Skip to content

Assignment: Review risk analysis and pseudonymization as mitigation

Week 3

Team project

This week you'll start adding mitigation options to your risk analysis which you've been working on. This means you'll:

Jobs this week

  1. Revisit your architecture and make any changes based on your learnings thus far (Redraw and update)

  2. Update any data flow risk you removed as a result of those changes

  3. Update any components you added or removed

  4. Review your risk prioritizations based on our red teaming.

  5. Is there anything you'd like to reprioritize?

  6. Are any risks irrelevant now? (hooray, you can add them to #3).

  7. Start on your mitigations and controls section

  8. See draft below but change as you need to

  9. If you made any changes in 1 or 2, you can add them as mitigations and controls!

Please submit to Use Case Submissions channel or via DM/Email.

5. Mitigations and Controls

Risk Mitigation or Control Review Reduction or Impact Change Implement? (y/n)
Risk 1 Pseudonymization of User Input We analyzed... Risk of sensitive data exposure to 3rd parties reduced y