Not logged in - Login
< back

Notifications

Many notifications are integrated into Abriska. When enabled, notifications are sent out by email on a weekly basis to relevant users. Which notifications are sent to which user roles is determined within Organisation Setup > Notification Setup. Notifications are either alerts or system information. Alerts are items that require attention and need to be resolved within the application.

Notification Setup

From the organisation setup, select 'Notification Setup' from the sidebar. This option may be hidden if the organisation is not set up for notifications; contact support to have this feature enabled. A list of notifications that are assigned to the organisation will be displayed. Use the checkbox table to assign notifications to specific roles and then submit the form. Some notifications may be hidden from this form if they have not been enabled by support.

Some notifications will have a time period associated with them (e.g. Controls that have not been updated for 12 months). These time periods can be modified by entering an alternative number in the corresponding text box, where applicable.

Using Notifications

Notifications are automatically sent out by email on a weekly basis. Emails will be sent out to all users that fulfil the following criteria:
  • the contact has at least one active notification that is enabled for both the organisation and for his/her role
  • the contact has a valid email address and has email enabled within the application

Users should only receive notifications that are relevant to their own responsibilities.

The same notifications are viewable from within Abriska by selecting 'Notifications' from the organisation homepage. This option will be available to all users regardless of their email setup.

Clicking a notification will direct the user to a relevant page within Abriska wherein the issue can be resolved. Notification indicators highlight which items need attention.

List of Notifications

Organisation Notifications

  • Documents with Expired Revision Date - There (is/are) document(s) that need(s) to be revised.
  • Documents Requiring Revision in [X] Weeks - There (is/are) document(s) set to be revised within the next [X] weeks.
  • Resource Attributes for Review - There (is/are) resource(s) with attributes that need reviewing.
  • Resource Attributes Not Updated For [X] Months - There (is/are) resource(s) that (has/have) not been updated in the last [X] Months.
  • Risk Actions Resolved - There (is/are)risk(s) which need(s) to be reviewed following a risk action resolution.

Audit andAnd Action Notifications

  • Activities for Review - There (is/are) activit(y/ies) that (is/are) due for review.
  • Activities Not Updated for [X] Months - There (is/are) activit(y/ies) that (has/have) not been updated in the last [X] Months.

Business Impact Analysis Notifications

  • Activities for Review - There (is/are) activit(y/ies) that (is/are) due for review.
  • Activities Not Updated for [X] Months - There (is/are) activit(y/ies) that (has/have) not been updated in the last [X] Months.
  • Resources Not Meeting Requirement - There (is/are) resource(s) that cannot be recovered within the time-frame required by an activity.
  • Status of Activities - There (is/are) activit(y/ies) that (is/are) [X].

Control Maturity Assessment Notifications

  • Controls for Review - There (is/are) control(s) due for review.
  • Controls Not Updated for [X] Months - There (is/are) control(s) that (has/have) not been updated in the last [X] Months.
  • Controls Proposed for [X] Weeks - There (is/are) control(s) that (is/are) due to be updated in the next [X] weeks.
  • Proposed Controls That Have Expired - There (is/are) control recommendation(s) with a proposed implementation date in the past.
  • Risk Treatment Reviews Overdue - There (is/are) risk treatment plan(s) with an expired review date.
  • Risk Treatments in [X] Weeks - There (is/are) risk treatment(s) for review in the next [X] weeks.

risk Assessment Notifications

  • Maximum Risk to Resources - There (is/are) resource(s) at [X] risk.
  • Maximum Risk to Vulnerabilities - There (is/are) vulnerabilit(y/ies) at [X] risk.
  • New Resources Added - There (is/are) threat(s) that need(+s) to be reviewed for new resources.
  • New Vulnerabilities Added - There (is/are) threat(s) that need(+s) to be reviewed for new vulnerabilities.
  • Risks Requiring Treatment Decision - There (is/are) untreated risk(s).
  • Threats for Review - There (is/are)threat(s) that (is/are) due for review.
  • Threats Not Updated For [X] Months - There (is/are) threat(s) that (is/are) due for review.
  • Vulnerabilities Resolved - There (is/are) threat(s) for which linked vulnerabilities have been recently resolved.

Enterprise Risk Management Notifications

  • Risk Reviews Overdue By [X] Weeks - There (is/are) risk(s) that (is/are) [X] weeks overdue for review.
  • Risks Due for Review - There (is/are) risk(s) that (is/are) due for review.
  • Risks for Review in [X] Weeks - There (is/are) risk(s) due for review in the next [X] weeks.
  • Risks Not Updated for [X] Months - There (is/are) [Y] risk(s) that (has/have) not been updated in the last [X] months.

Nonconformity Reporting Notifications