PRE-TRAVEL THREAT ASSESSMENT

[PRINCIPAL / TRAVELLER - TRIP / ITINERARY TITLE - ENGAGEMENT REF]

The Pre-Travel Threat Assessment is the trip- and traveller-scoped threat picture prepared before a defined journey: it answers, for a specific principal (or party) travelling a specific itinerary on specific dates, what threatens this traveller, where on the journey, how severely, and which way it is trending - expressed as a structured, scored threat picture using an explicit Likelihood × Impact (1–5 × 1–5 = 1–25) register, segmented by itinerary leg (origin → transit → arrival → ground transfer → accommodation → planned movements & venues → departure → return) and aggregated to a headline trip threat rating with a go / go-with-conditions / defer recommendation. It is a space/time-anchored framework product: its threat taxonomy maps onto the PMESII-PT operating environment, its movement analysis uses OCOKA-style route factors, and its collection logic is PIR → leg/threat-category → indicator → source. It is duty-of-care intelligence: it informs how the client protects the traveller. It consumes the holistic environmental rating of the Country Risk Assessment and the descriptive baseline of the Regional Study for each destination, and the footprint-specific picture of the Country-Entry Risk Assessment where a deployment underlies the trip; it does not deliver the protective measures themselves - secure transport, advance work, the protective detail, the comms and meeting plan - which are the Executive Trip Security Package; the contingency, medical/security-evacuation, and emergency-response procedures, which are the Travel Emergency & Evacuation Plan; the continuous in-trip tracking and alerting of Real-Time Travel Monitoring & Tracking (retained service); the dedicated threat-actor kidnap analysis of the Kidnap & Ransom (K&R) Risk Assessment; or the residence picture of the Residential Vulnerability & Threat Assessment. Where those needs surface, raise them as RFIs in §23 and escalate. Protective-posture content here is analytic and advisory - it identifies what category and direction of measure would reduce residual threat to the traveller; it does not constitute the protective-operations, transport-security, evacuation, or medical plan, which are separately scoped products. This is a threat assessment; it is not legal, medical, insurance, or travel advice, and it is not a guarantee of the traveller’s safety.


Document Control

FieldValue
Report Reference[REF-YYYY-###]
Date of Report[YYYY-MM-DD]
Baseline / As-Of Date[YYYY-MM-DD - the date through which threat is assessed]
Travel Window[YYYY-MM-DD → YYYY-MM-DD - first departure to final return]
Classification / Handling[CONFIDENTIAL - CLIENT EYES ONLY / TLP:AMBER]
Client[CLIENT NAME]
Requesting Party[CONTACT - ENGAGEMENT REF]
Principal / Traveller(s)[NAME(S) / ROLE - and party size/composition; redact to role where dissemination requires]
Itinerary Summary[Origin → destination(s) → return, with key dates - full detail in §7]
Purpose of Travel[e.g., business / diplomatic / philanthropic / personal / site visit - and public-profile of the trip]
Client Exposure / Duty-of-Care Basis[Why the client owns the traveller’s safety - employer / protectee / family principal / host]
Engagement Purpose[Decision the assessment informs - e.g., go/no-go, protective posture-setting, package scoping for the Trip Security Package / Emergency & Evacuation Plan]
Scope / Depth[Trip-scoped, leg-segmented, traveller-specific threat rating - see §2 scope]
Prepared By[ANALYST NAME / ID]
Reviewed By[REVIEWER NAME / ID]
Approving Officer[APPROVER NAME / ID]
Version[1.0]
Distribution[NAMED RECIPIENTS]

Handling: [Classification/TLP]. Disseminate only to the named authorized recipients. Reproduction or onward sharing prohibited without originator approval. This product is built around a named individual’s identity, travel pattern, and movements - it is personal data of the highest sensitivity and, aggregated, approaches a pattern-of-life. Store and transmit per the client data-processing agreement and applicable data-protection frameworks (GDPR, CCPA, and local equivalents); restrict to those with a protective need-to-know; and protect the itinerary itself as the single most sensitive element (its compromise is itself a threat vector - see §14).

