Risk Permissions and Staff Management
- amani imtiyas (Unlicensed)
- Amani Imtiyas
- Paul Angelo (Unlicensed)
1. Permissions |
Camms.Risk permissions has the following formats:
Static permission structure – designated roles entailing a standard set of capabilities around the system.
Flexible permission structure – dynamic roles with the ability to define the capabilities for the roles are.
Note: Refer the article 'Administration – Role Management' in Camms.Strategy for guidance on setting up Flexible permissions.
2. Risk – Static Permissions |
Risk Management is available at a read-only access level for most users, with edit access given via specific responsibilities and/or security roles as indicated in the below table. Permissions can be accessed via Manage Users under Administration for a staff member, where a user role can be created and assigned.
Security Level | Project Risk | Operational Risk | Strategic Risk | Corporate Risk | Register Access | Risk Actions | Risk Controls | Risk Settings | Administration Settings |
|---|---|---|---|---|---|---|---|---|---|
Administrator | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Create, Edit, Delete | All | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Edit | View, Edit |
Risk Manager | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Create, Edit, Delete | All | View, Create, Edit, Delete | View, Create, Edit, Delete | View, Edit | None |
Business Unit Manager | View All, Create and Edit (Only to assigned Business Unit) | View All, Create and Edit (Only to assigned Business Unit) | View All, Create and Edit Only Assigned Records | View All, Create and Edit Only Assigned Records | All | View, Create, Edit (Only to assigned Business Unit) | View, Create, Edit (Only to assigned Business Unit) | Read Only | None |
Director | View All, Create, Edit (Only to assigned Directorate and Business Unit) | View All, Create, Edit (Only to assigned Directorate and Business Unit) | View All, Create and Edit Only Assigned Records | View All, Create and Edit Only Assigned Records | All | View, Create, Edit (Only to assigned Directorate and Business Unit) | View, Create, Edit (Only to assigned Directorate and Business Unit) | Read Only | None |
Operational Risk Editor | View and Edit Only Assigned Records | View, Create, Edit, Delete | View and Edit Only Assigned Records | View and Edit Only Assigned Records | Operational Only | View, Create, Edit | View, Create, Edit | Read Only | None |
Operational Risk Viewer | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View and Edit Only Assigned Records | Operational Only | View, Create, Edit Only Assigned Records | View, Create, Edit Only Assigned Records | Read Only | None |
Project Risk Editor | View, Create, Edit, Delete | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View and Edit Only Assigned Records | Project Only | View, Create, Edit | View, Create, Edit | Read Only | None |
Project Risk Viewer | View All, Edit Only Assigned Records | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View and Edit Only Assigned Records | Project Only | View, Create, Edit Only Assigned Records | View, Create, Edit Only Assigned Records | Read Only | None |
Strategic Risk Editor | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View, Create, Edit, Delete | View, Create, Edit, Delete | Strategic and Corporate Only | View, Create, Edit | View, Create, Edit | Read Only | None |
Strategic Risk Viewer | View and Edit Only Assigned Records | View and Edit Only Assigned Records | View All, Edit Only Assigned Records | View All, Edit Only Assigned Records | Strategic and Corporate Only | View, Create, Edit Only Assigned Records | View, Create, Edit Only Assigned Records | Read Only | None |
Operational User | View, Edit Only Assigned Records | View, Edit Only Assigned Records | View, Edit Only Assigned Records | View, Edit Only Assigned Records | No access | View, Edit Only Assigned Records | View, Edit Only Assigned Records | Read Only | None |
Confidential | View and Edit Only Assigned Records, View all confidential records | View and Edit Only Assigned Records, View all confidential records | View and Edit Only Assigned Records, View all confidential records | View and Edit Only Assigned Records, View all confidential records | All | View and Edit Only Assigned Records, View all confidential records | View and Edit Only Assigned Records, View all confidential records | Read Only | None |
Note: See article Risk Approval for more details of the approval process and permissions related to Risk Approver and Risk Preparer.
Important: When the 'Security to view risks' setting is switched ON, only the users with create and/or edit permissions for risks can view the relevant risk details. Create/edit privileges for the risk areas are based on the existing user permissions. This setting will be activated only upon request. If you wish to activate this setting, please contact Camms Helpdesk.
Any other permissions available in this area will be explained under the respective product areas from which they are coming from. The Branch Risk Coordinator and Division Risk Coordinator permissions are obsolete, and therefore will be soon removed from the system.
