Number: 
Creation Date:  2017-10-13
Category:  Risk Management
Effective Date:  2017-10-13
Type:  Procedures
Last Reviewed:  2017-10-13
Version:  1.0
Scheduled Review Date: 2019-07-01
Security Classification:  Public
Status:  Approved

Description:

​Process for tracking and managing the STRA lifecycle. Security Threat and Risks Assessments (STRA) must be conducted for all new IT systems and for substantial updates to existing systems.


Keywords: CISO, Risk Assessment, Risk Management, STRA