Vendor failures, breach alerts, CVE matches, control deficiencies, and privacy gaps all land in one enterprise risk register — natively, on one data model, not stitched via integration.
Every capability shares one data model and one tamper-evident audit trail with the rest of the platform.
Risks as first-class objects with an eight-state lifecycle and five treatment strategies.
Key Risk Indicators with green/amber/red thresholds; breaches auto-create risks and alert owners.
Accept-strategy plans capture executive approval for SOX and ISO 31000 evidence; expiry re-opens risk.
Inherent scores update from LiveThreat's daily refresh — no manual reassessment cycles.
Operational owners, risk function, internal audit — each with scoped permissions.
Assessment findings, breach intel, CVE matches, control deficiencies all promote to risks.
Archer needs consultants. MetricStream and OpenPages are enterprise-only. ServiceNow IRM only pays off if you're already a ServiceNow shop. Verisq is the only platform where TPRM, Privacy, ERM, and threat intelligence share one data model — so assessment failures, breach alerts, CUEC gaps, and privacy issues become risks natively.
The RiskOps Hub is one of five purpose-built workspaces sharing a single data model and audit trail. Start with SOC 2, expand across the platform.