Resilience Assessments

The Regional Resilience Assessment Program

The Regional Resilience Assessment Program (RRAP) is a vulnerability and dependency assessment program for owners and operators of critical infrastructure (CI) facilities in Canada's 10 CI sectors. This program helps organizations measure and improve their resilience to all hazards in Canada, including accidental or intentional human-induced events and natural disasters.

Assessments are voluntary, non-regulatory, free-of-charge, and confidential. Participants are asked to complete three (3) five-minute surveys on their experience with the program after the assessment is completed.

How it works

The RRAP is comprised of two tools:

Critical Infrastructure Resilience Tool (CIRT) (1 day to complete)

• An onsite, survey-based tool that considers the protective measures and resilience of a facility
• Outputs include a report and interactive dashboards that provide scores and peer comparisons, and highlight dependencies and resilience enhancement options for physical security and resilience

Critical Infrastructure Multimedia Tool (CIMT) (1/2 – 1 day to complete)

• A virtual rendering of a facility based on layout and floor plans. It features panoramic photographs of interior and exterior areas and can be shared with first responders and/or used in training and exercises
• The CIMT output can be shared with first responders for training and tactical purposes

The CIRT should be completed by individuals who are subject matter experts on facility security, IT, and facility management. Organizations can request each one of the tools individually or as a package. Post-assessment check-ups may be conducted with your organization up to 24 months after the assessment.

Organizations may also signal interest in participating in a broader regional assessment. These projects typically involve Public Safety working with multiple organizations in a particular region. Examining a specific hazard, the objective is to help identify key interdependencies, as well as opportunities to individually and collectively minimize the impact and likelihood of a disruption. During a regional assessment, the individual assessment tools are deployed alongside modelling tools, workshops, stakeholder meetings, and subject matter expert interviews.

How it helps your organization

Assessment results are intended to help owners and operators enhance their security and resilience by identifying dependencies and vulnerabilities within their organization.

Assessments also identify a series of optional cost-effective measures to mitigate risks and improve the ability to respond to and recover from disruptions.

Specifically, the RRAP helps to enable:

• Better risk management
  Increases an organization's understanding of its physical and procedural vulnerabilities
• Stronger relationships with government
  Enhances relationships with multiple government departments, including municipal level representatives such as first responders
• Minimal investment of time and resources
  RRAP is quick and offered at no cost
• Security of information
  Public Safety Canada will protect the confidentiality of documents and information provided by owners and operators of CI

Implementation of any/all resilience enhancements options and observations provided following an assessment are at the discretion of the owner/operator.

Date modified:

2025-03-10