Skip to content

Fortune Favors the Prepared

Semper Paratus, Semper Gumby

Menu
  • The Continuity Chronicles
  • Intelligence Reports
        • DAILY THREAT REPORT
        • DAILY THREAT REPORT – LITE
        • DAILY PREPAREDNESS BRIEF
        • Analytical Standards and Tradecraft
        • Acronym & Abbreviations Glossary
        • Source Registry
        • FLASH & SPECIAL REPORTS
        • Area-Specific Assessment Report
        • SOFT TARGET SECURITY BRIEF
        • THE HOUSEHOLD BRIEF
        • COMMS WATCH
        • FINANCE SECTOR
        • HEALTHCARE SECTOR
        • TRANSPORTATION & LOGISTICS SECTOR
        • AI, DATA CENTER & INFRASTRUCTURE REPORT
        • CONSTRUCTION & MANUFACTURING SECTOR
        • Water and Wastewater Security Report
        • Energy Sector Report
        • Strategic Intelligence Supplement
  • WATCH DESK
  • About
        • The Why
        • Vision and Mission
        • Services
          • Business Resiliency
        • Testimonials
        • Insider
        • Friends
          • Patriot Volunteer Examiner (VE) Team
          • Angery American
          • Signal Stuff
          • Forward Observer
  • Communications
        • Stump Knocker
          • SOI
          • STUMP KNOCKER DMR UPDATES
          • MMDVM Hotspot
        • Preparedness Communications
          • What Radio Should I Get for Preparedness?
            • What Radio to Buy?
              • What Radio to Buy? – video
              • Ham Radio on a Budget
              • Live – What Radio to Buy?
              • Portable Radio Kit
              • Mobile Communications
          • Emergency Communications Principles
          • Communications Options
          • Starter Radio Paths by Preparedness Scenario
          • How Communications Fail
          • HF Communications
            • SHTF HF Communications
            • Simple Antenna Builds for HF – video
            • NVIS in Amateur Radio
        • Amateur (HAM) Radio
          • Why Do I Need a Ham License?
            • How to Obtain Your Amateur Radio License
              • Amateur Radio Learning Resources
              • Finding a Ham Exam
                • HAM Exam Accommodation
              • Getting Into Ham Radio – Video
            • Are You Expired?
            • Why You Should Upgrade to a General Ham License
          • HAM Simplex Frequency Card
          • Analog versus Digital
          • Analog vs Digital Voice: A Preparedness-Focused Comparison
          • What are CTCSS and DCS
          • Programming Radios with Software
          • ARES, RACES, ACS and AUXCOMM
          • Ham Radio Beyond Line-of-Sight
            • Linked Analog Repeaters
            • EchoLink and IRLP
            • AllStarLink
            • Yaesu System Fusion & WIRES-X
            • D-STAR
            • Digital Mobile Radio (DMR)
            • P25 in Amateur Radio
            • NXDN in Amateur Radio
            • Amateur Radio Satellites (AMSAT)
            • The 60-Meter Band (5 MHz)
          • Meshtastic
          • HAM VoIP
        • Personal Radio Services
          • FCC Rules for Personal Radio Services
          • Family Radio Service (FRS)
          • General Mobile Radio Service (GMRS)
            • GMRS Repeaters
            • Getting a GMRS License
            • FRS / GMRS / MURS Frequency Card
          • Multi-Use Radio Service (MURS)
          • Citizen Band (CB) Radio
            • CB Frequency Card
        • Other Radio Services
          • Communications Continuity Programs and Capabilities
          • Marine Communications
        • Cell Sites and Their Services
          • When Cell Service Fails
          • Radio over LTE and Rapid Radios
            • LTE Radio Comparison
        • Satellite Communications
          • America’s Secret Eyes
          • The Commercial Eye
          • Seeing Through Everything (SAR)
            • Remote Area Emergency Communication Devices
            • Which Beacon Should You Carry?
          • Personal Satellite Communications
        • Wired Communications
          • MAG Phone System
          • TA-312/PT Field Telephone and SB-22/PT Switchboard
          • Understanding Telephone Wiring
          • The AT&T Long Lines Program
        • Communications Planning
          • Communications Plan Annex
            • Communications P.A.C.E.
            • Finding Information for Your Communications Plan
            • Area-Specific Assessment Report