Operational Users can only update their own risks (project, operational, corporate, and strategic risk) if the operational user is a responsible officer for that particular risk.
Further, Operational Users can NOT view Dashboard, Dashboard/EIS/Risk Analysis in the left-hand navigation bar (for Static Hierarchy only).Action Owners can only update the risk actions which are assigned to them.
Executive Intelligence Permission will give a user access to the EIS and Analysis areas in the solution. The records displayed for each user under these areas can be found under the respective articles for these sections.
The following additional rules apply within the Risk Management area:
Risk Settings area |
|
|---|---|
Strategic Risk area |
|
Operational Risk area |
|
Project Risk area |
|
Note: The Secondary Risk Responsible Officer has the same rights as the Primary Risk Responsible Officer. However, the Secondary Risk Responsible Officer will not be allowed to modify the Primary Risk Responsible Officer, or the status of the risk assessment.
3. Risk – Flex Permissions |
Under Role Management (accessed via Camms.Risk Menu > Administration > Role Management > Add New/Edit. select the CAMMSRISK option, within the 'Product' dropdown.
Area | Permission | Description |
|---|---|---|
| Show Planning Hierarchy | Select this permission to display the planning hierarchy tab under the Executive Intelligence section and under the Links tab when adding a Hierarchy Linkage for a Risk record. Note: If you do not have this permission enabled, you will not be able to link a risk to the Planning hierarchy.  Figure 3.2 |
|
|
|
Strategic Risk | Add | Select this permission to be able to add Strategic Risk types via the left-hand navigation and via the Control Register Add New button.  Figure 3.3 |
| Delete | Select this permission to be able to delete Strategic Risk types.  Figure 3.4 |
| History | Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under a 'Details' tab.  Figure 3.5  Figure 3.6 |
Strategic Risk > Register | View All | Select this permission to view all Strategic Risk records regardless of its hierarchy or created user, in the Strategic Risk Register. |
| View All Not Linked to Hierarchy | Select this permission to view Strategic Risk records that are not linked to a hierarchy. |
| View Node Only | Select this permission to view Strategic Risk records that are only related to a node in the hierarchy. |
| View Node with Children | Select this permission to view Strategic Risk records that are under a node, along with its children. |
| View All Created | Select this permission to view Strategic Risk records only if you (logged in user) created it. |
| View All RO | Select this permission to view Strategic Risk records only if you (the logged in user) are the Responsible Officer. |
Strategic Risk > Details > Initial | View | Select this permission to enable the 'Initial/Inherent' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a Risk record in the 'Initial/Inherent' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Initial/Inherent Assessment tab. |
| History | Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Initial/Inherent Risk Assessment' tab.  Figure 3.7  Figure 3.8 |
Edit Risk Appetite Benchmark | Select this permission to enable an Edit button to edit the Risk Appetite Benchmark set for an organisation, in the Initial/Inherent Assessment tab for a Strategic Risk. |
|
Strategic Risk > Details > Current | View | Select this permission to enable the 'Current/Residual/Revised' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a risk record in the 'Current/Residual/Revised' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Current/Residual/Revised Assessment tab. |
| History | Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Current/Residual/Revised Risk Assessment' tab.   Figure 3.9 |
Strategic Risk > Details > Future | View | Select this permission to enable the 'Future' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a risk record in the 'Future' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Future Assessment tab. |
| History | Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Future Risk Assessment' tab.  Figure 3.10  Figure 3.11 |
Strategic Risk > Details > Review | View | Select this permission to enable the 'Risk Review' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a risk record's review details in the 'Risk Review' tab in Strategic Risk Assessments. |
| Edit Next Review Date | Select this permission to be able to edit and adjust the Next Review Date in the 'Risk Review' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Review tab. |
| History | Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Risk Review' tab.  Figure 3.12  Figure 3.13 |
Strategic Risk > Details > Document | View | Select this permission to enable the 'Documents' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a risk record's document attachments/links in the 'Documents' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Document tab. |
Strategic Risk > Details > Link | View | Select this permission to enable the 'Links' tab in Strategic Risk Assessments. |
| Edit | Select this permission to be able to edit and save a risk record's linkages to other entities in the 'Links' tab in Strategic Risk Assessments. |
| Edit by Risk's Secondary RO | Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Links tab. |
| Link Hierarchies | New hierarchies created in the Field Configuration page under Strategic Risks, will be listed one below the other here. Select these permissions to include these added hierarchies. |
