Risk Quantification -

Good morning,
I'm starting to work with Primavera Risk Analysis and i would like to sort a doubt in regards the Quantification and calculations the system did on an exercise i launched some days ago. (Real information)
I built up the Risk Register and assigned the Qualitative and Quantitative information as per Risk Matrix (5x5) in which:
for e.g for the first risk i have asigned on premitigated scenario:
Qualitative evaluation: Probability 30% (L) and VH for the Schedule Impact (>5 days) - Based on matrix
Impacted 21 Tasks distributing the impact by series (Load all the impact within the activities) - it means
Triangular Distribution:
(All tasks the same)
Minimum = 1
Most Likely = 1
Maximum = 1
My doubt is when i'm exporting the tabular layout and see the Quantification as follow:
(All tasks the same)
Minimum Duration = 4
Most Likely Duration = 5
Maximum Duration = 7
With VH Total Quantitative value of 105
I've been looking on the tool but i have not found any clue about the calculations or the variable the program takes to calculates these Durations.
Can any please help me to interpretate these situation and the way Primavera Risk Analysis based on the Qualitative and Quantitative infromation given through Risk Register calculates these 3 Durations?
Thanks i will really appreciate the feedback.

Hi,
In order to use your Exposure Risk Ratings, You can use the below steps:
1. After you create a Exposure Risk Category, You should specify it in Risk Matrix
2. Go to Risk Matrix and provide your "ZR1" Category in each of the Risk ratings for Severity of Risk
3. Similarly specify "ZR1" Risk category in each of the Risk ratings for Probability of the Risk
4. Now, for each of the Risk rating, maintain the Risk Matrix - Here you specify what should be the Final Rating when the Severity and Probability is given.
5. Now you will be able to use the Exposure Risk Ratings of your own in the Risk Assessment.
Hope it Helps,
Raghu

Similar Messages

  • Fidelity rating and risk rating.

    Hi.
    what is difference between fidelity rating and risk rating?

    what is difference between fidelity rating and risk rating?
    Signature Fidelity Rating (SFR) - A weight associated with how well a signature might perform in the absence of specific knowledge of the target. The Signature Fidelity Rating is configured per signature and indicates how accurately the signature detects the event or condition it describes.
    Signature Fidelity Rating is calculated by the signature author on a per-signature basis. The signature author defines a baseline confidence for the accuracy of the signature in the absence of qualifying intelligence on the target. It represents the confidence that the detected behavior would produce the intended effect on the target platform if the packet under analysis were allowed to be delivered. For example, a signature that is written with very specific rules (specific regular expression) has a higher Signature Fidelity Rating than a signature that is written with generic rules.
    Calculated Risk Rating (RR) - A value between 0 and 100  that represents a numerical quantification of the risk associated with a  particular event on the network. Risk Ratings let you prioritize alerts that need  your attention.
    The Risk Rating is calculated from  several components, some of which are configured, some collected, and  some derived. The Risk Rating factors take into consideration the  severity of the attack if it succeeds, the fidelity of the signature,  the reputation score of the attacker from the global correlation data,  and the overall value of the target host to you. The full formula used for calculating Risk Rating can be found in Figure 7-2 (Risk Rating Formula) of the Configuration Guide, and the values used are described in more detail in the section above that figure.