          • Automatic Link Establishment (ALE)
          • Understanding Communications Resiliency
        • Communications Resiliency Programs
          • ARES, RACES and ACS
          • Auxiliary Communications (AUXCOMM)
          • Military Auxiliary Radio System (MARS)
          • U.S. Coast Guard Auxiliary Communications
          • Civil Air Patrol Communications
          • The 60-Meter Band (5 MHz)
            • Understanding the 60-Meter Band
        • Government Communications Continuity Programs
          • Government Emergency Telecommunications Service (GETS) and Wireless Priority Service (WPS)
          • National Warning System (NAWAS)
          • National Interoperable Frequencies
          • The FEMA National Net (FNARS)
          • National Emergency Communications Network (NECN)
          • The SHARES Program
          • State Emergency Capability Using Radio Effectively (Operation SECURE)
          • The High Frequency Global Communications System (HFGCS)
          • Satellite Mutual Aid Radio Talkgroup (SMART)
          • The AT&T Long Lines Program
        • Communications & Emissions Discipline
          • Communications Security (COMSEC)
            • Book Cipher
            • One Time Pads (OTP)
              • Decrypting One Time Pad Message
              • One Time Pads (OTP) Live Video
              • One Time Pad Training
          • Cryptographic Security (CRYPTOSEC)
          • Transmission Security (TRANSEC)
          • Communications Transmission Discipline (TRANSDISC)
          • Emissions Control (EMCON)
          • Communications & Emissions Training Framework
        • DMR Programming
          • DMR Programming – Talk Groups
          • DMR Programming - Roaming
          • MMDVM and Yaesu System Fusion (YSF)
          • Encryption in DMR Radios
        • Digital Mobile Radio (DMR) Networks
          • WR3IRS Interstate DMR Network
            • South Central PA (SC PA)
            • North East PA (NE PA)
            • Washington-Baltimore (W-B)
            • West Central Florida (WCF)
          • Florida Digital Amateur Radio Network (F-DARN)
          • Southeast Florida DMR Repeater Network W2GGI
          • Virginia DMR (DMRVA)
          • NC PRN DMR Network
          • SC Hospital Emergency Amateur Radio Team (SCHEART)
          • HEARS – Hospital Emergency Amateur Radio System
          • New England Digital Emergency Communications Network (NEDECN)
        • Baofeng/BTECH Radios Quick Guide
          • Manually Programming a Baofeng Radio – Video
          • A User’s User Manual for Baofeng Radios
        • MESSAGES & REPORTS
          • Phonetics
          • Procedure Words (Prowords)
          • Date Time Group (DTG)
          • NTS Radiogram Form
            • ARL Numbered Radiograms
          • SALUTE, SPOT, and SALT Reports
          • ACE/LACE Reports
          • GOTWA Report
          • CASREP (Casualty Report) Format
          • MEDEVAC Request Report
          • Formatted Messages (downloads)
        • Communications Knowledge Library
          • Communications Resiliency
          • Radio Etiquette, Jargon, and Best Practices
          • AmRRON RESOURCES & REFERENCES
          • Anytone Programmable Keys
          • Phonetics
          • Amateur Radio Colorado
            • Colorado Linked Repeater Systems
        • COMMUNICATIONS REFERENCES
  • Planning
        • Family Emergency Plan – The Basics
          • Family Emergency Plan
            • Area-Specific Assessment Report
          • Why Every Family Needs an Emergency Plan
        • Family Contingency Binder
          • Family Contingency Binder MindMap
        • Triggers
          • Preparedness Conditions – PREP-CON
            • Preparedness Conditions (PREP-CON) MindMap
          • Space Weather
        • Family Emergency Plan Workbook
          • Family Emergency Plan Workbook - owner resources
            • Area-Specific Assessment Report
            • Family Emergency Planning Form
            • Communications Plan
              • P.A.C.E.
            • Emergency Evacuation
            • Emergency Food Supplies
            • Family Contingency Binder
            • Message Drops
            • Get Home Bag
            • Bug Out Bag & Bins
            • Miscellaneous
        • Household Recovery Workbook
          • Household Recovery Workbook Updates
          • Disaster Debris — What to Do at the Curb
          • Dealing With Grief
        • Next of Kin Workbook