Strategic Risk > Control | Add | Select this permission to display an Add New button to add controls in the Control Details Grid section for Strategic Risk records. |
| Edit | Select this permission to display an Edit button to edit Controls in the Control Details Grid section for Strategic Risk records. |
| Delete | Select this permission to display a Delete button to delete Controls in the Control Details Grid section for Strategic Risk records. |
| History | Select this permission to be able to view the History button when accessed a Control under Strategic risks, when clicked on a Control record displayed in the Control Record Grid. Once the History button is clicked, you will be able to view a control's history details in a popup window. |
Strategic Risk > Risk Solution | View | Select this permission to display Risk Solutions/Actions in a grid for Strategic Risks. This permission will be required additionally, to add, edit, or delete Risk Solutions. |
| Add | Select this permission to display an Add button to add Risk Solutions/Actions in a grid for Strategic Risks. |
| Edit | Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for Strategic Risks. |
| Edit by Risk's Secondary RO | Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for a Strategic Risk's Secondary Responsible Officer as well. |
| Edit (Start Date) | Select this permission to be able to edit a Risk Solution's/Action's Start Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks. |
| Edit (End Date) | Select this permission to be able to edit a Risk Solution's/Action's End Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks. |
| Delete | Select this permission to display a Delete button next to a Risk Solution/Action displayed in a grid and delete the same, for Strategic Risks. |
| Link | Select this permission to display a Link button when adding a Risk Solution/Action in the Risk Solutions/Actions Grid of Strategic Risks, to view and edit a linkage to a hierarchy. |
| View All RO | Select this permission to view a Strategic Risk record's Risk Solution/Action, only if you (the logged in user) are the Responsible Officer. |
Strategic Risk | Show Risk Prior To The Approved Stage | Select this permission to display Strategic Risks submitted as drafts prior to it being approved. Hence, enabling this will display both active and draft Strategic Risks. |
|
|
|
Operational Risk | Note: All Operational Risk permissions will follow the same rules as mentioned for Strategic Risks above, but for Operational Risk types. | |
|
| |
Project Risk | Note: All Project Risk permissions except the ones listed below additionally, will follow the same rules as mentioned for Strategic Risks above, but for Project Risk types. | |
Project Risk > Project > Register | View All | Select this permission to view all Projects regardless of its hierarchy or created user, under Administration > Projects. |
| View All Not Linked to Hierarchy | Select this permission to view Projects that are not linked to a hierarchy, under Administration > Projects. |
| View Node Only | Select this permission to view Projects that are only related to a node in the hierarchy, under Administration > Projects. |
| View Node with Children | Select this permission to view Projects that are under a node, along with its children, under Administration > Projects. |
| View All Created | Select this permission to view Projects only if you (logged in user) created it, under Administration > Projects. |
| View All RO | Select this permission to view Projects only if you (the logged in user) are the Responsible Officer, under Administration > Projects. |
|
|
|
Business Risk | Note: All Business/Corporate Risk permissions will follow the same rules as mentioned for Strategic Risks above, but for Business Risk types. | |
|
| |
Workspace | My Quick Update | Select this permission to view the 'My Quick Update' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the My Quick Update module. |
| Risk Register | Select this permission to view the 'Risk Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar. |
| Executive Intelligence | Select this permission to view the 'Executive Intelligence' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the Executive Intelligence page. |
| Risk Analysis | Select this permission to view the 'Risk Analysis' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Risk Analysis page. |
| My Settings | Select this permission to view the 'My Settings' menu item under the 'Workspace' section in the hamburger Menu, thereby allowing you to access My Settings. |
| Dashboard | Select this permission to view the 'Dashboard' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Dashboard. |
| Control Register | Select this permission to view the 'Control Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar. |
|
|
|
Framework > Risk Settings | View | Select this permission to view the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in view mode. This permission will be required additionally, to edit Risk Settings. |
| Edit | Select this permission to view and edit the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in edit mode. |
|
|
|
Quick Search | Quick Risk Action Search | Select this permission to view the 'Quick Risk Action Search' menu item under the 'Quick Search' section in the hamburger Menu, thereby allowing you to access the Quick Risk Action Search module. |
|
|
|
