned Records

All

View, Create, Edit

(Only to assigned Directorate and Business Unit)

View, Create, Edit

(Only to assigned Directorate and Business Unit)

Read Only

None

Operational Risk Editor

View and Edit Only Assigned Records

View, Create, Edit, Delete

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Operational Only

View, Create, Edit

View, Create, Edit

Read Only

None

Operational Risk Viewer

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Operational Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Project Risk Editor

View, Create, Edit, Delete

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Project Only

View, Create, Edit

View, Create, Edit

Read Only

None

Project Risk Viewer

View All, Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Project Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Strategic Risk Editor

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View, Create, Edit, Delete

View, Create, Edit, Delete

Strategic and Corporate Only

View, Create, Edit

View, Create, Edit

Read Only

None

Strategic Risk Viewer

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View All, Edit Only Assigned Records

View All, Edit Only Assigned Records

Strategic and Corporate Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Operational User

View, Edit Only Assigned Records

View, Edit Only Assigned Records

View, Edit Only Assigned Records

View, Edit Only Assigned Records

No access

View, Edit Only Assigned Records

View, Edit Only Assigned Records

Read Only

None

Confidential

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

All

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

Read Only

None

 

Note: See article Risk Approval for more details of the approval process and permissions related to Risk Approver and Risk Preparer.

Important: When the 'Security to view risks' setting is switched ON, only the users with create and/or edit permissions for risks can view the relevant risk details. Create/edit privileges for the risk areas are based on the existing user permissions. This setting will be activated only upon request. If you wish to activate this setting, please contact Camms Helpdesk.

Any other permissions available in this area will be explained under the respective product areas from which they are coming from. The Branch Risk Coordinator and Division Risk Coordinator permissions are obsolete, and therefore will be soon removed from the system.

The following additional rules apply within the Risk Management area:

Risk Settings area

  • This area is only accessible to individuals with the System Administrator and Risk Manager roles.

Strategic Risk area

  • This area will be editable by individuals with the Administrator, Strategic Planner, Risk Manager, and Strategic Risk Editor roles.

  • Responsible Officers for risk issues will be able to undertake risk assessments in the Strategic Risk area.

Operational Risk area

  • This area will be editable by individuals with the Administrator, Risk Manager, and Operational Risk Editor roles.

  • Risks and assessments will be editable by individuals with Director and Business Unit Manager roles.

  • Responsible Officers for risks will be able to undertake risk assessments in the Operational Risk area.

Project Risk area

  • This area will be editable by individuals with the Administrator, Risk Manager, and Project Risk Editor roles.

  • Risk Issues and assessments will be editable by the relevant Director and Business Unit Manager, and Action owner roles.

  • Responsible Officers for risk will be able to undertake risk assessments in the Project Risk area.

3. Risk – Flex Permissions

Under Role Management (accessed via Camms.Risk Menu > Administration > Role Management > Add New/Edit. select the CAMMSRISK option, within the 'Product' dropdown.

Figure 3.1

Area

Permission

Description

Area

Permission

Description

 

Show Planning Hierarchy

Select this permission to display the planning hierarchy tab under the Executive Intelligence section and under the Links tab when adding a Hierarchy Linkage for a Risk record.

Figure 3.2

 

 

 

Strategic Risk

Add

Select this permission to be able to add Strategic Risk types via the left-hand navigation and via the Control Register Add New button.

 

Delete

Select this permission to be able to delete Strategic Risk types.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under a 'Details' tab.

Strategic Risk > Register

View All

Select this permission to view all Strategic Risk records regardless of its hierarchy or created user, in the Strategic Risk Register.

 

View All Not Linked to Hierarchy

Select this permission to view Strategic Risk records that are not linked to a hierarchy.

 

View Node Only

Select this permission to view Strategic Risk records that are only related to a node in the hierarchy.

 

View Node with Children

Select this permission to view Strategic Risk records that are under a node, along with its children.

 

View All Created

Select this permission to view Strategic Risk records only if you (logged in user) created it.

 

View All RO

Select this permission to view Strategic Risk records only if you (the logged in user) are the Responsible Officer.

Strategic Risk > Details > Initial

View

Select this permission to enable the 'Initial/Inherent' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a Risk record in the 'Initial/Inherent' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Initial/Inherent Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Initial/Inherent Risk Assessment' tab.