  • At the risk of sounding like CL official and/or brown nose. l

    To start I mean no dissrespect to anyone in any way or form, but how the hell is it possiable that anyone can have issues with their Creative cards?
    I mean Look at the stickies. Pretty much every know issues is covered and every possible set up option is there for you.
    The day I bought my Audigy 2 ZS, about a year or more ago the only issue i had was 5. sound in Movies. After 2 seconds of reading the FAQ it was solved and the card ran perfectly for the entire time i had it. I have sold that card now and the guy I sold it to had zero issues also.
    I have got my self an X-FI Platnium. Now before i got the card i spent some time reading the FAQ and researching the card for all possiable issues I may encounter. From the moment i put the card in to the moment the last application was installed to the final re-boot i've had not issue what so ever. the card works flawlessly.
    Now, again no dissrespect to those having issues but why blame CL? Why not take the time and look over your system. ENSURE ALL componants are of high quality. You cant use generic RAM on a high end board with no name power surrplies and have fans all over the place, plus running firewalls, Anti virus, other programmes in the background, old bios, old drivers, messy Windows install, crowed desktop, fancy tools running, every possiable USB port acti've, firewire cards, TV cards and the expect everything to run fine.
    Take note that PCs are not and have never been designed to run games. Sure the hardware is but the software is not and never will be until Bill Gates is dead and then the dorr is open for a better running OS that allows games to run without all the over heads of Windows not to mention other apps like Firewalls and Antivirus.
    Simply put, if you really want to play games and have them run at their best, keep your syste, simple, but still high end enough to run games.
    EG. You dont need TV cards, firewire cards, Firewalls, Anti-virus, more than 3 USB devices ( mouse, K/B and Pad ) You dont need anything in startup programmes to run games.
    Also, low end hardware = crashes - BSOD and all other kinds of issues. Dont skimp on hardware. You want to play games right? Spemd the cash and get the best RAM, get a top high end board. Dont use cheap leads and for the love of god get a GOOD, nah get the BEST POSSIABLE PSU you cant.
    Keep your system clean from dust.
    Clean temps files EVERY day.
    Defrag and scan disc everyday.
    Set ALL antivirus to manual in services.msc and only run it when you want to.
    Forget firewalls. Just because your firwall may block a few things dont mean the other million or so bots are not getting in looking for numbers. Ive never used a firewall and see, well whats the point? if a hacker really wants in hwe will get in plus if you dont store credit card numbers and use your credit card online then who cares.
    The latest drivers are not always the greatest. Not just for sound but for everything.
    Anyway, i could go on for days but ill leave it there and hope that some of you understand my point.
    Why blame CL all the time? Your other hardware parts, even a modem, yep a simple PCI modem can cause all kinds of crazy things so look it over.
    Is you mainboard a GOOD brand ? Asus - Abit ?
    Ram.
    HDD.
    Cable and leads old?
    Dusty?
    Power Surrply unit's Just because it says 450 watt dont mean that its good enough. YOU MUST HAVE THE RAILS AT THE REQUIRED VOLT ALL THE TIME. A single drop and thats it, crash.
    Too many fans hogging amps?
    Too many Driver hogging volts?
    FDD, bah, dont need on so remove it.
    MAIN BOARD BIOS SET UP right?
    Look at your hardware, stripe it down a bit. IF you really need TV cards and firewire and stuff. build cheap PC for that job and keep your Gaming PC clean and free.
    I for one highly reconmend Creative sound to anyone i build a PC for simply because they are the best. You just need to spend the time and cash and get your system balenced, keep it tidy and junk free, spend a few days trying out different driver combo's until it hits the sweet spot.
    All the best.

    Pretty much all I got out of your post was a pro CL fanboy rant. I'm glad your card works for you. Do all XFI owners have problems? No. Do some have problems? Yes.
    You said:
    "but how the hell is it possible that anyone can have issues with their Creative cards? "
    Are you for real? Is it not possible to have problems with Creative cards, no matter how much time you put into trying to get it to work? If you had the scp issue, you would understand. You would try everything possible to get it fixed. In the end, if it still puked out the scp, you would not have posted this topic and ended up disgruntled like many of us. Do you not think CL support try's to walk people through many of the things you posted to try to fix it's Should half the stuff you posted be listed on the box as a warning so Jim Johnny down the block does'nt make a mistake by buying it to put in his year old Dell, HP or whatever?
    PS, you did risk it and it is official!
    Message Edited by powerstroke on <SPAN class=date_text>08-23-2006 <SPAN class=time_text>04:08 PM
    Message Edited by powerstroke on 08-23-2006 04:5 PM

  • Steps for creation of new risk in AC 5.3

    Hi,
    We have uploaded SAP delivered rules and risks, We are now in the process of creating our own risk.
    We have created functions but when we assign them to the risk that we are trying to create, we are getting the error message :
    Path not found.
    We get this error when we save the risk.
    I guess this is a work flow issue. Let me know if you have any solution.
    Thanks and Regards,
    Rajesh

