/
Risk Permissions and Staff Management

Risk Permissions and Staff Management

This article contains:

1. Permissions

Camms.Risk permissions has the following formats:

  • Static permission structure – designated roles entailing a standard set of capabilities around the system.

  • Flexible permission structure – dynamic roles with the ability to define the capabilities for the roles are.

Note: Refer the article 'Administration Role Management' in Camms.Strategy for guidance on setting up Flexible permissions.

2. Risk – Static Permissions

Risk Management is available at a read-only access level for most users, with edit access given via specific responsibilities and/or security roles as indicated in the below table. Permissions can be accessed via Manage Users under Administration for a staff member, where a user role can be created and assigned.

Security Level

Project Risk

Operational Risk

Strategic Risk

Corporate Risk

Register Access

Risk Actions

Risk Controls

Risk Settings

Administration Settings

Security Level

Project Risk

Operational Risk

Strategic Risk

Corporate Risk

Register Access

Risk Actions

Risk Controls

Risk Settings

Administration Settings

Administrator

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

All

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Edit

View, Edit

Risk Manager

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Create, Edit, Delete

All

View, Create, Edit, Delete

View, Create, Edit, Delete

View, Edit

None

Business Unit Manager

View All, Create and Edit (Only to assigned Business Unit)

View All, Create and Edit (Only to assigned Business Unit)

View All, Create and Edit Only Assigned Records

View All, Create and Edit Only Assigned Records

All

View, Create, Edit (Only to assigned Business Unit)

View, Create, Edit (Only to assigned Business Unit)

Read Only

None

Director

View All, Create, Edit (Only to assigned Directorate and Business Unit)

View All, Create, Edit (Only to assigned Directorate and Business Unit)

View All, Create and Edit Only Assigned Records

View All, Create and Edit Only Assigned Records

All

View, Create, Edit

(Only to assigned Directorate and Business Unit)

View, Create, Edit

(Only to assigned Directorate and Business Unit)

Read Only

None

Operational Risk Editor

View and Edit Only Assigned Records

View, Create, Edit, Delete

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Operational Only

View, Create, Edit

View, Create, Edit

Read Only

None

Operational Risk Viewer

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Operational Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Project Risk Editor

View, Create, Edit, Delete

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Project Only

View, Create, Edit

View, Create, Edit

Read Only

None

Project Risk Viewer

View All, Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View and Edit Only Assigned Records

Project Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Strategic Risk Editor

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View, Create, Edit, Delete

View, Create, Edit, Delete

Strategic and Corporate Only

View, Create, Edit

View, Create, Edit

Read Only

None

Strategic Risk Viewer

View and Edit Only Assigned Records

View and Edit Only Assigned Records

View All, Edit Only Assigned Records

View All, Edit Only Assigned Records

Strategic and Corporate Only

View, Create, Edit Only Assigned Records

View, Create, Edit Only Assigned Records

Read Only

None

Operational User

View, Edit Only Assigned Records

View, Edit Only Assigned Records

View, Edit Only Assigned Records

View, Edit Only Assigned Records

No access

View, Edit Only Assigned Records

View, Edit Only Assigned Records

Read Only

None

Confidential

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

All

View and Edit Only Assigned Records, View all confidential records

View and Edit Only Assigned Records, View all confidential records

Read Only

None

 

Note: See article Risk Approval for more details of the approval process and permissions related to Risk Approver and Risk Preparer.

Important: When the 'Security to view risks' setting is switched ON, only the users with create and/or edit permissions for risks can view the relevant risk details. Create/edit privileges for the risk areas are based on the existing user permissions. This setting will be activated only upon request. If you wish to activate this setting, please contact Camms Helpdesk.

Any other permissions available in this area will be explained under the respective product areas from which they are coming from. The Branch Risk Coordinator and Division Risk Coordinator permissions are obsolete, and therefore will be soon removed from the system.

  • Operational Users can only update their own risks (project, operational, corporate, and strategic risk) if the operational user is a responsible officer for that particular risk.
    Further, Operational Users can NOT view Dashboard, Dashboard/EIS/Risk Analysis in the left-hand navigation bar (for Static Hierarchy only).

  • Action Owners can only update the risk actions which are assigned to them.

  • Executive Intelligence Permission will give a user access to the EIS and Analysis areas in the solution. The records displayed for each user under these areas can be found under the respective articles for these sections. 

The following additional rules apply within the Risk Management area:

Risk Settings area

  • This area is only accessible to individuals with the System Administrator and Risk Manager roles.

Strategic Risk area

  • This area will be editable by individuals with the Administrator, Strategic Planner, Risk Manager, and Strategic Risk Editor roles.

  • Responsible Officers for risk issues will be able to undertake risk assessments in the Strategic Risk area.

Operational Risk area

  • This area will be editable by individuals with the Administrator, Risk Manager, and Operational Risk Editor roles.

  • Risks and assessments will be editable by individuals with Director and Business Unit Manager roles.

