Venvera risk snapshots list
Risk snapshots: point-in-time captures of the register and KRI landscape you can compare and export.

Risk Snapshots

A risk snapshot is a point-in-time capture of your whole risk posture, taken for year-over-year comparison. Each snapshot records the risk register (with the count of risks by severity), the controls and ICT assets in scope, and the current KRI landscape — the value, status, target and regulatory anchors of every indicator at the moment of capture. Create one from Risk Management › Snapshots with Create Snapshot. This is what auditors review when they ask “how did the risk picture look in Q1?”

Snapshot diff

From Risk Management › Snapshots click Compare snapshots to pick two snapshots and render a board-ready narrative of what changed:

  • KRI transitions (green → amber, amber → red, etc.)
  • Risk-level delta per status
  • Control implementation delta
  • Narrative summary: “Between Q1 2026 and Q2 2026: 3 KRIs worsened, 1 critical-level risk added, control coverage moved 86% → 91%.”

The diff page has a one-click Download board-pack PDF (with this diff) button that produces a fully formatted PDF including the diff narrative as a section.

Board Pack PDF

The Board pack PDF button on the KRI page generates a board-ready PDF covering:

  1. Cover page with overall health score, status and trajectory.
  2. Per-domain composite health with score bars.
  3. “KRIs trending toward red” — regression alerts, including KRIs still inside green.
  4. Open KRI breaches with statutory clock status (DORA / NIS2 due-dates highlighted when overdue).
  5. Optional snapshot diff narrative.
  6. Regulatory readiness per framework — composite score across all KRIs anchored to that framework.
💡
The regulatory readiness section is the headline deliverable: a single PDF that says “DORA readiness 78 %, NIS2 readiness 84 %, AMLD6 readiness 92 %” with all KRIs anchored to those frameworks rolled up. This is what no other GRC tool produces with article-level precision.