Within your organization, you might have a specific personnel who manages internal and external risks. Drata allows you to assign these individuals to the Risk Manager role, providing them access to specific sections necessary for their responsibilities while restricting access to other parts of the platform.
This guide details the functionalities and permissions of the Risk Manager role.
Read-Only permissions
If enabled, Risk Managers can only view, filter, and download data. They cannot modify data or perform certain actions.
Restricted view
If enabled, Risk Managers can only access risks (including vendor risks) that they own.
Risk managers access
The side navigation of the Drata app is divided into several sections, each containing pages you can access based on your role. Risk managers have access to:
Tasks
Risk
User Settings
Help Menu
Tasks
Access the Tasks page and risk tasks. To learn more about Tasks, go to Task.
Risk
Access the following pages under the Risk section on the navigation bar.
Risk Assessment page: Manage risks, create tickets, and map controls to risks. Learn more about Risk Assessment.
Risk Management page: Manage risks, create tickets, and map controls to risks. Learn more about Risk Management.
Note: The Risk Management feature is available with the Advanced package.
Vendors page: Edit vendor details, complete report reviews, and add vendors. Learn more about Vendors.
Settings
Select the your username and then Settings.
Help Menu
Select the help icon or Help & Feedback option to access the Help & Feedback drawer.
This Help & Feedback drawer displays sections containing the help center and upcoming features.