Edit Risk Appetite Benchmark

Select this permission to enable an Edit button to edit the Risk Appetite Benchmark set for an organisation, in the Initial/Inherent Assessment tab for a Strategic Risk.

 

Strategic Risk > Details > Current

View

Select this permission to enable the 'Current/Residual/Revised' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record in the 'Current/Residual/Revised' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Current/Residual/Revised Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Current/Residual/Revised Risk Assessment' tab.

Strategic Risk > Details > Future

View

Select this permission to enable the 'Future' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record in the 'Future' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Future Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Future Risk Assessment' tab.

Strategic Risk > Details > Review

View

Select this permission to enable the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's review details in the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit Next Review Date

Select this permission to be able to edit and adjust the Next Review Date in the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Review tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Risk Review' tab.

Strategic Risk > Details > Document

View

Select this permission to enable the 'Documents' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's document attachments/links in the 'Documents' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Document tab.

Strategic Risk > Details > Link

View

Select this permission to enable the 'Links' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's linkages to other entities in the 'Links' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Links tab.

 

Link Hierarchies

New hierarchies created in the Field Configuration page under Strategic Risks, will be listed one below the other here. Select these permissions to include these added hierarchies.

Strategic Risk > Control

Add

Select this permission to display an Add New button to add controls in the Control Details Grid section for Strategic Risk records.

 

Edit

Select this permission to display an Edit button to edit Controls in the Control Details Grid section for Strategic Risk records.

 

Delete

Select this permission to display a Delete button to delete Controls in the Control Details Grid section for Strategic Risk records.

 

History

Select this permission to be able to view the History button when accessed a Control under Strategic risks, when clicked on a Control record displayed in the Control Record Grid. Once the History button is clicked, you will be able to view a control's history details in a popup window.

Strategic Risk > Risk Solution

View

Select this permission to display Risk Solutions/Actions in a grid for Strategic Risks. This permission will be required additionally, to add, edit, or delete Risk Solutions.

 

Add

Select this permission to display an Add button to add Risk Solutions/Actions in a grid for Strategic Risks.

 

Edit

Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for Strategic Risks.

 

Edit by Risk's Secondary RO

Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for a Strategic Risk's Secondary Responsible Officer as well.

 

Edit (Start Date)

Select this permission to be able to edit a Risk Solution's/Action's Start Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks.

 

Edit (End Date)

Select this permission to be able to edit a Risk Solution's/Action's End Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks.

 

Delete

Select this permission to display a Delete button next to a Risk Solution/Action displayed in a grid and delete the same, for Strategic Risks.

 

Link

Select this permission to display a Link button when adding a Risk Solution/Action in the Risk Solutions/Actions Grid of Strategic Risks, to view and edit a linkage to a hierarchy.

 

View All RO

Select this permission to view a Strategic Risk record's Risk Solution/Action, only if you (the logged in user) are the Responsible Officer.

Strategic Risk

Show Risk Prior To The Approved Stage

Select this permission to display Strategic Risks submitted as drafts prior to it being approved. Hence, enabling this will display both active and draft Strategic Risks.

 

 

 

Operational Risk

 

 

Project Risk

Project Risk > Project > Register

View All

Select this permission to view all Projects regardless of its hierarchy or created user, under Administration > Projects.

 

View All Not Linked to Hierarchy

Select this permission to view Projects that are not linked to a hierarchy, under Administration > Projects.

 

View Node Only

Select this permission to view Projects that are only related to a node in the hierarchy, under Administration > Projects.

 

View Node with Children

Select this permission to view Projects that are under a node, along with its children, under Administration > Projects.

 

View All Created

Select this permission to view Projects only if you (logged in user) created it, under Administration > Projects.

 

View All RO

Select this permission to view Projects only if you (the logged in user) are the Responsible Officer, under Administration > Projects.

 

 

 

Business Risk

 

 

Workspace

My Quick Update

Select this permission to view the 'My Quick Update' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the My Quick Update module.

 

Risk Register

Select this permission to view the 'Risk Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar.

 

Executive Intelligence

Select this permission to view the 'Executive Intelligence' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the Executive Intelligence page.

 

Risk Analysis

Select this permission to view the 'Risk Analysis' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Risk Analysis page.

 

My Settings

Select this permission to view the 'My Settings' menu item under the 'Workspace' section in the hamburger Menu, thereby allowing you to access My Settings.

