The Cybersecurity Risk Register is used to record control deficiencies, etc. that contribute to an organization’s risk portfolio.
Risk registers are a widespread utility among cybersecurity professionals that allow practitioners to track and measure risks in one place. This type of reporting quickly aligns teams to the initiatives that matter and save us valuable resources, time and labor. Risks are primarily sourced from Cybersecurity Risk Assessments, but are also added from various tools such as Qualys, Cisco AMP, etc and discussions that occur on campus. The Risk Register displays a list of all risks recorded and displays various risk details, including the residual risk level, risk source, risk owner, risk stage, and the treatment status of the risk.
If you have questions about the UW-Madison Risk Register, please contact the Office of Cybersecurity at email@example.com.