Nuts & Bolts / Form

Risk Register Lite

Track risks without creating an oversized risk process.

Type: FormTypical time: 10–20 minutes

Template

  1. Describe the risk as an event and consequence.
  2. Assign likelihood: low, medium, or high.
  3. Assign impact: low, medium, or high.
  4. Identify current controls or mitigations.
  5. Assign a risk owner.
  6. Define next action and review date.
  7. Close risks when accepted, resolved, obsolete, or transferred.

Expected output

Risk list with likelihood, impact, owner, mitigation, and review date.

Use notes

OwnerAssign one person responsible for keeping the template current.
ReviewReview after significant changes, incidents, staffing changes, or tool changes.
RiskAdapt the template to local policies, contractual duties, privacy requirements, and operational risk.