Case studyFortune 100: 80% less compliance workRead the Story
RiskWatch
Risk support · documentation

Threats for Risk Assessment Product Application

User Guide: Threats for Risk Assessment Product Application Welcome to the Threats of our Risk Assessment application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail. Overview of Threats in Risk Assessment Product: An Overview of Threats in a Risk Assessment Product is a foundational section that outlines the potential sources of harm or compromise that the organization or system may face.

Updated 2026-05-14DocumentationRiskWatch platform

What is the Threats for Risk Assessment Product Application module in RiskWatch?

User Guide: Threats for Risk Assessment Product Application Welcome to the Threats of our Risk Assessment application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail. Overview of Threats in Risk Assessment Product: An Overview of Threats in a Risk Assessment Product is a foundational section that outlines the potential sources of harm or compromise that the organization or system may face. It sits inside the RiskWatch risk workspace and shares its data with assessments, the evidence vault, and the audit-pack export so a single change updates every downstream view.

How do I use the Threats for Risk Assessment Product Application screen?

Open the RiskWatch app, navigate to the Threats for Risk Assessment Product Application module from the main menu, and apply the filters or actions described in the guide below. Permissions follow your role profile, so admins see configuration, assessors see workflow actions, and viewers see read-only data. Saved views and filters persist per user across sessions.

Key concepts in this module
ThreatsRisk Register Modulethreatsconfidentialityintegrityavailability

User Guide: Threats for Risk Assessment Product Application

Welcome to the Threats of our Risk Assessment application! This feature allows users to create, edit and delete the Vulnerabilities. This guide will walk you through the functionality and capabilities of the Vulnerabilities in detail.

  1. Overview of Threats in Risk Assessment Product:
  • An Overview of Threats in a Risk Assessment Product is a foundational section that outlines the potential sources of harm or compromise that the organization or system may face. This helps identify, evaluate, and prioritize risks in order to develop effective mitigation strategies.
  1. What are threats in risk register sub module in risk assessment product?
  • The Risk Register Module is a centralized tool used to log, track, and manage risks across an organization. Because it contains sensitive and strategic information, it can be a target for various threats that may compromise its confidentiality, integrity, or availability.
  1. Threats Questionnaires
  2. How to open Threat sub module in risk register module?
  • The exact steps to open the Threats sub-module within a Risk Register Module will depend on the specific risk management software or platform you are using (e.g., Service Now, Archer, Risk Watch, Logic Manager, custom-built systems, etc.).
  • Step-by-Step Navigation:
  • Log in to the Risk Assessment application using valid credentials.
  • From the Main Menu, go to the Risk Register module.
  • Locate and select a specific risk from the list to view its details.
  • Inside the Risk Register module page, navigate to the Threats tab or section.
  1. How to create New Threats in Risk Register sub module in Risk Assessment Product?
  • Creating a new threat in the Risk Register sub-module is a core task in managing risk. While the exact process may vary depending on the platform (e.g., Archer, Service Now GRC, Metric Stream, Logic Manager, custom tools), the general workflow is usually similar.
  • Step-by-Step Guide to Create a New Threats:
  • Navigate to the Main Menu and select the Risk Register module.
  • Click on Threats sub module link.
  • Click on + icon.
  • Fill in the required fields in the vulnerability creation form:
  • Threat Name: In a risk register module within a risk assessment product, the “Threat Name” is a concise, descriptive label given to a specific threat—an event, actor, or condition that could potentially exploit a vulnerability and cause harm to an organization’s assets, operations, or reputation.
  • It is a mandatory field.
  • Threat Category: In the “Add Threats” page of the Risk Register Module in a risk assessment product, the Threat Category is a classification field used to group threats based on their origin, nature, or type. This helps organize threats systematically, prioritize risk responses, and align with frameworks like ISO 27005, NIST SP 800-30, or MITRE.
  • Status Type: In the Threats section of the Risk Assessment product, the Status Type (Active/Inactive) is used to indicate the operational state of a vulnerability record—whether it is currently relevant and in use, or not.
  • Likelihood: The "Likelihood" field in the Add Threats page of the Risk Register module is used to record an estimate of how probable or likely it is that a particular threat will occur and impact the organization.
  • It helps assess the level of risk associated with that threat when combined with the impact rating.
  • Impact: The Impact field in the Add Threats page of the Risk Register module represents the potential consequences or severity if the threat were to materialize and cause harm to the organization.
  • Threat Rating: The Threat Rating field is a calculated or assigned score that represents the overall level of risk posed by a specific threat. It typically combines factors like Likelihood and Impact to give a single value indicating how serious the threat is.

  1. How to Adding Threat using Bulk upload in risk assessment product?
  • Many risk assessment products support bulk upload of threats to speed up data entry, especially when dealing with large numbers of threats.
  • Steps for Bulk Upload of Threats:
  • Step 1: Prepare the Bulk Upload File
  • Usually, the system requires a CSV, Excel, or similar format.
  • The file should contain columns matching the fields in the Threats module, such as:
  • Threat Name
  • Threat Category
  • Description
  • Likelihood
  • Impact
  • Step 2: Access the Bulk Upload Feature
  • Log into the risk assessment product.
  • Navigate to the Risk Register Module.
  • Open the Threats sub-module or management page.
  • Look for an option like:
  • “Bulk Upload”
  • “Import Threats”
  • “Upload CSV/Excel”
  • Step 3: Upload the File
  • Click Upload or Import.
  • Select the prepared file.
  • The system may provide a mapping interface where you match your file columns to the system fields.
  • Confirm the mappings.
  • Step 4: Validate and Confirm
  • The system may run a validation to check for:
  • Missing required fields
  • Invalid values (e.g., unrecognized Likelihood ratings)
  • Duplicate entries
  • Fix any errors flagged.
  • Step 5: Complete the Upload
  • Submit the file for import.
  • The system will add the threats in bulk to the Risk Register.
  • Step 6: Review and Verify
  • After upload, verify the imported threats in the Threats list.
  • Check if any data requires manual adjustment.