          • Next of Kin Workbook Updates
        • METT-TC: Decision Discipline
          • METT-TC - tactical planning
        • Planning Your Preps
          • Charity in Planning
        • Mutual Assistance Group
          • Mutual Assistance Group Workbook
            • MAG Workbook Forms & Updates
          • Mutual Assistance Groups (MAGs): Skills, Vetting, and Building Real Resilience
          • Mutual Assistance Group (MAG): Recruitment Code of Conduct
          • MAG: Private Vetting & Intake Process
          • Compartmentalization in Mutual Assistance Groups (MAGs)
          • Resiliency Index
          • Continuity of Government & Application to MAGs
  • Threat Assessment
        • Personal Preparedness Assessment Workbook
          • Personal Preparedness Assessment Report
          • Personal Preparedness Assessment Workbook - owner resources
        • Readiness Conditions for Preparedness
          • PREP-CON - Preparedness Conditions
          • COMCON – Communications Readiness Condition
          • WX-CON Weather Conditions
          • SWX-CON Space Weather Condition
          • CONCON – Civilian Continuity Conditions
        • Readiness Conditions – Hierarchy and Relationships
          • LERTCON – Alert Condition
          • DEFCON – Defense Readiness Condition
          • COGCON - Continuity of Government
          • INFOCON – Information Operations Condition
          • FPCON – Force Protection Condition
          • EMERCON – Emergency Condition
          • CYBERCON – Cyber Readiness Conditions
          • CPCON – Cyberspace Protection Condition
          • WATCHCON – Watch Condition
          • SIPRNet – Secret Internet Protocol Router Network
          • REDCON – Readiness Condition
          • NC3CON – Nuclear Command, Control, and Communications
        • Readiness Conditions in The Conspiracy Chronicles
          • CERCON – Cerberus Readiness Condition
          • COMCON – Communications Readiness Condition
          • C-OPS – CERBERUS Operational Status Conditions
          • CONCON – Civilian Continuity Conditions
        • Being Prepared for Civil Unrest
          • Civil Unrest – Area Intelligence
          • Civil Unrest – Be Prepared
          • Civil Unrest – Defense
          • Civil Unrest – Defense (part 2)
        • Staying Informed Before, During and After Emergencies
          • Weather Awareness
            • Weather Event Codes
            • Weather Radio Comparison
        • Cascade Analysis & Infrastructure
          • Cascade Effects
          • Community Lifelines
          • Area Intelligence
          • Area-Specific Assessment Report
          • National Power Grid
  • Intelligence
        • ANALYSIS, TRADECRAFT & REPORTING
          • Analytical Standards and Tradecraft
          • Analytical Tradecraft: A Guide to OSINT Analysis
            • OSINT Analysis Study & Reference Guide
          • Understanding Intelligence Analysis Tools
            • Understanding Analysis of Competing Hypotheses (ACH)
            • Understanding MDCOA
            • Understanding OAKOC
        • Operations Security (OPSEC)
          • OPSEC for Teens
          • OPSEC for Kids
          • The Gray Man
          • OPSEC: Don't Become the Target
          • Counterintelligence Tradecraft for the Prepared
        • Community Intelligence
          • Area Intelligence – Now!
            • Area-Specific Assessment Report
          • Community SITREP
          • Radio Traffic Situational Analysis During Emergencies
          • SALUTE, SPOT, and SALT Reports
        • ELECTRONIC THREAT & SURVEILLANCE
          • Staying Informed Before, During and After Emergencies
          • Integrated Public Alert and Warning System (IPAWS)
          • Communications Continuity Programs and Capabilities
          • Short Wave Scanning
          • Seeing Through Everything (SAR)
            • Which Beacon Should You Carry?
          • Wireless Recon Devices
        • The Architecture of Intelligence
        • Intelligence Gathering & Analysis
        • INTELLIGENCE DISCIPLINES
          • Communications Intelligence (COMINT)
          • Electronic Intelligence (ELINT)
          • Tactical Electronic Intelligence (TACELINT)
          • Signals Intelligence (SIGINT) – the basics (2020)
          • Signals Intelligence – Information Gathering Basics (2022)
          • Signals Intelligence (SIGINT)
          • Technical & Infrastructure Intelligence (TECHINT)
