...
We recently helped a client implement this model in Jira with the help of Abacus—the Jira Calculator. Here's how it worked:
Working in Jira
The first step in the process was to create 16 Custom Fields in Jira corresponding to the 16 Risk Factors used in OWASP methodology. Risk Factors are divided into subgroups, including:
...
A fifth tab was created to display the average Risk Ratings (0 to 9) and the corresponding Impact Levels (Low, Medium, High) for subgroups.
Working in Abacus
In order to calculate average Risk Ratings for the subgroups and assign the corresponding Impact Levels, we used Abacus, an app specifically designed for creating calculations in Jira.
...
Finally, Execution Groups were used to Edit Issue Fields with the Impact Levels for each of the average Risk Ratings. Using IF and ELSE IF statements along with JQL, we were able to edit the fields with the corresponding Impact Level.
Conclusion
Using Abacus and Jira together helped our client monitor the Likelihood, Technical Impact, and Business Impact of issues facing their company.
...