Risk Treatment Rules

A risk treatment rule is a piece of automated logic that determines how a risk should be handled based on the characteristics of the system component it's associated with. Rather than requiring users to manually decide risk treatment every time, the Paramify evaluates a set of conditions — like whether a component is a leveraged system, who configured it, and what role it plays — and automatically assigns the appropriate treatment category and responsible parties.

This interactive guide helps to educate on risk treatment rules by walking through a series of scenarios. Use it to understand automated logic used within Paramify.