Nature of this product (READ FIRST): This is an open-source-based analytic assessment of threat to a traveller, prepared to inform the client’s duty-of-care and protective decisions. It is not legal, medical, insurance, or travel advice; not a protective-operations, transport-security, or evacuation plan; and not a guarantee of the traveller’s safety. The threat scores are the firm’s structured analytic judgments, calibrated to the stated scales - an aid to protective prioritisation, not precise measurements, actuarial probabilities, or statements of certainty. The assessment is one input; the client’s security, legal, medical, and in-country advisers, and the traveller’s own decisions, govern conduct on the ground.

Analytic independence & objectivity (ICD 203): Scores and judgments are the firm’s independent analytic assessment, reached on the evidence and free of any pressure to clear or to defer a trip for reasons other than the threat picture. Reporting is distinguished from analyst judgment throughout; uncertainty drivers and change indicators are stated explicitly; alternative explanations are tested. Where the client’s or principal’s preference is to travel regardless, the assessment is not softened to suit it - the threat is stated as assessed and the decision left to the client.

Sourcing & legality: Findings derive from open, licensed, and lawfully accessed sources - public record, official travel and health advisories, reputable media, recognised security-risk and conflict datasets used within licence, mapping and routing data, and (where commissioned) discreet in-country human sourcing and advance reconnaissance - current as of the baseline date and graded (Annex A). No classified, proprietary-without-licence, or unlawfully obtained material is used; no surveillance, tracking, interception, or access in breach of any jurisdiction’s law is conducted, including against the principal. Official statistics and state-controlled media are treated as potentially self-interested and corroborated against independent sources.

Scope of protective content: Protective-posture and mitigation options in §20 are advisory and analytic - they indicate the direction and category of measure that would lower residual threat to the traveller. They are not the protective-operations plan, transport-security plan, advance work, detail deployment, secure-communications plan, medical-support plan, or evacuation procedure - those are the Executive Trip Security Package and the Travel Emergency & Evacuation Plan, and should not be improvised from this document.

Perishability: This is a point-in-time assessment against a specific travel window. Threat conditions move fast and locally - an advisory, an incident, or an itinerary change can invalidate a leg’s rating overnight. Scores are time-sensitive - re-verify against current reporting immediately before departure and on any itinerary change, and commission Real-Time Travel Monitoring for in-trip currency.

Reliance: Reliance is limited to the named client for the stated trip and purpose; no third-party reliance without originator consent.

Threat Snapshot

FieldValue
Principal / Party[Name(s)/role; party size - redact to role as dissemination requires]
Travel Window[YYYY-MM-DD → YYYY-MM-DD]
Destinations / Legs[Country/city list; number of legs - see §7]
Overall Trip Threat Rating[LOW (1–5) / MODERATE (6–10) / ELEVATED (11–15) / HIGH (16–20) / CRITICAL (21–25)] - [aggregate score]
Travel Recommendation[GO / GO WITH CONDITIONS / DEFER / DO NOT TRAVEL - see §17]
Rating Trajectory[Improving / Stable / Deteriorating / Volatile over the window - see §17]
Highest-Threat Leg(s)[The 1–2 legs/locations driving the rating - see §15]
Top Residual Threats[The 2–3 ranked residual threats to act on - see §16]
Principal Threat Drivers[Profile-driven exposure / environment / itinerary factors pushing threat up - see §6, §17]
Highest-Priority Watch Indicators[The 1–3 tripwires whose movement would most change the rating - see §19]
Conditions Attached (if any)[The protective conditions on which a GO depends - see §17, §20]
Coverage Confidence[HIGH / MODERATE / LOW - access, source diversity, currency - see §25]
Overall Assessment Confidence[HIGH / MODERATE / LOW - see §25]

Table of Contents

  1. BLUF
  2. Executive Summary & Scope
  3. Key Judgments
  4. Priority Intelligence Requirements (PIRs)
  5. Threat Framing, Taxonomy & Methodology
  6. Traveller / Principal Profile & Target Profile
  7. Itinerary & Movement Profile
  8. Destination Threat Environment
  9. Crime & Targeted-Threat Risk
  10. Terrorism, Conflict & Civil-Disorder Risk
  11. Kidnap, Hostage & Unlawful-Detention Risk
  12. Transport, Movement & Route Risk
  13. Health, Medical & Environmental Risk
  14. Surveillance, Digital & Information-Environment Threat
  15. Per-Leg / Segment Threat Profile
  16. Consolidated Threat Register & Heat Map
  17. Overall Trip Threat Rating, Trajectory & Travel Recommendation
  18. Key Findings Summary
  19. Threat-Escalation & Early-Warning Indicators
  20. Protective Posture & Mitigation Options (Advisory)
  21. Analysis of Competing Hypotheses (ACH)
  22. Key Assumptions Check (KAC)
  23. Collection Gaps & RFIs
  24. Assessment & Recommendations
  25. Annex A - Sources & Methodology
  26. Annex B - Appendices

