Feature - Relate Exemptions back to Business Unit Owners

Would it be possible to relate exemptions to business units. This would allow to create a workflow that the business unit owner has to approve the exemption. Whilst the CISO role has the ability to advise on the risks it is ultimately the business units owners risk and they have the ability to approve or decline exemptions.

This would be the same for Compliance Exemptions

1 Like


Also this would let us report and trend on Exemptions on a business unit level also

Related to this feature request.

In the system it says the requester is the person who approved the risk. Can we have this so it is the actual requester and have a field for the approver?