 

Dashboard

Select this permission to view the 'Dashboard' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Dashboard.

 

Control Register

Select this permission to view the 'Control Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar.

 

 

 

Framework > Risk Settings

View

Select this permission to view the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in view mode. This permission will be required additionally, to edit Risk Settings.

 

Edit

Select this permission to view and edit the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in edit mode.

 

 

 

Quick Search

Quick Risk Action Search

Select this permission to view the 'Quick Risk Action Search' menu item under the 'Quick Search' section in the hamburger Menu, thereby allowing you to access the Quick Risk Action Search module.

 

 

 

Administration > Client Details

View

Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in view mode. This permission will be required additionally, to edit Client details.

 

Edit

Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in edit mode.

Administration > Hierarchy

Show Parents in Hierarchy

Select this permission to display the parent node in hierarchies.

Administration > Hierarchy > Hierarchy Configuration

View

Select this permission to display the 'Hierarchy Configuration' menu item under the Administration > Hierarchy section in the hamburger Menu and access the Hierarchy Configuration page in View mode.

Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy

View

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies.

 

Add

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and add new hierarchies, under Administration > Hierarchy in the hamburger Menu.

 

Edit

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and edit hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

 

Delete

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and delete hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy Level

View

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies.

 

Add

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab and add new hierarchies, under Administration > Hierarchy in the hamburger Menu.

 

Edit

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab and edit hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

 

Delete

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level tab and delete hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

Administration > Hierarchy > Hierarchy

View

Select this permission to display the 'Hierarchy' menu item under the Administration > Hierarchy section in the hamburger Menu and access the Hierarchy page in View mode. This permission will be required additionally, to add, edit, or delete Hierarchy details.

 

Add

Select this permission to access the 'Hierarchy' page and add new hierarchy structures, under Administration > Hierarchy in the hamburger Menu.

 

Edit

Select this permission to access the 'Hierarchy' page and edit exiting hierarchy structures, under Administration > Hierarchy in the hamburger Menu.

 

Delete

Select this permission to access the 'Hierarchy' page and delete exiting hierarchy structures, under Administration > Hierarchy in the hamburger Menu.

Administration > Hierarchy

Hierarchy Navigation Pad

Select this permission to display the 'Hierarchy Navigation Pad' menu item under the Administration > Hierarchy section in the hamburger Menu and view a hierarchy's navigation path.

Administration > Staff 

View

Select this permission to display the 'Staff' menu item under the 'Administration' section in the hamburger Menu and access the Staff page in View mode. This permission will be required additionally, to add, edit, or delete Staff details.

 

Add

Select this permission to access the 'Staff' page and add new staff details, under 'Administration' in the hamburger Menu.

 

Edit

Select this permission to access the 'Staff' page and edit existing staff details, under 'Administration' in the hamburger Menu.

 

Delete

Select this permission to access the 'Staff' page and delete staff details, under 'Administration' in the hamburger Menu.

Administration > Users

User List

Select this permission to display the 'User List' menu item under the Administration > Users section in the hamburger Menu and access the User List page listing down all users.

Administration > Users > Manage Users

View

Select this permission to display the 'Manage Users' menu item under the Administration > Users section in the hamburger Menu and access the Manage Users page.  This permission will be required additionally, to add, edit, or delete Users.

 

Add

Select this permission to access the 'Manage Users' page and add new user details, under Administration > Users in the hamburger Menu.

 

Edit

Select this permission to access the 'Manage Users' page and edit exiting user details, under Administration > Users in the hamburger Menu.

 

Delete

Select this permission to access the 'Manage Users' page and delete user details, under Administration > Users in the hamburger Menu.

Administration > Users

Staff Grouping

Select this permission to display the 'Staff Grouping' menu item under the Administration > Users section in the hamburger Menu and access the Staff Grouping page to group staff members into organisation groups.

Administration > Role Management

View

Select this permission to display the 'Role Management' menu item under the 'Administration' section in the hamburger Menu and access the Role Management page in View mode. This permission will be required additionally, to add, edit, or delete Roles.

 

Add

Select this permission to access the 'Role Management' page and add new roles to products, under 'Administration' in the hamburger Menu.

 

Edit

Select this permission to access the 'Role Management' page and edit existing roles of products, under 'Administration' in the hamburger Menu.