(Page numbers populate on export to Word/PDF.)


1. BLUF

2–3 sentences. Lead with the overall trip threat rating, the travel recommendation (go / go-with-conditions / defer), the leg(s) driving the rating, and the single most decision-relevant implication for the traveller’s safety - with the recommended posture or condition. Written so the decision-maker can act on this line alone.

[BLUF]

2. Executive Summary & Scope

Triggering requirement and engagement purpose; who is travelling, why, and the client’s duty-of-care basis. Scope in/out stated explicitly - the travel window, the legs/destinations covered, the threat categories scored, the traveller-specific lens applied, and what is deferred to sibling/downstream products (protective measures → Executive Trip Security Package; emergency/evacuation → Travel Emergency & Evacuation Plan; in-trip monitoring → Real-Time Travel Monitoring; threat-actor K&R analysis → Kidnap & Ransom (K&R) Risk Assessment; residence → Residential Vulnerability & Threat Assessment; the country/area environmental inputs consumed → Country Risk Assessment / Regional Study / Country-Entry Risk Assessment). Narrative synthesis of the rating, the travel recommendation, and the principal residual threats across the legs below, to the ICD 203 floor - reporting separated from analytic judgment, uncertainty drivers named, alternatives acknowledged. State the headline rating, the recommendation, and the top residual threats here.

[EXECUTIVE SUMMARY & SCOPE]

3. Key Judgments

The analytic bottom line on threat to the traveller - the overall rating and travel recommendation, the legs and threat categories that most determine it, and the most consequential residual threats. Each judgment carries likelihood and analytic confidence as separate columns (never combined - ICD 203) and a change-indicator stating what would shift it. Order by decision-relevance. Note: the ICD 203 likelihood term here describes the analytic judgment; the 1–5 likelihood in the threat register (§9–§16) is the scoring input - keep the two distinct and consistent (see §5 for the mapping).

#Key JudgmentLikelihoodAnalytic ConfidenceChange Indicator (what would shift it)
KJ-1[e.g., Overall trip threat is assessed [BAND] across the window; recommendation [GO/CONDITIONS/DEFER], driven primarily by [leg/threat]][ICD 203 term][HIGH/MOD/LOW][ ]
KJ-2[e.g., The highest-threat segment is [leg], where [threat] is scored [residual L×I]][ ][ ][ ]
KJ-3[e.g., The traveller’s [profile factor] materially raises targeting risk for [threat category]][ ][ ][ ]
KJ-4[e.g., The dominant escalation pathway is [event/indicator] affecting [leg]][ ][ ][ ]
KJ-5[e.g., The rating trajectory across the window is [stable/rising/volatile], pending [pivotal event]][ ][ ][ ]

4. Priority Intelligence Requirements (PIRs)

Collection-management spine for a travel threat product: PIR → leg/threat-category → indicator → source. State each PIR, the answer, key evidence, and analytic confidence. Each PIR maps to one or more legs or threat categories. Summarize in the matrix.

