Blog
October 26, 2022

What does a Threat Risk Assessment Include?


Featured image for “What does a Threat Risk Assessment Include?”

Physical Security Threat Risk Assessments (STRA)

A Physical Security Threat Risk Assessment (TRA or STRA) is a foundational component to any corporate security program.  It is the critical starting point to evaluate threats and risks to people, assets and information. From the assessment a company can layer security policies, processes and physical security infrastructure to address the identified risks with effective security solutions in a systematic and cost effective manner. A TRA includes;

Prioritize Assets

Threat Risk Assessment’s involve an itemization and prioritization of corporate assets for their criticality and sensitivity. This can include physical assets as well as client information and other privileged, private or confidential data.

Evaluate Risks and Threats

Relevant threat considerations are then assessed for their likelihood and impact using established security industry methodologies such as ASIS International TRA standards, Crime Prevention Through Environmental Design (CPTED) and Harmonized Threat Risk Assessment (HTRA). These can include but are not limited to threats such as theft, explosives, arson, unauthorized entry, external attacks, insider sabotage and terrorism.

Security Systems Review

The existing physical security processes, tools and infrastructure to determine their effectiveness to secure the most critical assets against the identified threats and risks.

Recommendations for Mitigation

The results is a report that will articulate the vulnerabilities and make effective, efficient, defendable, and cost effective recommendations to mitigate risk, with criticality ratings that provide guidance on prioritization.

An STRA will recommendations offers; 

  • Better risk management: Understand your vulnerabilities on the expertise of a trusted 3rd party reviewer 
  • Make informed investment decisions: Use the recommendations to prioritize any potential security upgrades and investments
  • Satisfy client, vendor and/or 3rd party requirements

Qualifications and Certifications

Kirsch Group is proud to offer experienced physical security professionals with over 20 years in the physical and information security space with the relevant qualification and certifications to meet your requirements. 

If you have any questions or need assistance with a Physical Security Threat Risk Assessments (STRA) that has been requested by a vendor please get in touch. We are here to help.