When clicking on this bar, you will be able to see the gaps within the category.
All IT systems / Information assets must be risk assessed in relation to at least one risk. The following IT systems / Information assets lack a risk assessment.
Creating a risk assessment can be done directly from the dashboard (1) or from the overview of the IT systems / information assets (2).
All risk assessments must be acceptable to the organization. If they are not, a measure must be taken to minimize the risk.
To remove this gap, you must either accept the risk (1), which is done in the risk assessment or taken a measure to minimize the risk, which will be reflected in the reassessment of the risk assessment (2).