  • PIR-1 - Target profile & directed threat: Does the traveller’s identity, role, public profile, affiliations, or the trip’s visibility attract directed threat (targeting, hostile surveillance, protest, grievance actor), and from whom? [Answer / evidence / confidence]
  • PIR-2 - Destination threat environment: What is the current threat level at each destination (crime, terrorism, unrest, conflict), and which way is it trending across the travel window? [ ]
  • PIR-3 - Crime & opportunistic threat: What is the risk to the traveller from violent and acquisitive crime, express kidnap, scams, and targeting of visible/foreign travellers, by location and time of day? [ ]
  • PIR-4 - Terrorism, conflict & civil disorder: What is the mass-casualty, conflict, and civil-disorder risk at the destinations and venues on the itinerary, and could it disrupt movement or trap the traveller? [ ]
  • PIR-5 - Kidnap, hostage & unlawful detention: What is the kidnap/hostage/wrongful-detention/arbitrary-arrest risk to a traveller of this profile at these destinations? (Deep threat-actor analysis → K&R Risk Assessment.) [ ]
  • PIR-6 - Transport, movement & route: What is the risk on each transport mode and route segment - aviation/airline/airport safety, ground transport and road safety, transfers, chokepoints, and movement between sites? [ ]
  • PIR-7 - Health, medical & environmental: What are the health, medical-system-adequacy, disease, food/water, and natural-hazard/seasonal exposures over the window, and is evacuation-grade care reachable? [ ]
  • PIR-8 - Surveillance, digital & information threat: What is the risk of hostile surveillance, device/data compromise, lawful-intercept/state-monitoring, and itinerary leakage exposing the traveller? [ ]
  • PIR-9 - Trajectory & inflection: Where is threat heading across the window, and what events/indicators (pre-departure or in-trip) would change a leg’s rating or the recommendation? [ ]
  • [Add trip-specific PIRs - e.g., a named venue, counterpart meeting, route, event coinciding with travel, or a specific prior threat against the principal.]
PIRLeg / Threat CategoryAnswer (summary)ConfidenceKey Gap
PIR-1Target profile[ ][H/M/L][ ]
PIR-2Destination environment[ ][H/M/L][ ]
PIR-3Crime[ ][H/M/L][ ]
PIR-4Terrorism/conflict/unrest[ ][H/M/L][ ]
PIR-5Kidnap/detention[ ][H/M/L][ ]
PIR-6Transport/route[ ][H/M/L][ ]
PIR-7Health/environmental[ ][H/M/L][ ]
PIR-8Surveillance/digital[ ][H/M/L][ ]
PIR-9Trajectory[ ][H/M/L][ ]

5. Threat Framing, Taxonomy & Methodology

The load-bearing methodology section for a scored, trip-segmented product - state the rules before any score appears so the rating is transparent and reproducible. Define, in order:

  • Traveller exposure & threat lens. Who is at risk and what is at stake (the traveller’s life, liberty, health, dignity, and the trip’s mission), and therefore the lens through which impact is scored. Threat is scored as threat TO THIS TRAVELLER on THIS ITINERARY, not as generic destination risk - state this explicitly. Party composition (principal alone / with family / with staff) and any accompanying minors or vulnerable persons are noted as they change the exposure.
  • Threat taxonomy. The threat categories scored (this template uses six - §9–§14: Crime & Targeted-Threat; Terrorism/Conflict/Civil-Disorder; Kidnap/Hostage/Detention; Transport/Movement/Route; Health/Medical/Environmental; Surveillance/Digital/Information), mapped to PMESII-PT and, for movement, OCOKA route factors. Note any category de-emphasised or added for this trip and why.
  • Itinerary segmentation. The trip is decomposed into legs/segments (origin → transit → arrival/border → ground transfer → accommodation → planned movements & venues → departure → return, repeated per destination - §7); threat is scored per category and located to the leg(s) where it bites, then mapped onto the timeline in §15.
  • Scoring scales. Likelihood (1–5) and Impact (1–5) → inherent score (1–25); the band key; and the inherent → mitigation → residual logic. Impact is scored against the traveller’s exposure (life/liberty/health/mission), not against the destination in the abstract. State how the 1–5 likelihood relates to the ICD 203 estimative bands used in the Key Judgments (the mapping table below).
  • Inherent vs. residual threat. Inherent = before protective measures; residual = after crediting measures assessed to be in place or committed for the trip (e.g., existing detail, secure transport, vetted accommodation). Where no measures are yet defined, state that residual = inherent until the §20 posture / the Trip Security Package is scoped.
  • Travel decision frame. The rating is objective (the firm’s assessment of threat level); the client’s/principal’s travel intent and risk appetite are recorded as context for interpreting it and for setting conditions, not used to adjust the scores. The recommendation (go / conditions / defer) follows from the rating against the duty-of-care threshold, stated here.
  • Relationship to other products. This consumes the Country Risk Assessment rating / Regional Study baseline / Country-Entry Risk Assessment operational picture for each destination and feeds the Executive Trip Security Package, the Travel Emergency & Evacuation Plan, and in-trip monitoring; the deep kidnap threat-actor analysis is the K&R Risk Assessment.
  • Principal coverage constraints. Access, currency against a moving local picture, advisory-data reliability, contested information environment, late itinerary changes.
Framing ElementContent
Traveller exposure & threat lens[Life / liberty / health / dignity / mission - and party composition]
Destinations & travel window[Legs / dates]
Threat categories scored (taxonomy)[Six default categories; note additions/de-emphasis and why]
Itinerary segmentation basis[Per-leg segments scored and mapped to §15 timeline]
Inherent vs. residual basis[Protective measures credited / none yet - residual = inherent]
Traveller risk appetite / intent (context only)[Recorded, not used to adjust scores]
Duty-of-care / recommendation threshold[The rating band at which the firm recommends conditions / defer]
Relationship to other products[Consumes Country Risk Assessment / Regional Study / Country-Entry Risk Assessment / feeds Trip Security Package / Emergency & Evacuation Plan / Real-Time Travel Monitoring / K&R to K&R Risk Assessment]
Principal coverage constraints[Access, currency, advisory reliability, contested info, late changes]