  • Responsible Officers for risks will be able to undertake risk assessments in the Operational Risk area.

Project Risk area

  • This area will be editable by individuals with the Administrator, Risk Manager, and Project Risk Editor roles.

  • Risk Issues and assessments will be editable by the relevant Director and Business Unit Manager, and Action owner roles.

  • Responsible Officers for risk will be able to undertake risk assessments in the Project Risk area.

Note: The Secondary Risk Responsible Officer has the same rights as the Primary Risk Responsible Officer. However, the Secondary Risk Responsible Officer will not be allowed to modify the Primary Risk Responsible Officer, or the status of the risk assessment.

3. Risk – Flex Permissions

Under Role Management (accessed via Camms.Risk Menu > Administration > Role Management > Add New/Edit. select the CAMMSRISK option, within the 'Product' dropdown.

Figure 3.1

Area

Permission

Description

Area

Permission

Description

 

Show Planning Hierarchy

Select this permission to display the planning hierarchy tab under the Executive Intelligence section and under the Links tab when adding a Hierarchy Linkage for a Risk record.

Note: If you do not have this permission enabled, you will not be able to link a risk to the Planning hierarchy.

Figure 3.2

 

 

 

Strategic Risk

Add

Select this permission to be able to add Strategic Risk types via the left-hand navigation and via the Control Register Add New button.

Figure 3.3

 

Delete

Select this permission to be able to delete Strategic Risk types.

Figure 3.4

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under a 'Details' tab.

Figure 3.5
Figure 3.6

Strategic Risk > Register

View All

Select this permission to view all Strategic Risk records regardless of its hierarchy or created user, in the Strategic Risk Register.

 

View All Not Linked to Hierarchy

Select this permission to view Strategic Risk records that are not linked to a hierarchy.

 

View Node Only

Select this permission to view Strategic Risk records that are only related to a node in the hierarchy.

 

View Node with Children

Select this permission to view Strategic Risk records that are under a node, along with its children.

 

View All Created

Select this permission to view Strategic Risk records only if you (logged in user) created it.

 

View All RO

Select this permission to view Strategic Risk records only if you (the logged in user) are the Responsible Officer.

Strategic Risk > Details > Initial

View

Select this permission to enable the 'Initial/Inherent' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a Risk record in the 'Initial/Inherent' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Initial/Inherent Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Initial/Inherent Risk Assessment' tab.

Figure 3.7
Figure 3.8

Edit Risk Appetite Benchmark

Select this permission to enable an Edit button to edit the Risk Appetite Benchmark set for an organisation, in the Initial/Inherent Assessment tab for a Strategic Risk.

 

Strategic Risk > Details > Current

View

Select this permission to enable the 'Current/Residual/Revised' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record in the 'Current/Residual/Revised' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Current/Residual/Revised Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Current/Residual/Revised Risk Assessment' tab.

Figure 3.9

Strategic Risk > Details > Future

View

Select this permission to enable the 'Future' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record in the 'Future' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Future Assessment tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Future Risk Assessment' tab.

Figure 3.10
Figure 3.11

Strategic Risk > Details > Review

View

Select this permission to enable the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's review details in the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit Next Review Date

Select this permission to be able to edit and adjust the Next Review Date in the 'Risk Review' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Review tab.

 

History

Select this permission to be able to view the History button under Strategic risks. Once the History button is clicked, you will be able to view history details in a popup window under the 'Risk Review' tab.

Figure 3.12
Figure 3.13

Strategic Risk > Details > Document

View

Select this permission to enable the 'Documents' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's document attachments/links in the 'Documents' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Document tab.

Strategic Risk > Details > Link

View

Select this permission to enable the 'Links' tab in Strategic Risk Assessments.

 

Edit

Select this permission to be able to edit and save a risk record's linkages to other entities in the 'Links' tab in Strategic Risk Assessments.

 

Edit by Risk's Secondary RO

Select this permission for a Risk record's Secondary Responsible Officer to be able to edit a Strategic Risk's Links tab.

 

Link Hierarchies

New hierarchies created in the Field Configuration page under Strategic Risks, will be listed one below the other here. Select these permissions to include these added hierarchies.

Strategic Risk > Control

Add

Select this permission to display an Add New button to add controls in the Control Details Grid section for Strategic Risk records.

 

Edit

Select this permission to display an Edit button to edit Controls in the Control Details Grid section for Strategic Risk records.

 

Delete

Select this permission to display a Delete button to delete Controls in the Control Details Grid section for Strategic Risk records.

 

History

Select this permission to be able to view the History button when accessed a Control under Strategic risks, when clicked on a Control record displayed in the Control Record Grid. Once the History button is clicked, you will be able to view a control's history details in a popup window.

Strategic Risk > Risk Solution

View

Select this permission to display Risk Solutions/Actions in a grid for Strategic Risks. This permission will be required additionally, to add, edit, or delete Risk Solutions.