          • Electronic Counter-Surveillance
          • Open-Source Intelligence (OSINT)
            • How to Conduct a Daily Threat Analysis Using OSINT
          • Measurement and Signature Intelligence (MASINT)
          • Electronic Surveillance (ES)
          • Overhead Imagery & Geospatial Intelligence (IMINT / GEOINT)
        • INTELLIGENCE REFERENCES
  • Medical
        • Medical Training
          • Patient Assessment & Casualty Management
            • MARCH-PAWS Rapid Assessment
              • MARCH-PAWS TRAINING CURRICULUM
            • DCAP-BTLS – Secondary Trauma Assessment
            • SAMPLE + OPQRST Secondary Assessment
              • Medical History as a Preparedness Skill
            • START Triage
            • MEDEVAC Request Report
            • Patient Assessment – Documentation
              • Patient Care Report Forms
              • CASREP (Casualty Report) Format
        • Medical Kits
          • Individual First Aid Kit (IFAK)
          • BooBoo and IFAK Kits Video
          • BooBoo & IFAK Kit Mind Map
          • Large Kit - video
        • Medical Myths
          • Medical Myths – Tampons
          • Medical Myths – Ingested Poisoning
        • MEDICAL REFERENCES
  • Transportation
    • Transportation Plan B
    • Improvised Transportation
    • Preparedness For Winter Travel
  • Animals
    • Preparedness for Pets
  • Food
        • Why You Should Start a Food Storage Plan
        • Food Storage Quick Start
        • Buying in Bulk
        • Inventory Tracking
        • FOOD PRESERVATION RESOURCES
  • Water
  • Power
        • Power Grid
        • UPS
  • Bags etc.
        • Bug Out versus Get Home Bags
        • Get Home Bag – Contents
          • Get Home Bag – video
          • Get Home and Bug Out Bags - video from live 2-10
  • Navigation & Signalling
        • Practitioners Guide to GPS
          • Quick Instruction Sets
        • Emergency Signaling
        • Covert Signals
        • Which Emergency Beacon Should You Carry?
        • Sketched Strip Map
  • References
        • PLANNING & OPERATIONS
        • SECURITY OPERATIONS
        • INTELLIGENCE
        • CRYPTOLOGY
        • COMMUNICATIONS
        • REPORTING FORMATS
        • GENERAL/MISC
        • MEDICAL
        • FOOD PRESERVATION
        • CRITICAL INFRASTRUCTURE
        • SURVIVAL MANUALS
        • OPSEC
        • COUNTER INSURGENCY & CIVIL DISTURBANCE
        • EMP / CME
        • Training
          • Training Videos
          • One Time Pad (OTP) Exercises
            • 45662
            • 222135ZDEC22
  • Blog
    • Boomer
      • Day 1 – The Journey Home
      • Day 2 – First Day in the New Home
      • Day 3 – More Training
      • Day 4 – Dad Goes Back to Work
      • Day 5 – A Day at Home with More Training with Dad (Boomer’s version)
      • Day 6 – More Training with Dad at Home
      • Day 7 – Dad Goes Back to Work, Boring Day
    • Mountain Readiness Fallout Workshops
    • Mapping DMR Repeaters
    • COMMUNICATIONS RESILIENCY
    • Getting The Message Through
    • What are you preparing for?
    • Never Let an Opportunity Go To Waste
    • Cascade Effects and the Perfect Storm
    • DO NOT REPLY
    • Space Weather Warning
    • Good, and Sad, News
    • Necessity vs. Luxury
    • Don’t Put off Until Tomorrow
    • No Plan Survives First Contact
    • Threat and Hazard Identification and Risk Assessment (THIRA)
    • Live – What Radio to Buy?
    • Big Daddy Unlimited Affiliate
    • Food – Tue 16th 7pm MST
    • Live from 2021-2-3
    • Live 2021-01-26
    • FLASH SALE
    • Live 2021-01-11
    • What Is Freedom?
    • Preparedness for Pets
    • What If The Lights Go Out?
    • Hoarding or Prepping?
    • Why Do I Need a Ham License?
    • How Bad is the SolarWinds Orion Issue?
    • How To Begin Prepping
    • Members Only Live Videos
    • Live 11/24
    • Ham Radio VoIP Phone
    • Training Calendar
    • A Chat (with some whisky)
    • Blog 2020 11 02
    • Live with Charlie Hogwood
    • EARTH EX 2020
    • A Live with Angery American
    • Have You Woken Up Yet?
    • BUG OUT READY
    • The Gray Man
    • Area Intelligence – Now!
    • Being Prepared for Civil Unrest
    • It Depends
    • The Art of Being Prepared – The New Prepper
    • Get Home versus Bug Out Bags
    • Why You Need an IFAK AND Training
  • Training Curriculum
  • Shop
  • Contact
    • Mailing List
  • Media and Press
Menu

