Risk Scan: A Review of Risk Assessment Capability and Maturity within the Canadian Safety and Security Program
DRDC -Centre for Security Science Ottawa, ON Canada
Pagination or Media Count:
The Canadian Safety and Security Program CSSP management framework, with respect to governance, collaboration, project selection, financial management and accountability, policy and planning, and the evolving public safety and security environment is more dynamic than ever, The need to focus on improving the quality, timeliness and value of risk information has never been greater, CSSP Strategic Planning Guidance 2013 states the requirement to compile a compendium of risk assessment technique with a view to building a consolidated, cross-domain capability-based perspective. The study considered risk assessment capabilities on the operational and program levels. The streamlined methodology included interviews and literature review, including international standards and best practices. Risk Assessment Capability Profiles were developed for operational areas and for the program. A capability maturity model technique and a preliminary SWOT analysis highlight quick wins for process improvement in the near-term. The study found that there is limited visibility of risk assessment and other decision support techniques that are being used by external organizations to prioritize requirements, and there is no internal systematic approach to communicate risk across communities and at the program level. For the most part, risk assessment is an ad hoc process, and there are missed opportunities to contribute to the programs strategic outcomes, value and evidence base.