 

Delete

Select this permission to access the 'Role Management' page and delete roles of products, under 'Administration' in the hamburger Menu.

Administration

Reassign Staff Responsibilities

Select this permission to display the 'Reassign Staff Responsibilities' menu item under the 'Administration' section in the hamburger Menu and access the Reassign Staff Responsibilities page to assign individually or in bulk responsibilities of staff.

Administration > Actions > View

View All

Select this permission to view all Actions regardless of its hierarchy or created user, under 'Administration > Actions' in the hamburger Menu.

 

View All Not Linked to Hierarchy

Select this permission to view Actions that are not linked to a hierarchy, under Administration > Actions in the hamburger Menu.

 

View Node Only

Select this permission to view Actions that are only related to a node in the hierarchy, under Administration > Actions in the hamburger Menu.

 

View Node with Children

Select this permission to view Actions that are under a node, along with its children, under Administration > Actions in the hamburger Menu.

 

View All RO

Select this permission to view Actions only if you (the logged in user) are the Responsible Officer, under Administration > Actions in the hamburger Menu.

Administration > Actions

Add

Select this permission to access the 'Actions' page and add new Actions, by displaying a 'New' button, under Administration > Actions in the hamburger Menu.

 

Delete

Select this permission to access the 'Actions' page and delete Actions, by displaying a Delete button, under Administration > Actions in the hamburger Menu.

 

History

Select this permission to access the 'Actions' page and view the history of Actions in an audit trail, by displaying History button, under Administration > Actions in the hamburger Menu.

Administration > Actions > Tabs > Details

View

Select this permission to access the 'Actions' page and view an action's details in a Details tab, under Administration > Actions in the hamburger Menu. This permission will be required additionally, to edit Details. 

 

Edit

Select this permission to access the 'Actions' page and edit and save an action's details in a Details tab, under Administration > Actions in the hamburger Menu. 

Administration > Actions > Tabs > Progress

View

Select this permission to access the 'Actions' page and view an action's progress details in a Progress tab, under Administration > Actions in the hamburger Menu. This permission will be required additionally, to edit Progress details. 

 

Edit

Select this permission to access the 'Actions' page and edit and save an action's progress details in a Progress tab, under Administration > Actions in the hamburger Menu.

Administration > Projects

View

Select this permission to access the 'Projects' page and view Projects in view only mode, under Administration > Projects in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Projects. 

 

Add

Select this permission to access the 'Projects' page and add new Projects, by displaying a New button, under Administration > Projects in the hamburger Menu.

 

Edit

Select this permission to access the 'Projects' page and edit and save Project details, under Administration > Projects in the hamburger Menu.

 

Delete

Select this permission to access the 'Projects' page and delete Projects, under Administration > Projects in the hamburger Menu.

Administration > Key Risk Indicators

View

Select this permission to access the 'Key Risk Indicators' page and view KRIs in view only mode, under Administration > Key Risk Indicators in the hamburger Menu. This permission will be required additionally, to add, edit, or delete KRIs.

 

Add

Select this permission to access the 'Key Risk Indicators' page and add new KRIs, by displaying a 'New' button, under Administration > Key Risk Indicators in the hamburger Menu.

 

Edit

Select this permission to access the 'Key Risk Indicators' page and edit and save KRI details, under Administration > Key Risk Indicators in the hamburger Menu.


Delete

Select this permission to access the 'Key Risk Indicators' page and delete KRIs, under Administration > Key Risk Indicators in the hamburger Menu.

 

Administration > Risk Administration

View

Select this permission to access the 'Risk Administration' pages and view all sections under it in view only mode, under Administration > Administration in the hamburger Menu. This permission will be required additionally, to add, edit, or delete sections under the Risk Administration pages.

 

Add

Select this permission to access the 'Risk Administration' pages and add new items under these sections, by displaying a New button, under the Administration > Risk Administration pages in the hamburger Menu.

 

Edit

Select this permission to access the 'Risk Administration' pages and edit and save items under these sections, under Administration > Risk Administration in the hamburger Menu.

 

Delete

Select this permission to access the 'Risk Administration' pages and delete items under these sections, under Administration > Risk Administration in the hamburger Menu.

Administration > Risk Administration > Email Rules

Show as Email Recipient

Select this permission to select users under this permission as the Email Recipient by default, for email triggers created under Administration > Risk Administration > Email in the hamburger Menu.