Likelihood (1–5) ↔ ICD 203 mapping (apply consistently):

ScoreLikelihood (1–5)Approx. ICD 203 band
1Remotealmost no chance / very unlikely (01–20%)
2Unlikelyunlikely (20–45%)
3Possibleroughly even chance (45–55%)
4Likelylikely (55–80%)
5Almost certainvery likely / almost certain (80–99%)

Impact (1–5), scored against the traveller: 1 Negligible · 2 Minor · 3 Moderate · 4 Major · 5 Severe/Catastrophic. Define each band concretely for this traveller in the source annex (e.g., what a “Major” vs. “Severe” outcome means for personal safety, liberty/detention, health, and mission/reputation).

6. Traveller / Principal Profile & Target Profile

Why this traveller may attract directed threat - the profile-driven component of the assessment that distinguishes it from generic destination risk. Assess (do not merely list): public visibility and recognisability; role, employer, sector, and the controversy or grievance attached to them; nationality and how it is perceived at each destination; wealth/status signalling; known prior threats, incidents, or hostile attention against the principal or family; digital exposure and discoverable footprint (home, family, schedule, patterns - see §14); accompanying party and any dependants; and behavioural factors relevant to risk. Score the directed-threat exposure this profile creates; the environmental (undirected) threat is scored in §8–§13.

Profile FactorDetail / BasisThreat RelevanceLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualConfidenceSource Grade
Public visibility / recognisability[ ][Targeting / hostile surveillance / media][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Role / employer / sector controversy[ ][Grievance / protest / directed threat][ ][ ][ ][ ][ ][H/M/L][ ]
Nationality / perceived affiliation[ ][How perceived at destination][ ][ ][ ][ ][ ][H/M/L][ ]
Wealth / status signalling[ ][Kidnap / express-kidnap / robbery][ ][ ][ ][ ][ ][H/M/L][ ]
Prior threats / incidents / hostile attention[ ][Persistence / specific actor][ ][ ][ ][ ][ ][H/M/L][ ]
Digital / discoverable footprint[ ][Itinerary leakage / pattern-of-life][ ][ ][ ][ ][ ][H/M/L][ ]
Accompanying party / dependants[ ][Expanded exposure / vulnerability][ ][ ][ ][ ][ ][H/M/L][ ]

Target-profile assessment: [Synthesis - whether and from whom this traveller faces directed (as opposed to ambient) threat, the single profile factor that most elevates risk, and the principal uncertainty. Where a specific actor or campaign is in view, cross-reference §11 and route deep analysis to the K&R Risk Assessment or a threat-actor assessment.]

7. Itinerary & Movement Profile

The descriptive spine the threat is scored against - the actual journey, leg by leg, so every score in §9–§16 is locatable in time and place. Capture each leg: dates/times, mode, origin/destination, operator/carrier, accommodation, planned meetings/venues/events, and the movement (transfers, routes) between them. Flag predictability (repeated patterns, published schedules, fixed daily movements) as a threat factor. Keep the itinerary itself handled as the most sensitive element of this report (see §14).

