Creation Date:  2017-10-13
Category:  Risk Management
Effective Date:  2017-10-13
Type:  Procedures
Last Reviewed:  2022-06-07
Version:  2.0
Scheduled Review Date:  
Security Classification:  Protected A
Status:  Approved

Please note that information classified as Protected (per the Data and Information Security Classification standard) is only accessible to Government of Alberta Employees. External users are therefore not able to download this document. To request access, please contact us:

​​​​​​​​​Process for tracking and managing the STRA lifecycle. Security Threat and Risks Assessments (STRA) must be conducted for all new IT systems and for substantial updates to existing systems.

Keywords: cybersecurity, risk assessment, risk management, STRA