Add an approval step to every risk mitigation task before closing it

What's new?

Mitigation tasks in Scrut now include a formal review-and-approval step. When creating a mitigation task, you can assign an approver who must review and sign off before the task can be closed. By default, the approver is the risk assignee or the task creator if no assignee exists.

Why was this needed?

Without a formal review step, it's difficult to confirm that mitigation actions have been properly implemented and validated. This update ensures every mitigation task goes through a clear approval process. It also reduces reliance on offline sign-offs and creates an auditable record of who reviewed and approved each action.

How it works

• When creating a new mitigation task for a risk, select the approver for that task. The approver defaults to the risk assignee, or to the task creator if no risk assignee is set.

• Once the task is created, the assignee completes the work, adds any supporting attachments, and submits it for review.

• The approver reviews the submission and either approves it or requests a revision with feedback.

• The assignee addresses the feedback and resubmits for review. This process is repeated until the approver approves the task.

• Once approved, the mitigation task can be closed.

Need help?

Your Customer Success Manager (CSM) is always ready to help if you need assistance. Explore all recent product updates → View now.