Edit a Risk

Sprinto allows users to edit risk details during different stages of the risk lifecycle. This helps ensure that your risk register remains accurate and up to date as your organisation evolves.

Access a Risk Entry

Log in to the Sprinto dashboard and navigate to Risks.
Click on the Risk Register tab.
Locate and click the name of the risk you want to update.
Click Edit to start editing the details.

Editable Fields

Depending on the risk’s current status, the following elements can be edited:

General Risk Information

Risk scenario
Risk owner
Applicable CIA
Risk source
Risk managers
Exposed threats
Exposed vulnerabilities
Monetary Value
Additional information

To edit these:

Click the Edit icon in the top-right of the risk details section.
Update the required fields.
Click Save and close.

Scoring Parameters

Inherent Likelihood & Impact
Residual Likelihood & Impact
Notes related to scoring decisions

Scoring can only be edited before approval or during a new assessment cycle.

Treatment Plan

Change treatment approach (Accept, Transfer, Avoid, Further Mitigate)
Update treatment reason or notes

To make these changes:

Navigate to the Treatment tab inside the risk.
Click Edit Treatment Plan.
Apply your changes and save.

Control Mappings

Add or remove mapped controls

To update:

Navigate to the Controls tab.
Use + Map Controls or click the bin icon to remove.

Risk Treatment Tasks

Edit task name, assignee, or due date
Add or update task notes.

All task edits are version-controlled and captured in the audit trail.

Restrictions on Editing

You cannot edit uploaded risk assessment documents.
Risks under final review by senior management are locked until the review is completed.
Audit logs and historical scoring events are view-only.

PreviousConduct a Risk Assessment NextDelete a Risk

Last updated 20 days ago