Risk Register
Detects risk registers containing assessed vulnerabilities, likelihood ratings, and risk treatment plans.
- Type
- keyword_list
- Confidence
- medium
- Confidence justification
- Medium confidence: keyword-based detection requires corroborative evidence for accurate identification.
- Jurisdictions
- au
- Regulations
- IPA 2009 (Qld), Privacy Act 1988 (Cth), SOCI Act 2018 (Cth)
- Frameworks
- DISP, ISO 27001, NIST CSF
- Data categories
- governance, security
- Scope
- narrow
- Risk rating
- 8
Should match
Risk register: risk assessment with likelihood and consequence ratings— Test match 1Risk treatment plan for residual risk within risk appetite and tolerance— Test match 2Risk owner review: inherent risk rating and risk matrix update— Test match 3
Should not match
Risk taking in sports— Non-match 1At risk youth program— Non-match 2
Known false positives
- Generic risk in non-register contexts. Mitigation: Require register-specific terms like risk register, risk matrix, or risk owner.