    Hi Rajesh,
    I assuming you are in the risk recognition/rule building phase for RAR.
    Then you can unplug the workflow by setting Risk Maintenace = NO (configuration >> workflow >> Risk Maintenance)

  • Error in Provisioning Risk Update Request in CUP

    Dear Experts,
    I have configured all the required settings to configure Risk create/Update and change workflow in CUP.
    I am even successfully generate the requests type Create Risk in CUP from RAR.But , not able to generate request type update risk from same path and recieving error provisioning request at stage -
    Please provide any clue to resolve this issue.I am in SP12
    Thanks,
    Mukesh

    Please find..
    I am trying to remove a function from the below risk ID in RAR.
    getting this error when approving in CUP.
    2011-04-19 09:15:29,943 [SAPEngine_Application_Thread[impl:3]_74] ERROR com.virsa.ae.accessrequests.bo.RequestExitServiceHelper : callExitService() :   : Exception in calling the exit service,  error code : -1, error message : ERROR: Risk: B001 has exceeded the maximum number of rules (46,655) that can be generated for a risk
    2011-04-19 09:15:29,946 [SAPEngine_Application_Thread[impl:3]_74] DEBUG com.virsa.ae.accessrequests.bo.RequestBO : updateRolesForProvision() :   : INTO the method for reqno : 1116
    2011-04-19 09:15:29,946 [SAPEngine_Application_Thread[impl:3]_74] DEBUG com.virsa.ae.accessrequests.bo.RequestBO : updateRequestApplicationForProvisionStatus() :   : INTO the method for reqno : 1116
    2011-04-19 09:15:29,946 [SAPEngine_Application_Thread[impl:3]_74] DEBUG com.virsa.ae.accessrequests.bo.RequestBO : updateRequestApplicationForProvisionStatus() :   : listApplicationDTOs : []
    2011-04-19 09:15:29,946 [SAPEngine_Application_Thread[impl:3]_74] DEBUG com.virsa.ae.accessrequests.bo.RequestBO : insertRequestApplicationForProvisionStatus() :   : INTO the method for reqno : 1116
    2011-04-19 09:15:29,948 [SAPEngine_Application_Thread[impl:3]_74] ERROR Exception in calling the exit service,  error code : -1, error message : ERROR: Risk: B001 has exceeded the maximum number of rules (46,655) that can be generated for a risk
    com.virsa.ae.service.ServiceException: Exception in calling the exit service,  error code : -1, error message : ERROR: Risk: B001 has exceeded the maximum number of rules (46,655) that can be generated for a risk
         at com.virsa.ae.accessrequests.bo.RequestExitServiceHelper.callCCExitService(RequestExitServiceHelper.java:277)
    Thanks,
    Mukesh

  • Risk Terminator ECC 6 - CC 5.2 - RFC  Test: Program not registered

    Dear board,
    I am configuring the risk terminator functionality and stumble accross problems with the setup of the RFC destination from ECC to the CC. The connection test fails with "ERROR: program GRCRTTOCC5X not registered".
    The RFC connection is of type TCP/IP, Registered Server Program, Default Gateway Value and Gateway host/service information I took from another working rfc connection.
    The RFC connection is equal to the one set up in the RT configuration transaction, I have set up a dedicated connector on the CC with direction outound and GRCRTTOCC5X as report.
    I have furthermore noticed that I am not able to active the SAP Adapter in the CC yet, a JCO error appears.
    Any ideas?
    Kind regards and many thanks,
    Richard

    Hi Richard,
    I am sorry to bother you and distract with this query, but couldn't find your email in your profile.
    Could you please contact me regarding your SPNego problem discussed in
    SPNego - Windows integrated Single-Sign On not working - How to debug?
    We are facing the same issue and I was curious whether you had a solution?
    <b>Thanks so much</b>, Emir
    My email is emirce at gmail dotcom.