  1. How to edit Threats in risk register in risk assessment product?
  • Editing threats in the Risk Register allows you to update threat details such as name, category, likelihood, impact, or description. The exact steps may vary depending on your specific platform (e.g. RSA Archer, Service Now GRC, Logic Manager, etc.), but most systems follow a similar process.
  • Step-by-Step Guide to Edit a Threats:
  • Open the Threats screen.
  • Go to the Action column.
  • Click the Edit icon to update the vulnerability details in the following fields:
  • Threats Name
  • Status Type
  • Threat Category
  • Likelihood
  • Impact
  • Threat Rating
  • Description Text
  • Click the ‘Save’ button.
  • After editing, the updated Threats should be reflected in vulnerability home page.

  1. How to delete the Threats in risk register in risk assessment product?
  • Deleting a threat from the Risk Register removes it from the risk profile and helps keep the risk data clean and relevant. The exact steps can vary by platform (e.g., Service Now, RSA Archer, Logic Manager, or a custom system), but here is a general process followed across most tools.
  • Step-by-Step Guide to Delete a Vulnerability:
  • Open the Threats screen.
  • Go to the Action column.
  • Click on the Delete icon.
  • a confirmation message should be displayed.
  • Check whether when user click on “Yes” button selected Threats should be deleted. And when user click on “No” button it should be on the same page.

  1. Can we Search records on the Threats screen?
  • Yes, we can search records in Threats home page.
  • The Search bar is typically available at the top of the Vulnerabilities list or table.
  • You can search by keywords related to:
  • Threat Name
  • Threat Category
  • Description Text
  • Likelihood
  • Impact
  • Threat Rating
  • Status Type
  • As you type, the system dynamically filters and displays matching results.
  • Steps to Use the Search Function:
  • Go to the Threat section under the Risk Register.
  • Locate the Search field above the list/table.
  • Enter a keyword (e.g., "Firewall", "High", "John Doe").
  • The list wills auto-update based on your input.
  • If no matching records are found, a message like "No records found" will appear.

  1. How to download excel export in Threat?
  • Exporting threat data to Excel is a common feature in most risk assessment products to support reporting, auditing, or offline analysis.
  • Step-by-Step Guide to Download Excel Export:
  • Go to the Main Menu → Select Risk Register.
  • Click on the specific risk record if vulnerabilities are scoped per risk.Or access the Threat screen directly if available as a main tab.
  • Look for a button labeled “Export”, “Download Excel”, or a download icon in the top-right corner of the vulnerabilities table.
  • This button may sometimes be named “Excel Export”.
  • Clicking the button will generate and download an Excel file (.xlsx) containing the vulnerability data.

  1. Can we hide/seek Threat screen columns?
  • Yes — most modern risk assessment products allow you to customize the visibility of columns on the Threats screen in the Risk Register module. This helps users focus on relevant data and streamline their view based on their role or use case.
  • Step By Step guide to Hide/Show Columns:
  • Click on "View/Hide Columns" or "Column Settings"
  • Look for an option such as:
  • "Click here to view/hide details"
  • Column settings icon (⚙️) or a dropdown menu above the vulnerability table.
  • Select/Deselect Columns:
  • A popup or panel will appear listing all available columns.
  • Uncheck the boxes next to the columns you want to hide.
  • Check the boxes for the columns you want to display.
  • Apply Changes:
  • The table will update immediately based on your selection.
  • Some systems may have a “Save” or “Apply” button.

  1. What are events in Threat settings module?
  • In the Threat Settings module of a risk assessment product, "Events" typically refer to specific security incidents, occurrences, or triggers that are associated with or generated by a threat. These events help track how threats materialize, how often they occur, and their impact on assets or systems.
  • The Events section should include the following features:
  • Search Field:
  • When the user enters text in the Events search field, matching records should be displayed on the page.
  • If no matching data is found, the message "No records found" should be displayed.
  • Excel Export:
  • When the user clicks on the Excel Export link, an Excel sheet containing the General Settings events should be downloaded successfully.

III. Click Here to View/Hide Details

  • When the user clicks on the View/Hide Columns icon, a popup should appear showing a list of columns.
  • If the user unchecks any column, that column should be hidden from the page.
  • Checked columns should remain visible on the page.

IV. View Details

  • When an admin user clicks on the View Details icon, an Audit Details popup should be displayed on the page.

Common questions about Threats for Risk Assessment Product Application

What does the Threats for Risk Assessment Product Application module integrate with?+

The Threats for Risk Assessment Product Application screen shares records with the rest of the RiskWatch risk suite: Threats, Risk Register Module, threats, confidentiality, plus the cross-mapping engine that connects risk controls to other frameworks like ISO 27001, SOC 2, HIPAA, NIST 800-53, and PCI DSS. There is nothing to wire up, the integrations are native.

Where does the Threats for Risk Assessment Product Application fit in the RiskWatch risk workflow?+

It is one of 27 screens that make up the Risk module. Most teams reach it from the risk dashboard while running an assessment or reviewing posture. See the related-topics sidebar for the workflows it feeds into and the upstream screens that feed it.

References and related standards

Standards and references the Threats for Risk Assessment Product Application module aligns with, plus related RiskWatch documentation.

Stuck on this workflow?

Talk to support, or have a solutions engineer walk you through the workflow on your tenant.

Contact supportBook a walkthrough
All Risk support topics
Request a Demo