Administration > Client Details | View | Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in view mode. This permission will be required additionally, to edit Client details. |
| Edit | Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in edit mode. |
Administration > Hierarchy | Show Parents in Hierarchy | Select this permission to display the parent node in hierarchies. |
Administration > Hierarchy > Hierarchy Configuration | View | Select this permission to display the 'Hierarchy Configuration' menu item under the Administration > Hierarchy section in the hamburger Menu and access the Hierarchy Configuration page in View mode. |
Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy | View | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies. |
| Add | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and add new hierarchies, under Administration > Hierarchy in the hamburger Menu. |
| Edit | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and edit hierarchies listed, under Administration > Hierarchy in the hamburger Menu. |
| Delete | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and delete hierarchies listed, under Administration > Hierarchy in the hamburger Menu. |
Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy Level | View | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies. |
| Add | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab and add new hierarchies, under Administration > Hierarchy in the hamburger Menu. |
| Edit | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab and edit hierarchies listed, under Administration > Hierarchy in the hamburger Menu. |
| Delete | Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level tab and delete hierarchies listed, under Administration > Hierarchy in the hamburger Menu. |
Administration > Hierarchy > Hierarchy | View | Select this permission to display the 'Hierarchy' menu item under the Administration > Hierarchy section in the hamburger Menu and access the Hierarchy page in View mode. This permission will be required additionally, to add, edit, or delete Hierarchy details. |
| Add | Select this permission to access the 'Hierarchy' page and add new hierarchy structures, under Administration > Hierarchy in the hamburger Menu. |
| Edit | Select this permission to access the 'Hierarchy' page and edit exiting hierarchy structures, under Administration > Hierarchy in the hamburger Menu. |
| Delete | Select this permission to access the 'Hierarchy' page and delete exiting hierarchy structures, under Administration > Hierarchy in the hamburger Menu. |
Administration > Hierarchy | Hierarchy Navigation Pad | Select this permission to display the 'Hierarchy Navigation Pad' menu item under the Administration > Hierarchy section in the hamburger Menu and view a hierarchy's navigation path. |
Administration > Staff | View | Select this permission to display the 'Staff' menu item under the 'Administration' section in the hamburger Menu and access the Staff page in View mode. This permission will be required additionally, to add, edit, or delete Staff details. |
| Add | Select this permission to access the 'Staff' page and add new staff details, under 'Administration' in the hamburger Menu. |
| Edit | Select this permission to access the 'Staff' page and edit existing staff details, under 'Administration' in the hamburger Menu. |
| Delete | Select this permission to access the 'Staff' page and delete staff details, under 'Administration' in the hamburger Menu. |
Administration > Users | User List | Select this permission to display the 'User List' menu item under the Administration > Users section in the hamburger Menu and access the User List page listing down all users. |
Administration > Users > Manage Users | View | Select this permission to display the 'Manage Users' menu item under the Administration > Users section in the hamburger Menu and access the Manage Users page. This permission will be required additionally, to add, edit, or delete Users. |
| Add | Select this permission to access the 'Manage Users' page and add new user details, under Administration > Users in the hamburger Menu. |
| Edit | Select this permission to access the 'Manage Users' page and edit exiting user details, under Administration > Users in the hamburger Menu. |
| Delete | Select this permission to access the 'Manage Users' page and delete user details, under Administration > Users in the hamburger Menu. |
Administration > Users | Staff Grouping | Select this permission to display the 'Staff Grouping' menu item under the Administration > Users section in the hamburger Menu and access the Staff Grouping page to group staff members into organisation groups. |
Administration > Role Management | View | Select this permission to display the 'Role Management' menu item under the 'Administration' section in the hamburger Menu and access the Role Management page in View mode. This permission will be required additionally, to add, edit, or delete Roles. |
| Add | Select this permission to access the 'Role Management' page and add new roles to products, under 'Administration' in the hamburger Menu. |
| Edit | Select this permission to access the 'Role Management' page and edit existing roles of products, under 'Administration' in the hamburger Menu. |
| Delete | Select this permission to access the 'Role Management' page and delete roles of products, under 'Administration' in the hamburger Menu. |
