Risk Severity Ratings

1min

The following definitions for severity ratings are used throughout Hexiosec ASM:
Low:  This level indicates that the risk is minor and can be handled through regular, established procedures. It doesn't pose a significant threat but should still be monitored.
Medium:  A medium-level risk suggests a more substantial concern that may require additional controls or mitigations beyond routine procedures. It signals the need for a proactive response.
High:  A high-level risk indicates a significant threat that demands attention. It suggests that the risk is significant enough to warrant a focused effort to address and mitigate it effectively.
Critical:  This is the highest level of risk, emphasising the severity and the need for immediate attention and action. Critical risks require swift and decisive measures to prevent or minimise potential damage to systems, reputation, or loss of data.
﻿

Updated 04 Sep 2024

Backport Resolvable Risks

SPF Hard Fail risks