  • RFC issue in RAR 5.3 Risk Terminator

    Hi,
    We have RAR 5.3 with Risk Terminator configured. Since last couple of days, Risk Terminator is not working for one of our back end system.
    Getting below error message :
    "SAP Adapter has a problem, SOD violations will not be checked !!!
    Please check with your system Administrator
    Technical Info:
    senderAgreement not found: lookup of binding via CPA-cache failed for AdapterTyp"
    I have verified the configuration setting and confirmed below things:
    1. Config program do have RFC destination which is defined with registered program GRCRTTOCC5X
    2. The same program name is defined in the RAR connector with Outbount selected
    3. The SAP Adapter is Green. I have turned it off / on
    It was working well till few days back.
    Any suggestion would help a lot.
    Adeep

    Hi Deepak,
    Can you change your Program ID (GRCRTTOCC5X)  to any other name in your back end as well as RAR Report name  also.
    It will work.
    Regards
    Shiva.
    Edited by: Siva K Kumar on Jul 27, 2010 7:36 PM

  • Is there a risk of setting a console connection timeout and what is the recommended setting?

    Is there a risk of setting a console connection timeout and what is the recommended setting? Please suggest if there is any best prctice documentation that can be referred.

    Hi Henrik
    depend on what you need or what your security policy says for my lab gear i use 60 minutes. because i know how can access this. if you have gear outside in insecure space set it to a minimum or disable the console. everybody how can access your gear can break in. simple restart and boot w/o config. and you are in.
    it realy depends how secure is your space and how much security you need.
    and than the settings for policy have to match, what sec do you have if your console login and logout is secure. but when you restart you can simple break in by starting w/o config and than load it.
    HTH
    Patrick

  • Risk category field is missing in dso for 0fiar_o09 credit management.

    Hi BI Experts,
    I am using the standard extractor for the credit management dso 0fiar_o09.  The field for risk category originates from our R3 system in table knkk-ctplc.  It displays correctly in the psa.  The transformation rsds 0fi_ar_9 maps it to 0risk_categ.  It appears as an infoObject in the infoSource.  The trcs transformation maps the rule also.
    However, when I try to display the data in the dso, the risk category field does not display at all.
    Please help with any possible suggestions to display the missing field.
    Kind regards,
    Cheryl Adamonis

    I resolved this issue by removing the check in the  'attribute only' selection on the general tab of the infoObject.

  • Problem with RFC for Risk Terminator - GRC 5.2 SP12

    We are having a problem with the RFC connection for Risk Terminator in one of our SAP environments.  It is working in our 'DV3' environment, but not in our 'RT3' environment.  Everything is set up just the same in both environments and all SAP Adaptors show green.
    This was working in RT3 when we first upgraded to GRC 5.2 last November, but it now gives me an error when I do an update with PFCG and it calls RT.  The error message and our Basis support group both say the RFC needs to be 'registered', but our SAP Support contact during our upgrade said it does not, and I can't find any documentation that says this is required also.  Plus it was working before even though it was unregistered.
    What is causing this problem and how do I resolve it?
    Also, if these RFCs do not have to be registered, is there some documentation that states this that I can show to our Basis group?
    Thanks.

    What about the question of the RFC needing to be registered?  This is the solution our Basis group thinks is required, so it will be hard to get them to do anything else until this issue has been addressed.
    Thanks.

  • Ad hoc Risk Analysis report is returning incorrect Risk Level for some Risks

    We are running GRC AC 10.0 with SP 16.  After application of Support Pack 16, some of our ad hoc risk analysis reports are returning incorrect risk levels.  For example:  Risk F024 Open closed periods and inappropriately post currency or tax entries is set as High.  When the Ad hoc report is run, the risk F024 will show on a user with a level of Medium.  We have generated our ruleset and have followed the normal procedures used to implement the support pack.  Any ideas what is causing this issue?  I have exhausted my knowledge and search attempts.
    Any help is appreciated.
    Sara B.