Administration | Reassign Staff Responsibilities | Select this permission to display the 'Reassign Staff Responsibilities' menu item under the 'Administration' section in the hamburger Menu and access the Reassign Staff Responsibilities page to assign individually or in bulk responsibilities of staff. |
Administration > Actions > View | View All | Select this permission to view all Actions regardless of its hierarchy or created user, under 'Administration > Actions' in the hamburger Menu. |
| View All Not Linked to Hierarchy | Select this permission to view Actions that are not linked to a hierarchy, under Administration > Actions in the hamburger Menu. |
| View Node Only | Select this permission to view Actions that are only related to a node in the hierarchy, under Administration > Actions in the hamburger Menu. |
| View Node with Children | Select this permission to view Actions that are under a node, along with its children, under Administration > Actions in the hamburger Menu. |
| View All RO | Select this permission to view Actions only if you (the logged in user) are the Responsible Officer, under Administration > Actions in the hamburger Menu. |
Administration > Actions | Add | Select this permission to access the 'Actions' page and add new Actions, by displaying a 'New' button, under Administration > Actions in the hamburger Menu. |
| Delete | Select this permission to access the 'Actions' page and delete Actions, by displaying a Delete button, under Administration > Actions in the hamburger Menu. |
| History | Select this permission to access the 'Actions' page and view the history of Actions in an audit trail, by displaying History button, under Administration > Actions in the hamburger Menu. |
Administration > Actions > Tabs > Details | View | Select this permission to access the 'Actions' page and view an action's details in a Details tab, under Administration > Actions in the hamburger Menu. This permission will be required additionally, to edit Details. |
| Edit | Select this permission to access the 'Actions' page and edit and save an action's details in a Details tab, under Administration > Actions in the hamburger Menu. |
Administration > Actions > Tabs > Progress | View | Select this permission to access the 'Actions' page and view an action's progress details in a Progress tab, under Administration > Actions in the hamburger Menu. This permission will be required additionally, to edit Progress details. |
| Edit | Select this permission to access the 'Actions' page and edit and save an action's progress details in a Progress tab, under Administration > Actions in the hamburger Menu. |
Administration > Projects | View | Select this permission to access the 'Projects' page and view Projects in view only mode, under Administration > Projects in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Projects. |
| Add | Select this permission to access the 'Projects' page and add new Projects, by displaying a New button, under Administration > Projects in the hamburger Menu. |
| Edit | Select this permission to access the 'Projects' page and edit and save Project details, under Administration > Projects in the hamburger Menu. |
| Delete | Select this permission to access the 'Projects' page and delete Projects, under Administration > Projects in the hamburger Menu. |
Administration > Key Risk Indicators | View | Select this permission to access the 'Key Risk Indicators' page and view KRIs in view only mode, under Administration > Key Risk Indicators in the hamburger Menu. This permission will be required additionally, to add, edit, or delete KRIs. |
| Add | Select this permission to access the 'Key Risk Indicators' page and add new KRIs, by displaying a 'New' button, under Administration > Key Risk Indicators in the hamburger Menu. |
| Edit | Select this permission to access the 'Key Risk Indicators' page and edit and save KRI details, under Administration > Key Risk Indicators in the hamburger Menu. |
| Select this permission to access the 'Key Risk Indicators' page and delete KRIs, under Administration > Key Risk Indicators in the hamburger Menu. |
|
Administration > Risk Administration | View | Select this permission to access the 'Risk Administration' pages and view all sections under it in view only mode, under Administration > Administration in the hamburger Menu. This permission will be required additionally, to add, edit, or delete sections under the Risk Administration pages. |
| Add | Select this permission to access the 'Risk Administration' pages and add new items under these sections, by displaying a New button, under the Administration > Risk Administration pages in the hamburger Menu. |
| Edit | Select this permission to access the 'Risk Administration' pages and edit and save items under these sections, under Administration > Risk Administration in the hamburger Menu. |
| Delete | Select this permission to access the 'Risk Administration' pages and delete items under these sections, under Administration > Risk Administration in the hamburger Menu. |
Administration > Risk Administration > Email Rules | Show as Email Recipient | Select this permission to select users under this permission as the Email Recipient by default, for email triggers created under Administration > Risk Administration > Email in the hamburger Menu. |
Administration > System Settings | View | Select this permission to access the 'System Settings' page and view all settings under it in view only mode, under Administration > System Settings in the hamburger Menu. This permission will be required additionally, to edit and save details under System Settings. |
