CERRIX Documentation
  • Introduction to CERRIX
  • CERRIX Functionalities
    • Getting Started
    • Using the Dashboard
    • Module Overview
      • Risks
        • AI Risk Description Refinement
        • Budget-based Risk Scoring
      • Controls
        • AI Control Description Refinement
      • Control Advanced Effectiveness Testing
        • Control Advanced Effectiveness Testing Video's
      • Incidents
        • Incidents Standing Data & Emails
        • Creating a New Incident
        • Incidents Workflow
        • Incidents Workspace
        • Incidents Roles & Rights
        • Incidents: Known Issues & Future Improvements
      • Events
      • Business Improvement Management
        • Measures of Improvement (MoIs)
          • Working with MoIs (Measures of Improvement)
        • Findings Report
      • Data Management
      • Third Party Management
      • Tasks & Control Execution
      • Key Risk Indicators (KRI's)
  • Admin Settings
    • External Connections
    • AI Settings
    • Authentication & User Provisioning
  • API Documentation
  • Best Practices & Guides
    • Control Design & Implementation, Execution & Effectiveness Testing: What's the Difference?
    • CERRIX AI FAQ
  • Implementation Guide
  • Import Templates
  • About CERRIX
    • Getting Support
    • Release Notes
    • Release Planning
    • Product Strategy & Roadmap
    • Heavy & Light Users
  • Compliance
    • Strategic Information Security Policy
    • ISO 27001
    • ISAE 3402 Type II
    • Privacy / GDPR
    • Security Statement
    • FSQS Certificate
Powered by GitBook
On this page
  • Roles and Permissions
  • Role Overview
Export as PDF
  1. CERRIX Functionalities
  2. Module Overview
  3. Incidents

Incidents Roles & Rights

PreviousIncidents WorkspaceNextIncidents: Known Issues & Future Improvements

Last updated 2 months ago

The Incidents module in CERRIX is built to support collaboration across multiple roles. Each role is designed with specific permissions to ensure the right level of access and responsibility for different users within your organization. Understanding these roles helps configure your incident management process effectively.

Roles and Permissions

The Incidents module supports ten distinct user roles. Each role defines a set of permissions that grant access to specific parts of the module. Roles must be explicitly assigned to users. To provide broader access or responsibilities, users can be assigned multiple roles simultaneously.

Role Overview

Role
Description

Event Unrestricted Administrator

Full access to all event-related functionality and visibility across all organizations.

Event Restricted Administrator

Similar to the Unrestricted Administrator but limited to their own organization and without access to Standing data.

Event Assessor

Full editing rights for events assigned to them or created within their organization.

Event Responsible

Editing rights for assigned events, except for user assignments.

Event Reporter

Can report new events for any organization in CERRIX.

Event Informed

View-only access to events where the user is assigned.

Event Unrestricted Viewer

View-only access to all events, across all organizations.

Event Restricted Viewer

View-only access to events within the user’s own organization.

Data Breach Assessor

Full editing rights for assigned data breaches or breaches in their organization. Can view breach details in read-only mode.

Data Breach Responsible

Editing rights for assigned data breaches, excluding user assignment. Breach details are read-only.

Data Protection Officer

View-only access to all data breach events.