When accessing the Risk Management module, you’ll need to configure the units in which risks will be assessed.
Click on the Units menu:
The system will redirect you to a new screen. Click Configure Unit:
You’ll be taken to a screen with several configuration steps. Here’s how to fill them out:
You should begin with Step 1 – Basic Information. Click the Organizational Unit field and select one of the existing units, or click Add New:
If you choose to add a new unit, a new screen will open. Enter the name of the Organizational Unit, then click Add.
To cancel the registration, click Cancel or the X to close the window.
In the Responsible field, select the user who will be responsible for assessing the risks for this unit.
Once the basic information is defined, proceed to fill out Step 2 – Risk Reassessment Period. In the Period field, select how often risks for this unit will be reassessed.
Next, in Step 3 – Risk Appetite Configuration, you must select the appropriate risk matrix model for your organization. Choose from the following options 3x3, 4x4 or 5x5
Once a matrix is selected, the Probability and Impact axes will be automatically adjusted with the following labels:
3x3: Low, Moderate, High
4x4: Very Low, Low, High, Very High
5x5: Very Low, Low, Moderate, High, Very High
In the Edit Axis and Quadrant Labels section, you can modify the names of the Quadrants, Probability Axis, and Impact Axis according to your organization's terminology.
After making the necessary changes, click Save, or Cancel to discard them. 
Important: Once the risk matrix is saved, it can no longer be edited.
Considering the criteria detailed below:
Retain | The risk is not significant. | No preventive action is required — only monitoring. |
Mitigate | The risk is significant but not critical. | Preventive actions should be implemented. |
Avoid | The risk is critical. | Actions must be taken to eliminate the risk source or the activity that generates the risk. |
To define the quadrants, simply click on each one until the desired treatment option (Retain, Mitigate, Avoid) is displayed:
Once the evaluation method for risks is fully defined, click Next:
In Step 4 – Processes and Responsible Users, you must define which process(es) will be evaluated for risks within the selected organizational unit.
In the Process field, select the desired process.
If the process hasn’t been registered yet, click Add New.
Clicking Add New will open a new screen. Enter the name of the process, then click Add.
The system will display a confirmation message: "Process registered successfully!"
If you no longer wish to proceed with the registration, click Cancel or the X in the top corner to close the screen.
In the Responsible field, select the user who will assess the risks for that process.
If the desired user isn’t listed, they must first be registered in the system’s settings.
Optionally, you can define a deadline for the responsible user to complete the risk identification. Enter the date in the designated field.
Once all required fields are filled, click Add.
You may repeat this step to register as many processes as needed. When finished, click Conclude.
After completing the process, the system will confirm that the organizational unit has been successfully registered.
You may then choose to Register another unit, or Go to Tasks.
