## Risk assessment
You can create risk assessments in your perimeters. A risk assessment encompasses:
* risk identification, when you define your risk scenarios
* risk analysis, when you assess the probability, impact and strength of knowledge for each scenario
* risk evaluation, which is done automatically based on the selected risk matrix
In CISO Assistant, risk treatment is combined with risk assessment.
## Risk scenario
The scenarios can be defined directly from the risk assessment view or separately via this view.
## Risk acceptance
Risk acceptance is when an organization or individual decides to tolerate a certain level of risk without taking further action to reduce it.\
This view allows to manage a workflow to get formal approval of risk acceptances by the management.\
The approver of a risk acceptance must have a user account with approver role.\
To find out more about risk acceptance, you can have a look to the [ENISA risk management process](https://www.enisa.europa.eu/topics/risk-management/current-risk/risk-management-inventory/rm-process/risk-acceptance).
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://intuitem.gitbook.io/ciso-assistant/model/risk.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.