Professional Documents
Culture Documents
https://www.cse-cst.gc.ca/en/system/files/pdf_documents/tra-emr-1-e.pdf
Statement of Sensitivity
Risk Scenario
Vulnerability Description:
Threat Description:
Threat Agent:
Assets Affected:
Is it affected in Storage?
Is it affected in Transit?
Is it affected in Processing?
Is it affected in Transit?
Is it affected in Processing?
Is it affected in Storage?
Is it affected in Transit?
Is it affected in Processing?
What safeguards are in place or planned to be in place that will reduce the risk?
Level Reason
Threat Likelihood
Threat Gravity
Overall Threat
Level Reason
Vulnerability Impact on
Probability of Compromise
(Prevention)
Vulnerability Impact on
Severity of Outcome
(Detection, Response, or
Recovery)
Overall Vulnerability
Avoid?
Transfer?
Accept?
Reduce?
Level Reason
Threat Likelihood
Threat Gravity
Overall Threat
Vulnerability Assessment (After Recommendation)
Level Reason
Vulnerability Impact on
Probability of Compromise
(Prevention)
Vulnerability Impact on
Severity of Outcome
(Detection, Response, or
Recovery)