Know What’s Showing Lesson 2

Fortune Favors the Prepared
SEC-02: Know What You’re Showing · Lesson 2 of 7

SEC-02-02

The Five-Step Process

The diagnostic framework that produces protection

Bottom Line Up Front

The OPSEC process has five steps that must be run in sequence. Each step depends on the output of the one before it. Skipping or reversing steps is not a shortcut — it is a guarantee that your countermeasures will be aimed at the wrong targets. This lesson maps all five steps and explains why their order is not arbitrary.

The Five Steps


The Process in Sequence

Step 1

Identify Critical Information

Before you can protect anything, you need to know what you are protecting. Critical information is the specific facts that, if obtained by an adversary, would allow them to disrupt your plans, operations, or safety. The output of this step is a Critical Information List (CIL) — a short, specific, prioritized list. Longer is not better. If everything is critical, nothing is. Lesson 3 covers CIL construction in full.

Step 2

Analyze the Threat

A threat is only a threat if it has both the capability and the intent to collect your critical information and act on it. Step 2 forces you to name your actual adversaries, not imagined ones, and assess what they are capable of. Who specifically would benefit from knowing what you have on your CIL? What collection methods can they access? This is not paranoia — it is triage. Lesson 4 covers threat analysis.

Step 3

Analyze Vulnerabilities

A vulnerability is the intersection of an indicator your activities produce and a collection capability your adversary possesses. Your activities leave traces — behavioral patterns, physical evidence, digital footprints, communications. Step 3 examines those traces against the threats identified in Step 2. Not all indicators are vulnerabilities; they are only vulnerabilities if your identified adversary can actually exploit them. Lesson 5 covers indicators and vulnerabilities.

Step 4

Assess Risk

Not every vulnerability carries the same risk, and not every risk is worth equal countermeasure effort. Step 4 asks: if this adversary exploits this vulnerability, how bad is the outcome, and how likely is that exploitation? Risk = threat level x vulnerability severity x impact. The result is a prioritized list of what to address first, and what to accept. Lesson 6 covers risk assessment.

Step 5

Apply Countermeasures

Only after completing Steps 1 through 4 do you select and implement countermeasures. Countermeasures can take three forms: action control (change or stop the activity that produces the indicator), countermeasures (technical or physical measures that block collection), and counter-analysis (deception that makes your indicators misleading). The goal is not to apply all available countermeasures — it is to apply the right ones at the highest-priority vulnerabilities. Lesson 7 covers countermeasures and the continuous cycle.

Why the Sequence Matters


The Logic of the Order

Each step is impossible to execute correctly without the one before it. You cannot assess vulnerabilities (Step 3) without knowing your adversary’s collection capability (Step 2). You cannot assess your adversary’s capability (Step 2) without knowing what information they would want (Step 1). You cannot prioritize risk (Step 4) without knowing which vulnerabilities exist (Step 3). You cannot select countermeasures (Step 5) without knowing which vulnerabilities are high-priority risks (Step 4).

