Resilience metrics
Summarize
Summary of Resilience metrics
The Operational Resilience Workspace provides a centralized landing page where you can view resilience metrics related to services, business services, and organizational pillars. These metrics help your organization monitor operational status, completed activities, red flags, and suggestions for improvement, enabling proactive resilience management.
Show less
Key Features
- Services overview tab: Displays the status and resilience metrics for services in your organization using data fetched from the Service (CMDB) Main node configuration. This tab is typically used by existing customers.
- Business services overview tab: Shows resilience metrics and status for business services, leveraging the Opres with CSDM header Main node configuration preferred by new customers.
- Pillars overview tab: Provides resilience metrics and status for organizational pillars.
- Configurable views: Administrators or UI Builder administrators can configure the landing page to show or hide the Services overview or Business services overview tabs based on organizational preferences.
- Third-party Risk Management (TPRM) integration: From release 21.0.x onwards, Operational Resilience integrates TPRM risk assessments as red flags on reports and overview pages for business services, service offerings, and business processes. This integration highlights very high-risk third-party assessments under specific states, enhancing risk visibility.
- Role-based access: Access to resilience data, red flags, and reports is controlled through specific user roles. If TPRM is installed, Operational Resilience users with the TPRM viewer role can view third-party risk red flags without needing IRM roles.
- Role-specific reports: The workspace displays tailored reports for BCM Professional and IRM Professional users, with enhanced roles allowing creation, management, or participation in resilience, BCM, and IRM activities based on assigned permissions.
Key Outcomes
- Gain comprehensive visibility into your organization’s operational resilience status across services, business services, and pillars.
- Identify and address risks proactively, including third-party risks integrated via TPRM, improving risk management and mitigation.
- Customize the workspace interface to suit your organizational structure and user roles, ensuring relevant data is accessible to the right stakeholders.
- Enable role-based access to critical resilience reports and activities, supporting collaboration and governance aligned with your operational resilience strategy.
You can view resilience metrics for services or business services, and pillars on the landing page of the Operational Resilience Workspace.
Services, Business services, and Pillars overview
The landing page displays a summary of the resilience metrics for the services or business services and pillars.
- Services overview tab—Displays an overview of the status of the services in your organization. The Service (CMDB) Main node configuration fetches service-related data. Resilience metrics for the services, including their operational status, completed activities, red flags, and suggestions for improvements, are displayed on this tab. For information on the resilience metric displayed on the Services overview tab, see Services overview tab.
- Business services overview tab—Displays the status of the business services in your organization. The Opres with CSDM header Main node configuration sets up the business services-related data. Resilience metrics for the business services, including their operational status, completed activities, red flags, and suggestions for improvements, are displayed on this tab. For information on the resilience metric displayed on the Business services overview tab, see Business services overview tab.
- Pillars overview tab—Displays the status and metrics of the pillars in your organization. For information on the resilience metric displayed on the Pillars overview tab, see Pillars overview tab.
Existing customers typically use the Service (CMDB) Main node configuration, while new customers use the OpRes with CSDM header Main node configuration. Depending on the setup done by your administrator, either the Services overview or the Business services overview tab, is shown on the landing page.
Administrators or UI Builder administrators can show or hide these tabs from the Workspace view based on organizational needs. For information on how to display or hide either the Services overview or Business services overview tab, see Show Business services overview tab in Workspace view.
Third-party Risk Management (TPRM) integration
Starting with Operational Resilience, release 21.0.x, you can track third-party risk assessments as red flags in the Operational Resilience reports and the overview pages for business services, service offerings, and business processes.
- The risk rating is Very High (using the overridden risk rating if applicable).
- The risk rating is valid beyond the current date.
- The state is one of the following: Generating observations, Responses received, or Finalizing with third party.
- The risk assessment applies to either the Company or an engagement.
To view Related lists and Red flags data in the Operational Resilience Workspace, you must have appropriate user roles as explained in this section.
- TPRM is not installed
- If TPRM is not installed, Operational Resilience users cannot access risk red flags without the IRM roles.
- TPRM is installed
- However, if TPRM is installed, Operational Resilience users can access both risk red flags and Third-party Risk Management red flags because they are assigned the TPRM viewer role. The TPRM viewer role includes risk viewer capabilities, thus eliminating the need for IRM roles.
For information on the roles required to view the related lists and red flags data, see the "Roles to view related lists and Red flags data" table in the Create New Service form page.
Displaying reports for different user roles
Separate reports are displayed in the Operational Resilience Workspace landing page for BCM Professional and IRM Professional users.
Enhanced roles for accessing the reports
The roles installed with Operational Resilience now contain the relationship for BCM Professional and IRM Professional users.
All Operational Resilience users can access general reports on the landing page.
The roles required to access the BCM and IRM reports in the Operational Resilience Workspace are explained in the following table.
| Type of reports | Required roles | Information | Contains |
|---|---|---|---|
| BCM reports | sn_oper_res.bcm_opres_admin | Users with this role can create and delete both operational resilience activities and BCM activities. |
|
| sn_oper_res.bcm_opres_manager | Users with this role can create both operational resilience activities and BCM activities. |
|
|
| sn_oper_res.bcm_opres_user | Users with this role can participate in both operational resilience activities and BCM activities. |
|
|
| IRM reports | sn_oper_res.irm_opres_admin | Users with this role can create and delete both operational resilience activities and IRM activities. |
|
| sn_oper_res.irm_opres_manager | Users with this role can create both operational resilience activities and IRM activities. |
|
|
| sn_oper_res.irm_opres_user | Users with this role can participate in both operational resilience activities and IRM activities. |
|