Free template
Risk Assessment Template
A risk assessment identifies what could disrupt your operations, scores each risk by likelihood and impact, and decides what to do about it. The template uses a 5×5 matrix so risks are ranked consistently.
Use it as a standalone register, or run it inside Resilira where risks plug straight into your continuity program.
What's inside
Threat, affected process/asset, and a clear risk statement.
How probable the risk is, against a defined scale.
Severity if it occurs, aligned to your BIA impact categories.
Likelihood × impact, plotted on a 5×5 heat map to rank treatment.
Accept, reduce, transfer or avoid — with an owner and target date.
The score after treatment, compared against your risk appetite.
Generate it automatically with Resilira
- Score risks on a 5×5 heat map with a seeded threat library to get started fast.
- Link risks to the processes and assets they threaten, so treatment is prioritised by business impact.
- High risks feed exercise scenarios and surface in your compliance gaps automatically.
Best-practice tips
- Anchor your 1–5 scales with written definitions so two assessors score the same risk the same way.
- Track residual risk, not just inherent risk — leadership cares about what's left after controls.
- Review the register on a cadence; risk is not a once-a-year exercise.
Frequently asked questions
- What is a risk assessment matrix?
- A risk assessment matrix (commonly 5×5) plots each risk's likelihood against its impact to produce a score, making it easy to rank which risks need treatment first.
Get audit-ready before your next due-diligence questionnaire.
Start free — no credit card. 14-day trial with a sample workspace preloaded.