Leg #Date / TimeSegment TypeFrom → ToMode / CarrierAccommodation / VenuePlanned MovementsPredictability / Exposure Note
L1[ ][Departure / Flight / Arrival-Border / Ground transfer / Accommodation / Movement-Venue / Departure / Return][ ][ ][ ][ ][Fixed/published/repeated → higher exposure]
L2[ ][ ][ ][ ][ ][ ][ ]
[ ][ ][ ][ ][ ][ ][ ]

Movement-profile note: [The legs of greatest exposure on movement grounds (long transfers, predictable routes, high-risk modes, gaps between protective coverage), and how the itinerary’s structure itself raises or lowers threat.]

8. Destination Threat Environment

The ambient threat environment at each destination, consumed from the country/area products and compressed to what bears on this traveller and window - do not re-derive a full country study. For each destination give the current threat level, the relevant official advisories, the local dynamics live during the window (elections, events, unrest, conflict, season), and the environment’s trajectory. This is the backdrop against which the profile-driven (§6) and category (§9–§14) threats are scored.

DestinationThreat Level (current)Official Advisory (and grade)Live Local Dynamics in WindowTrajectorySource Grade
[City / area][Low/Mod/Elev/High/Crit][e.g., advisory level + issuer][Elections / events / unrest / season][↑/→/↓][A–F/1–6]
[ ][ ][ ][ ][ ]

Destination-environment assessment: [Synthesis - which destination carries the heaviest ambient threat over the window and why; cross-reference the consumed Country Risk Assessment / Regional Study / Country-Entry Risk Assessment for each, and note where a destination needs one of those commissioned (RFI → §23).]

9. Crime & Targeted-Threat Risk

Risk to the traveller from crime: violent crime (assault, armed robbery, carjacking, sexual violence); acquisitive and opportunistic crime (theft, pickpocketing, vehicle and hotel-room crime); express kidnap and short-term abduction-for-robbery; scams, fraud, and corruption/shakedown targeting foreigners; and crime directed at the traveller specifically because of profile (§6). Locate each to the leg(s)/location(s) where it bites and the time-of-day pattern. The sustained kidnap-for-ransom and hostage threat is scored in §11.

Sub-ThreatDriver / BasisLeg(s) / LocationLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Violent crime (assault/robbery/carjacking)[ ][ ][1–5][1–5][ ][ ][ ][↑/→/↓][H/M/L][A–F/1–6]
Acquisitive / opportunistic crime[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Express kidnap / short-term abduction[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Scams / fraud / shakedown targeting foreigners[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Profile-directed crime[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Crime risk assessment: [Synthesis - the dominant crime threat to this traveller, the legs/times of greatest exposure, and the targeting dynamic.]

10. Terrorism, Conflict & Civil-Disorder Risk

Risk to the traveller from large-scale and political violence: terrorism and mass-casualty attack at the destinations, venues, transport nodes, and event types on the itinerary; armed conflict, insurgency, or spillover affecting movement or trapping the traveller; civil unrest, protest, and disorder that could engulf a location or block egress; and crossfire/collateral exposure. Apply the destination environment (§8) and locate to legs/venues; flag where a planned venue or event is itself an attractive target.

Sub-ThreatDriver / BasisLeg(s) / LocationLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Terrorism / mass-casualty at destination/venue[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Armed conflict / insurgency / spillover[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Civil unrest / protest / disorder (movement-blocking)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Crossfire / collateral / egress-denial exposure[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Terrorism, conflict & disorder assessment: [Synthesis - the principal mass-violence/disorder threat, whether any planned venue or event is itself a target, and the egress-denial risk.]

11. Kidnap, Hostage & Unlawful-Detention Risk

Risk to the traveller of loss of liberty: kidnap for ransom and hostage-taking; politically or ideologically motivated abduction; and state-actor risk - wrongful/arbitrary detention, hostage diplomacy, arrest on pretextual or political charges, exit bans, and border-control detention. Assess viability against this traveller’s profile (§6) at these destinations. This product scores the trip-level threat and the protective implication; the dedicated threat-actor viability, negotiation, and response analysis is the K&R Risk Assessment.