| Edit | Select this permission to access the 'System Settings' page and edit and save System Settings, under Administration > System Settings in the hamburger Menu. |
Administration > Configuration | View | Select this permission to access the 'Configuration' pages and view all sections under it in view only mode, under Administration > Configuration in the hamburger Menu. This permission will be required additionally, to edit and save sections under the Configuration pages. |
| Edit | Select this permission to access the 'Configuration' pages and edit and save items under these sections, under Administration > Configuration in the hamburger Menu. |
| ||
Risk Management | Strategic Risk Register | Select this permission to view the 'Strategic Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Strategic Risk Register. |
| Operational Risk Register | Select this permission to view the 'Operational Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Operational Risk Register. |
| Project Risk Register | Select this permission to view the 'Project Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Project Risk Register. |
| Business Risk Register | Select this permission to view the 'Business Risk Register' menu item under the 'Risk Management' section in the hamburger Menu and in the left-hand navigation bar under Risk Register, thereby allowing you to access the Business Risk Register. |
| Risk History | Select this permission to view the 'Risk History' menu item under the 'Risk Management' section in the hamburger Menu, thereby allowing you to access the History View page to view Audit Trail details. |
| ||
Reports | Risk Reports | Select this permission to access and view Risk related reports. |
| Report Uploader | Select this permission to be able to access the report uploader and report uploader setup. |
| ||
| Risk Approver | Select this permission for Risk Approvers to view Risk records to be approved/rejected under the My Quick Update page. |
| Risk Preparer | Select this permission for a Risk Preparer to create and submit Risk records as Drafts to be approved by a Risk Approver. |
| Risk Confidential | Select this permission to display a checkbox to mark a risk record as confidential, which will thereby display these risks only to the responsible officers. |
4. Controls – Static Permissions |
5. Controls – Flex Permissions |
Under Role Management (accessed via Camms.Risk Menu > Administration > Role Management > Add new/Edit. select the 'Controls' option, within the 'Product' dropdown.
This will load a Control specific permission tree where permissions can be assigned for areas such as Control Register, Control Detail page (Details tab, Documents tab, Links tab, and Control Assessment tab), and Control Settings.
Area | Permission | Description |
|---|---|---|
Control | Add | Ability to add a Control via quick links + icon and Add new option in the Control Register. |
| Delete | Ability to delete Controls via the Control Detail page. |
Control > Register | View All | All records in the Control Register will be displayed. This supersedes all other options. |
| View All Not Linked to Hierarchy | All Controls not linked to any hierarchy node will be displayed. |
| View Node Only | Controls directly linked to the logged in user’s hierarchy node will be displayed. |
| View Node with Children | Controls directly linked to the logged in user’s hierarchy node and the child nodes will be displayed. |
| View All Created | Controls created by the logged in user will be displayed. |
| View All Control Owner | Controls having the logged in user as the 'Control Owner', will be displayed. |
| View All Control Authoriser | Controls having the logged in user as the ‘Control Authoriser’ will be displayed. |
| View All Linked to My Risks | Controls linked to Risks which the logged in user is assigned as the ‘Risk Responsible Officer’, will be displayed in the Control Register. This permission will be applicable to the Risk Control Detail page as well. |
Control > Details > Control Details | View | Read-only permission for Control Details |
| Edit | Edit fields in the Control Detail page |
Control > Details > Document | View | Read-only permission for the Document tab |
| Edit | Upload/delete documents and URLs via the Document tab |
Control > Details > Links | View | Read-only permission for the Links tab |
| Edit | Create linkages via the Links tab |
Controls > Details > Control Assessment (This will be available only when the ‘Show Survey’ setting is enabled in the Camms.Risk Survey module.) | View | Read-only permission for the Control Assessment tab |
Control > Framework > Settings | View | Read-only permission for Control Settings options |
| Edit | Permission for editing Control Settings |
Permissions for the Control Record grid and the Control Record Detail page will remain within 'Risk Management' in the Product dropdown.
Note: If multiple Roles are assigned to a single user and if Edit permissions are provided to a single role, the user will be able to edit all Controls.
6. Staff Management |
Staff details are managed in the below two sections:
Staff Record: Administration > Staff
User Login: Administration > Manage Users
Refer the Administration – Users and Staff article for more information on staff.
Note: If you have purchased the Camms.Strategy product, the staff list and records will drive from the same list from the Camms.Strategy system and will be managed from the Camms.Strategy system administration area.