Administration > System Settings

View

Select this permission to access the 'System Settings' page and view all settings under it in view only mode, under Administration > System Settings in the hamburger Menu. This permission will be required additionally, to edit and save details under System Settings.

 

Edit

Select this permission to access the 'System Settings' page and edit and save System Settings, under Administration > System Settings in the hamburger Menu.

Administration > Configuration

View

Select this permission to access the 'Configuration' pages and view all sections under it in view only mode, under Administration > Configuration in the hamburger Menu. This permission will be required additionally, to edit and save sections under the Configuration pages.

 

Edit

Select this permission to access the 'Configuration' pages and edit and save items under these sections, under Administration > Configuration in the hamburger Menu.

 

Risk Management

Strategic Risk Register

Select this permission to view the 'Strategic Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Strategic Risk Register.

 

Operational Risk Register

Select this permission to view the 'Operational Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Operational Risk Register.

 

Project Risk Register

Select this permission to view the 'Project Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Project Risk Register.

 

Business Risk Register

Select this permission to view the 'Business Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Business Risk Register.

 

Risk History

Select this permission to view the 'Risk History' menu item under the 'Risk Management' section in the hamburger Menu, thereby allowing you to access the History View page to view Audit Trail details.

 

Reports

Risk Reports

Select this permission to access and view Risk related reports.

 

Report Uploader

Select this permission to be able to access the report uploader and report uploader setup.

 

 

Risk Approver

Select this permission for Risk Approvers to view Risk records to be approved/rejected under the My Quick Update page.

 

Risk Preparer

Select this permission for a Risk Preparer to create and submit Risk records as Drafts to be approved by a Risk Approver.

 

Risk Confidential

Select this permission to display a checkbox to mark a risk record as confidential, which will thereby display these risks only to the responsible officers.

4. Controls – Static Permissions

5. Controls – Flex Permissions

Under Role Management (accessed via Camms.Risk Menu > Administration > Role Management > Add new/Edit. select the 'Controls' option, within the 'Product' dropdown.

  • This will load a Control specific permission tree where permissions can be assigned for areas such as Control Register, Control Detail page (Details tab, Documents tab, Links tab, and Control Assessment tab), and Control Settings.

Area

Permission

Description

Area

Permission

Description

Control

Add

Ability to add a Control via quick links + icon and Add new option in the Control Register.

 

Delete

Ability to delete Controls via the Control Detail page.

Control > Register

View All

All records in the Control Register will be displayed. This supersedes all other options.

 

View All Not Linked to Hierarchy

All Controls not linked to any hierarchy node will be displayed.

 

View Node Only

Controls directly linked to the logged in user’s hierarchy node will be displayed.

 

View Node with Children

Controls directly linked to the logged in user’s hierarchy node and the child nodes will be displayed.

 

View All Created

Controls created by the logged in user will be displayed.

 

View All Control Owner

Controls having the logged in user as the 'Control Owner', will be displayed.

 

View All Control Authoriser

Controls having the logged in user as the ‘Control Authoriser’ will be displayed.

 

View All Linked to My Risks

Controls linked to Risks which the logged in user is assigned as the ‘Risk Responsible Officer’, will be displayed in the Control Register. This permission will be applicable to the Risk Control Detail page as well.

Control > Details > Control Details

View

Read-only permission for Control Details

 

Edit

Edit fields in the Control Detail page

Control > Details > Document

View

Read-only permission for the Document tab

 

Edit

Upload/delete documents and URLs via the Document tab

Control > Details > Links

View

Read-only permission for the Links tab

 

Edit

Create linkages via the Links tab

Controls > Details > Control Assessment (This will be available only when the ‘Show Survey’ setting is enabled in the Camms.Risk Survey module.)

View

Read-only permission for the Control Assessment tab

Control > Framework > Settings

View

Read-only permission for Control Settings options

 

Edit

Permission for editing Control Settings

  • Permissions for the Control Record grid and the Control Record Detail page will remain within 'Risk Management' in the Product dropdown.

6. Staff Management

Staff details are managed in the below two sections:

  • Staff Record: Administration > Staff 

  • User Login: Administration > Manage Users 

Refer the Administration – Users and Staff article for more information on staff.

<< Previous section
Prerequisites

Next section >>
Risk Settings