Sub-ThreatDriver / BasisLeg(s) / LocationLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Kidnap for ransom / hostage-taking[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Politically / ideologically motivated abduction[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Wrongful / arbitrary detention / hostage diplomacy[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Arrest on pretextual/political charges / exit ban[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Kidnap, hostage & detention assessment: [Synthesis - the net liberty threat to this traveller, whether non-state (kidnap) or state (detention) risk dominates, and the trigger conditions. Where a specific actor or a sanctioned/proscribed nexus is in view, flag it and route to the K&R Risk Assessment; note that ransom-payment legality and response posture are out of scope here (K&R Risk Assessment / counsel).]

12. Transport, Movement & Route Risk

Risk to the traveller from how they move: aviation safety (carrier and national safety record, airport security and landside risk); ground-transport and road-safety risk (the leading cause of traveller harm in many destinations - road conditions, driving culture, vehicle standards, driver vetting); maritime/rail where used; arrival/border and transfer exposure (the high-risk seams between protective coverage); and route-specific risk on planned movements. Apply OCOKA-style route factors - chokepoints, observation/cover along routes, ambush-favourable terrain, and alternate routes - for any movement of concern. This is the analytic input to the secure-transport plan in the Executive Trip Security Package.

Sub-ThreatDriver / BasisLeg(s) / RouteLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Aviation / carrier / airport-landside risk[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Ground transport / road-safety risk[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Arrival / border / transfer exposure[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Route-specific risk (chokepoints/ambush/OCOKA)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Maritime / rail / other-mode risk[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Transport & route assessment: [Synthesis - the dominant movement threat (often road), the highest-risk route segments and transfer seams, and the route factors the secure-transport plan must address.]

13. Health, Medical & Environmental Risk

Risk to the traveller’s health and from the physical environment: medical-system adequacy and reachability of evacuation-grade care; endemic and outbreak disease, immunisation and prophylaxis needs, food/water safety; pre-existing conditions of the traveller against in-country care; natural-hazard and seasonal exposure during the window (seismic, storm, flood, extreme heat/cold, wildfire); air quality/altitude; and CBRN/industrial-incident exposure where relevant. This is the analytic input to the medical-support and evacuation provisions of the Travel Emergency & Evacuation Plan.

Sub-ThreatDriver / BasisLeg(s) / LocationLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Medical-system adequacy / evac-care reachability[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Disease / immunisation / food & water[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Pre-existing condition vs. in-country care[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Natural-hazard / seasonal / climate exposure[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Air quality / altitude / industrial-CBRN[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Health & environmental assessment: [Synthesis - the dominant health/environmental threat over the window, whether evacuation-grade care is reachable from each leg, and the inputs the medical/evacuation plan must carry.]

14. Surveillance, Digital & Information-Environment Threat

Risk to the traveller from observation and information compromise: hostile physical and technical surveillance (against a profiled traveller - §6); device, data, and communications compromise (border device search, lawful-intercept and pervasive state monitoring at destination, hostile Wi-Fi/network, hotel/room technical risk); itinerary and movement leakage (the trip plan disclosed via social media, public schedules, vendor/booking chains, or insider exposure - itself the enabling threat for §9–§11); and information-environment risk to the traveller (hostile media, doxxing, narrative targeting). Assess the traveller’s discoverable footprint and the OPSEC of the trip itself.

Sub-ThreatDriver / BasisLeg(s) / LocationLikelihood (1–5)Impact (1–5)Inherent (L×I)Existing MitigationResidualTrendConfidenceSource Grade
Hostile physical / technical surveillance[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Device / data / comms compromise (border, intercept, network)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Itinerary / movement leakage[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Information-environment / doxxing / narrative targeting[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Surveillance & digital assessment: [Synthesis - the principal observation/compromise threat, whether itinerary leakage is enabling other threat categories, and the OPSEC/digital measures (routed to the Trip Security Package / Privacy-OPSEC) the trip requires. Note: all collection here is open-source and lawful - no surveillance, tracking, or interception is conducted, including of the principal.]

