What inputs are required?

Business or project description, known concerns or past incidents, industry and regulatory environment, timeline and budget constraints.

What outputs are produced?

Risk Register, Risk Heat Map, and Residual Risk report, with owners, deadlines, and cost estimates.

How are scores calculated and prioritized?

Scores use Likelihood × Impact on a 1-5 scale (25-point max) and are categorized as Critical (20-25), High (15-19), Medium (8-14), or Low (1-7).

Risk Assessment Framework

Verified

@1kalin

npx machina-cli add skill @1kalin/afrexai-risk-assessment --openclaw

Files (1)

SKILL.md

2.5 KB

Risk Assessment Framework

Comprehensive risk assessment for business operations, projects, and strategic decisions. Identifies, scores, and prioritizes risks with mitigation plans.

What It Does

When triggered, the agent:

Identifies risks across categories (operational, financial, technical, regulatory, reputational, strategic)
Scores each risk using Likelihood × Impact matrix (1-5 scale, 25-point max)
Classifies into Critical (20-25), High (15-19), Medium (8-14), Low (1-7)
Generates mitigation strategies with owners, deadlines, and cost estimates
Produces a risk register ready for board reporting or investor updates

Usage

Tell your agent: "Run a risk assessment on [project/business/decision]"

Input

Provide context about what you're assessing:

Business or project description
Known concerns or past incidents
Industry and regulatory environment
Timeline and budget constraints

Output Format

Risk Register:

#	Risk	Category	L	I	Score	Priority	Mitigation	Owner	Deadline	Cost

Risk Heat Map:

🔴 Critical (20-25): Immediate action required
🟠 High (15-19): Mitigation plan within 7 days
🟡 Medium (8-14): Monitor and review monthly
🟢 Low (1-7): Accept or monitor quarterly

Residual Risk: After mitigation, re-score to show risk reduction.

Scoring Guide

Likelihood (L):

Rare (<5%) — Hasn't happened, unlikely to
Unlikely (5-20%) — Could happen but no history
Possible (20-50%) — Has happened elsewhere
Likely (50-80%) — Has happened before or conditions exist
Almost Certain (>80%) — Expected to happen

Impact (I):

Negligible — <$10K loss, no disruption
Minor — $10K-$50K, minor delays
Moderate — $50K-$250K, partial service disruption
Major — $250K-$1M, significant operational impact
Severe — >$1M, existential threat or regulatory action

Industries Covered

SaaS & Technology
Financial Services
Healthcare & Life Sciences
Construction & Engineering
Professional Services
Manufacturing
Real Estate
Legal & Compliance

Want More?

This skill pairs well with industry-specific AI context packs that include pre-built risk libraries, compliance checklists, and regulatory frameworks:

→ Browse context packs: https://afrexai-cto.github.io/context-packs/ → Calculate your AI ROI: https://afrexai-cto.github.io/ai-revenue-calculator/ → Set up your AI agent: https://afrexai-cto.github.io/agent-setup/

Source

git clone https://clawhub.ai/1kalin/afrexai-risk-assessmentView on GitHub

Overview

Risk Assessment Framework conducts comprehensive risk identification, scoring, and prioritization across operational, financial, technical, regulatory, reputational, and strategic domains. It generates actionable mitigation plans with owners, deadlines, and cost estimates, and delivers a risk register ready for board or investor updates.

How This Skill Works

Triggered risk assessment identifies risks across categories (operational, financial, technical, regulatory, reputational, strategic). Each risk is scored using a Likelihood × Impact matrix (1-5, up to 25 points) and classified as Critical, High, Medium, or Low. The framework then generates mitigation strategies with owners, deadlines, and cost estimates and compiles a risk register and heat map for executive reporting.

When to Use It

Before starting a major business initiative or project
During project governance reviews or board updates
After incidents or near-misses to re-prioritize mitigations
When regulatory or compliance requirements change
For budgeting and cost planning with risk-adjusted projections

Quick Start

Step 1: Provide context — describe the project/business decision, known concerns, industry, timeline, and budget.
Step 2: Trigger the assessment by saying: 'Run a risk assessment on [your item]'.
Step 3: Review the generated Risk Register and Heat Map, confirm owners, deadlines, and costs, and export for reporting.

Best Practices

Define clear risk categories and ensure coverage of operational, financial, technical, regulatory, reputational, and strategic risks
Use a consistent Likelihood × Impact scoring scale (1-5) and document rationale for scores
Assign clear owners, deadlines, and real cost estimates for each mitigation
Iteratively re-score residual risk after mitigations and update the risk register
Export the Risk Register and Heat Map for board or investor communications

Example Use Cases

SaaS product launch risk assessment covering data privacy, uptime, and regulatory changes
Financial services project evaluating fraud, liquidity, and cyber risk with mitigations
Healthcare software considering HIPAA/compliance and patient data risks
Construction project risk review covering safety, regulatory permits, and schedule delays
Manufacturing digitization initiative mapping supply chain, cyber, and quality risks

Frequently Asked Questions

Add this skill to your agents