Most people who “do OPSEC” jump directly to Step 5 — they buy the encrypted app, they change the password, they switch to cash — without having run Steps 1 through 4. This means their countermeasures are disconnected from any analysis of actual risk. They may be protecting the wrong things while leaving real vulnerabilities open. The five-step sequence exists to prevent exactly this.

Field Example

The prepared family that skipped Step 2

A family did a serious job of identifying their critical information (Step 1) and spent months securing against digital collection — encrypted communications, no social media, privacy screen filters (Step 5). What they skipped was threat analysis (Step 2). Their actual highest-risk adversary was not a digital threat at all: it was a neighbor who had observed their vehicle patterns, visitor frequency, and delivery receipts over two years. The neighbor had no digital collection capability, but excellent observational access. All the digital countermeasures were correctly applied to the wrong threat.

Running Step 2 properly would have redirected effort toward the physical and behavioral indicators the neighbor could observe — and away from digital controls that addressed a threat that did not exist in their environment.

Drill

Without looking back at the lesson, write down the five steps in order from memory. If you miss the order or conflate any steps, re-read the step definitions above. You will need all five steps — in order — to complete the assessments later in this course.

Knowledge Check

In the OPSEC process, why must threat analysis (Step 2) precede vulnerability analysis (Step 3)?

Lesson Checkpoint

I can name all five steps of the OPSEC process in the correct sequence.

I understand that each step depends on the output of the step before it.

I understand that countermeasures (Step 5) are the last step, not the first.

I can explain why skipping steps produces misdirected protection rather than savings.

← PreviousLesson 1 of 7: What OPSEC Actually Is
Next →Lesson 3 of 7: Building Your Critical Information List

↑ All Seven Lessons

Semper Paratus, Semper Gumby

Login with Patreon

Login with Patreon

Search Site

Products

  • Family Emergency Plan and Household Recovery Workbooks - Patreon Family Emergency Plan and Household Recovery Workbooks - Patreon $34.95
  • Bundle - Family Emergency Plan and Household Recovery Workbooks Bundle - Family Emergency Plan and Household Recovery Workbooks $46.95
  • Household Recovery Workbook Household Recovery Workbook $29.95
  • The Continuity Chronicles Seal Decal The Continuity Chronicles Seal Decal $5.00 Original price was: $5.00.$3.00Current price is: $3.00.
  • Family Emergency Plan Workbook - Patreon Family Emergency Plan Workbook - Patreon $19.95
  • Personal Preparedness Assessment Workbook - Patreon Personal Preparedness Assessment Workbook - Patreon $19.95
  • The Next of Kin Workbook - Patreon The Next of Kin Workbook - Patreon $23.95
  • Personal Preparedness Assessment Report Personal Preparedness Assessment Report $179.95
  • Bundle - Family Emergency Plan + Next of Kin Workbooks Bundle - Family Emergency Plan + Next of Kin Workbooks $49.95
  • The Next of Kin Workbook The Next of Kin Workbook $29.95
  • ASAR — 50 Mile Radius ASAR — 50 Mile Radius $139.95
  • ASAR 50-MILE + FEP WORKBOOK ASAR 50-MILE + FEP WORKBOOK $169.95
  • ASAR — 50 Mile Radius - Patreon ASAR — 50 Mile Radius - Patreon $39.95
  • Bundle - The Series Starter (Paperback) Bundle - The Series Starter (Paperback) $29.98
  • The Brush (Paperback) The Brush (Paperback) $15.99
  • The Meadow Protocol (Paperback) The Meadow Protocol (Paperback) $13.99
  • Cards (4x6) - Brevity Cards for OTP Cards (4x6) - Brevity Cards for OTP $24.95
  • Communications Card bundle (13 cards) Communications Card bundle (13 cards) $41.95
  • Personal Preparedness Assessment Workbook Personal Preparedness Assessment Workbook $24.95
  • Family Emergency Plan Workbook Family Emergency Plan Workbook $24.95

Product categories

Cart

©2026 Fortune Favors the Prepared | Built using WordPress and Responsive Blogily theme by Superb