Start Trial
PortalMeridianKeystoneRMM
Audit & Compliance Manual

Risk Heatmap

Concentration of exposure, prioritization signals, and the visual model teams use to discuss risk with leadership.

Audience: Leadership, risk owners, and compliance teamsFocus: Risk visualization and prioritizationStatus: Public manual

Scope

Heatmaps only help when they drive prioritization instead of becoming a decorative board artifact. This guide keeps the public-safe operating interpretation and excludes private rendering or export detail.

SSOT Document — Single Source of Truth Audience: System operators, IT administrators, L1/L2 support staff Last Updated: 2026-04-15

Overview

The Risk Heat Map visualizes a program’s risks on a 5x5 grid with likelihood on the Y-axis and impact on the X-axis. Each cell is color-coded by risk level (low, medium, high, critical) and shows the count of risks in that position. A sidebar lists the top 10 highest-scoring risks. You can toggle between inherent and residual risk views.

Getting Started

Prerequisites

  • Meridian.view permission.
  • At least one risk in the program’s risk register.

Using the Heat Map

Viewing the Heat Map

Steps: 1. Navigate to a program’s Risk Register page. 2. Click the Heat Map link (or navigate directly to the relevant workflow).

Result: A 5x5 grid appears with risks placed by their likelihood (rows) and impact (columns). Each cell shows: - The risk count in that cell. - Color coding: green (low), yellow (medium), red (high), dark red (critical). - Click a cell to see the list of risks at that position.

Toggling Inherent vs. Residual View

Steps: 1. Use the Inherent / Residual toggle at the top of the page.

Result: - Inherent: Shows risks positioned by their raw likelihood and impact scores. - Residual: Shows only risks that have residual scores assigned, positioned by residual likelihood and residual impact.

Drilling Into a Cell

Steps: 1. Click any cell in the grid.

Result: A panel shows the risks in that cell with their ID, reference, title, and score. Each risk links to the risk detail page.

Top Risks Sidebar

The sidebar lists the top 10 risks by score (descending). In inherent view, this uses inherent scores. In residual view, only risks with residual scores are shown, sorted by residual score.

Understanding the Grid

The grid is 5x5: - Y-axis (rows): Likelihood, from 1 (bottom) to 5 (top). - X-axis (columns): Impact, from 1 (left) to 5 (right). - Score: Likelihood x Impact. Ranges from 1 to 25. - Risk Level: Derived from the score. Color-coded on the grid.

Score Range Level Color
Low low Green
Medium medium Yellow
High high Red
Critical critical Dark red

Permissions Reference

Permission Grants
Meridian.view View the heat map for any accessible program

Related Documentation

  • functional/risk-heatmap.md — API endpoint, score computation, response schema
  • manual/risks.md — risk register management