 

Add

Select this permission to display an Add button to add Risk Solutions/Actions in a grid for Strategic Risks.

 

Edit

Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for Strategic Risks.

 

Edit by Risk's Secondary RO

Select this permission to display an Edit button next to a Risk Solution/Action displayed in a grid and edit the same, for a Strategic Risk's Secondary Responsible Officer as well.

 

Edit (Start Date)

Select this permission to be able to edit a Risk Solution's/Action's Start Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks.

 

Edit (End Date)

Select this permission to be able to edit a Risk Solution's/Action's End Date of a Risk Solution/Action record, displayed in a grid, for Strategic Risks.

 

Delete

Select this permission to display a Delete button next to a Risk Solution/Action displayed in a grid and delete the same, for Strategic Risks.

 

Link

Select this permission to display a Link button when adding a Risk Solution/Action in the Risk Solutions/Actions Grid of Strategic Risks, to view and edit a linkage to a hierarchy.

 

View All RO

Select this permission to view a Strategic Risk record's Risk Solution/Action, only if you (the logged in user) are the Responsible Officer.

Strategic Risk

Show Risk Prior To The Approved Stage

Select this permission to display Strategic Risks submitted as drafts prior to it being approved. Hence, enabling this will display both active and draft Strategic Risks.

 

 

 

Operational Risk

Note: All Operational Risk permissions will follow the same rules as mentioned for Strategic Risks above, but for Operational Risk types.

 

 

Project Risk

Note: All Project Risk permissions except the ones listed below additionally, will follow the same rules as mentioned for Strategic Risks above, but for Project Risk types.

Project Risk > Project > Register

View All

Select this permission to view all Projects regardless of its hierarchy or created user, under Administration > Projects.

 

View All Not Linked to Hierarchy

Select this permission to view Projects that are not linked to a hierarchy, under Administration > Projects.

 

View Node Only

Select this permission to view Projects that are only related to a node in the hierarchy, under Administration > Projects.

 

View Node with Children

Select this permission to view Projects that are under a node, along with its children, under Administration > Projects.

 

View All Created

Select this permission to view Projects only if you (logged in user) created it, under Administration > Projects.

 

View All RO

Select this permission to view Projects only if you (the logged in user) are the Responsible Officer, under Administration > Projects.

 

 

 

Business Risk

Note: All Business/Corporate Risk permissions will follow the same rules as mentioned for Strategic Risks above, but for Business Risk types.

 

 

Workspace

My Quick Update

Select this permission to view the 'My Quick Update' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the My Quick Update module.

 

Risk Register

Select this permission to view the 'Risk Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar.

 

Executive Intelligence

Select this permission to view the 'Executive Intelligence' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar, thereby allowing you to access the Executive Intelligence page.

 

Risk Analysis

Select this permission to view the 'Risk Analysis' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Risk Analysis page.

 

My Settings

Select this permission to view the 'My Settings' menu item under the 'Workspace' section in the hamburger Menu, thereby allowing you to access My Settings.

 

Dashboard

Select this permission to view the 'Dashboard' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar under Analysis, thereby allowing you to access the Dashboard.

 

Control Register

Select this permission to view the 'Control Register' menu item under the 'Workspace' section in the hamburger Menu and in the left-hand navigation bar.

 

 

 

Framework > Risk Settings

View

Select this permission to view the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in view mode. This permission will be required additionally, to edit Risk Settings.

 

Edit

Select this permission to view and edit the 'Risk Settings' menu item under the 'Framework' section in the hamburger Menu, thereby allowing you to access all Risk Settings in edit mode.

 

 

 

Quick Search

Quick Risk Action Search

Select this permission to view the 'Quick Risk Action Search' menu item under the 'Quick Search' section in the hamburger Menu, thereby allowing you to access the Quick Risk Action Search module.

 

 

 

Administration > Client Details

View

Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in view mode. This permission will be required additionally, to edit Client details.

 

Edit

Select this permission to view the 'Client Details' menu item under the 'Administration' section in the hamburger Menu and access the Client Details page in edit mode.

Administration > Hierarchy

Show Parents in Hierarchy

Select this permission to display the parent node in hierarchies.

Administration > Hierarchy > Hierarchy Configuration

View

Select this permission to display the 'Hierarchy Configuration' menu item under the Administration > Hierarchy section in the hamburger Menu and access the Hierarchy Configuration page in View mode.

Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy

View

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies.

 

Add

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and add new hierarchies, under Administration > Hierarchy in the hamburger Menu.

 

Edit

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and edit hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

 

Delete

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy' tab and delete hierarchies listed, under Administration > Hierarchy in the hamburger Menu.

Administration > Hierarchy > Hierarchy Configuration > Tabs > Hierarchy Level

View

Select this permission to access the 'Hierarchy Configuration' page's 'Hierarchy Level' tab in View mode under Administration > Hierarchy in the hamburger Menu. This permission will be required additionally, to add, edit, or delete Hierarchies.