I have a question about how you assess a risk as acceptable or unacceptable and whether you do this by comparing it individually with your risk matrix or by using a calculated risk number (=severity x probability) as a limit. So far I have actually used an Excel list (formerly a software) in which I entered my values for severity and probability and by a formula (based on the given limit value or by the defined matrix in the software) the next cell automatically shows whether the risk is acceptable or not. To be honest, I unfortunately didn't question it any further and now it occurred to me, that one can have the same risk number, but according to the matrix (and the classification criteria behind it) the risk can sometimes be acceptable and sometimes unacceptable in a few cases. In this respect, I can't simply say that all risks above a value of e.g. 8 are no longer acceptable - also when giving acceptable/not acceptable in the riskanalysis manually, its easy to use and remember such number. Thus I think, there coulde be a misinterpretation for acceptable/not acceptable as well.

I have now considered using a factor for the values that do not allow a clear assignment, so that the calculation then produces a clear result. However, I am not an Excel expert and would have to see how I can selectively take these factors into account in the formula.

I would therefore be very interested, how you proceed in specifying acceptable and unacceptable in your risk analysis. Also are there already calculation factors available, that take this situation into account or, even better, is there an Excel template available, that already includes such formular? Before trying to create such formulas, I would prefer to buy something tried and tested.

I'm really looking forward to your experiences and thoughts and thank you very much in advance for sharing them