In control-based risk assessment projects, the engagement request involves several steps:
- First, fill out a business details questionnaire with basic information about the engagement such as its title, description, and the commodities, regions, and departments involved.
- Second, answer inherent risk screening questions.
- Third, select the supplier for the engagement.
- Your site's configuration may allow you to submit a request without selecting a supplier.
- Last, review the request and submit it for approval.
The questions you answer in the first and second steps match the engagement to one or more of your organization's risk controls. Each risk control is associated with one or more assessment questionnaires.
In the third step of the engagement request, you see the risk controls required for the engagement and the suppliers in your site who match at least one of the required controls because of a previously started or completed engagement risk assessment.