    Hi Kevin
    Many thanks for your post, we did run a full BRA but no luck unfortunately. Some Risks still reporting as Medium when they should be Critical or High. Oddly it is reporting correctly against some risks just not for all!
    Cheers
    Hussain

  • How to change the Risk category in FD32

    Hi
    we have requirement to chage the risk category for existing customer in FD32, there are few open documents for the same customer,
    Currently risk category field is grey out, so first we need help to allow the change and second, it should not affect to all the open document by changing risk category.
    Request you provide some help on the same..
    Regards
    Vanraj

    Dear Vanraj
    Go to FD32.
    Enter customer code and CCA.
    Check STATUS in Credit Control Area Data. Press enter.
    The risk category is not grayed out here.
    Change it to desired one.
    Save it.
    I am not 100% sure but expect that it will not change open document.
    Try it and update forum.
    Thanks
    Pawan Sharma

  • Customer order credit block on Risk Category

    Hi,
    We have a scenario where order of all customers belonging to a specific Risk Category should go into credit block, irrespective of the Customer account balance, credit limit set in FD32 and Credit exposure.
    The detailed case is mentioned below.
    Customer Risk category = C8
    Credit limit = 1 euro
    Customer recievable (in FD33 ) = 2776.17-  (Dta migration line items w/o Special G/L)
    Sales value (in FD33) = 2237.73
    Credit Exposure (in FD33) = 538.44-
    For above scecnario, order are not going into credit block ,as the credit exposure is ( 538.44- ). Client wants that for Customers with risk category C8, all the orders should go into credit block.
    Please guide for solution.

    Hi
    If the order has to get blocked for a specific risk category then you have to with the user exits only.So kindly use anyone of the following user exits.
    1) LVKMPFZ1: USER_CREDIT_CHECK1
    2) LVKMPFZ2: USER_CREDIT_CHECK2
    3) LVKMPFZ3: USER_CREDIT_CHECK3
    Thanks and Regards
    Srinath

  • Issue with risk analysis report in GRC10.0

    Hi All,
    We are running the user risk analysis report from NWBC: Reports and Analytics -> Access Risk Analysis Reports -> User Risk Violation report.
    This report is not fetching all the data even though user has all the required authorizations.
    We are getting the data when we execute the dashboard reports.
    Any one has idea?
    Cheers
    Hari

    Alessandro,
    Thanks for the reply. I am aware of this.
    Problem is when dash board report is showing the risk for the user but risk anaylsis report in Reports and Analytics is not showing the risks to that user.
    As per our investigation, the risk data that is displaying in the risk anaylsis report in Reports and Analytics is incomplete. We didn't find any errors in SLG1. Also there is no issues from authorizations side.
    Regards
    Hari

  • Mass role risk analysis issue

    Hello GRC Community,
    I have a following issue:
    When I use mass risk analysis the deactivated authorization objects in the role are displayed as result. At the same time, when I use Role Level Risk Analysis the role with deactivated critical authorization objects doesnt appear.
    Does anybody know how to solve this issue? Is there any configuration parameter to be adjusted?
    thanks
    best regards
    Sabrina

    Prasant,
    here are the screenshots of the Job result:
    1. Mass role Risk Analysis
    2. Risk Analysis on the (Single) Role Level
    Im Backend you can see that the role contains lots of deactivated autorization objects.
    I have run all sync Jobs, but seemingly it doesnt help.
    Thanks,
    Sabrina

Maybe you are looking for

  • How to populate table in RFC

    How do I populate an abstractlist that is an input to an RFC?  I read the post by Bertram Ganz, but my generated classes look different.  I imported the RFC and the system generated the following: -zbapi_appraisal_create   -zbapi_appraisal_create_inp

  • Why does a face show up on my iPad when I have deleted it from aperture

    I am using aperture to tag a modestly large library (about 22,000 photos) all for personal use. I've been going through these photos and tagging faces. As a sort of "holding pen" for faces that I wasn't sure about in the unnamed faces strip at the bo

  • Linked Word doc with headings and the TOC

    I'm relatively new to RoboHelp, so bear with me. I'm linking in a Word document that is being maintained by others. The document uses Heading 1 styles for auto-numbered chapters, thus: 1 Some topic   lorem ipsum, etc 2 Some other topic   lorem ipsum,

  • Cover Flow Video Icons

    Is it at all possible to have icons instead of clips from movies for the coverflow view. I have tried putting high res images in the Get Info icon box but they are given a small resolution in cover flow that looks pretty awful. is there anything else

  • Java memory consumption

    Hi I want to know how much java memory is used. How can I know the memory comsumption. regards,