15. Per-Leg / Segment Threat Profile

The signature synthesis of this product - map the category threats (§9–§14) onto the actual itinerary timeline (§7) so the client sees, for each leg/segment, the dominant threats, the residual rating, the exposure window, and the protective implication. This is what makes the assessment actionable for the protective package: it converts a threat taxonomy into a leg-by-leg picture. Order chronologically.

Leg # / SegmentLocation / TimeDominant Threats (by §)Peak Residual (L×I)Leg Threat BandExposure Window / SeamProtective Implication (advisory → §20 / Trip Security Package)
L1[ ][§ refs][ ][Low/Mod/Elev/High/Crit][ ][ ]
L2[ ][ ][ ][ ][ ][ ]
[ ][ ][ ][ ][ ][ ]

Per-leg note: [The highest-threat leg(s) and seam(s) (often arrival/transfer and unprotected movement), how threat concentrates across the timeline, and the segment most driving the overall rating.]

16. Consolidated Threat Register & Heat Map

Aggregate every scored threat from §6 and §9–§14 into one ranked register, ordered by residual score, so the client sees the whole threat picture and the priorities in one place. The heat map plots the distribution across the 5×5 grid. The domain/category sections build the scores; this section ranks and visualises them; §15 locates them on the timeline.

RankThreatCategory (§)Leg(s)Inherent (L×I)Existing MitigationResidual (L×I)BandTrendConfidence
1[ ][§][ ][ ][ ][ ][Low/Mod/Elev/High/Crit][↑/→/↓][H/M/L]
2[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]
3[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]
[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]

Residual-threat heat map (plot each threat’s residual L×I; cell = count or threat IDs):

Impact ↓ / Likelihood →1 Remote2 Unlikely3 Possible4 Likely5 Almost certain
5 Severe[ ][ ][ ][ ][ ]
4 Major[ ][ ][ ][ ][ ]
3 Moderate[ ][ ][ ][ ][ ]
2 Minor[ ][ ][ ][ ][ ]
1 Negligible[ ][ ][ ][ ][ ]

Register note: [Where the residual threat clusters (which category and which leg), the count above the duty-of-care threshold, and the single threat most driving the rating and recommendation.]

17. Overall Trip Threat Rating, Trajectory & Travel Recommendation

The headline rating, where it is heading across the window, and the resulting travel recommendation. Derive the overall rating from the leg and category residual scores (state the aggregation logic - the highest-impact residual threats and the highest-threat leg dominate; a single Critical leg can set the rating regardless of benign legs). Give the per-category and per-leg summary, the aggregate rating and band, the trajectory with likelihood and confidence stated separately, and the explicit recommendation with any conditions.

Category (§)Threat SummaryPeak Residual Sub-ThreatCategory BandTrend
Profile / directed (§6)[ ][ ][Low/Mod/Elev/High/Crit][↑/→/↓]
Crime (§9)[ ][ ][ ][ ]
Terrorism/Conflict/Disorder (§10)[ ][ ][ ][ ]
Kidnap/Detention (§11)[ ][ ][ ][ ]
Transport/Route (§12)[ ][ ][ ][ ]
Health/Environmental (§13)[ ][ ][ ][ ]
Surveillance/Digital (§14)[ ][ ][ ][ ]
Trajectory PathDescriptionLikelihoodAnalytic ConfidenceKey Watch Indicators
Most likely[ ][ICD 203 term][HIGH/MOD/LOW][ ]
Most dangerous (rating step-up)[ ][ICD 203 term][HIGH/MOD/LOW][ ]
Improving / de-escalation[ ][ICD 203 term][HIGH/MOD/LOW][ ]

Travel recommendation:

FieldDetermination
Overall Trip Threat Rating[LOW / MODERATE / ELEVATED / HIGH / CRITICAL - aggregate score]
Recommendation[GO / GO WITH CONDITIONS / DEFER / DO NOT TRAVEL]
Conditions (if GO WITH CONDITIONS)[The protective conditions on which the GO depends - by category, per §20; e.g., secure transport on L#, advance on venue X, comms plan, evac plan in place (Trip Security Package / Emergency & Evacuation Plan)]
Decision authority[Who owns the go/no-go - client/principal; the firm advises]
Reassessment triggers[The indicators/events (per §19) that require re-rating before or during travel]

Overall rating & recommendation judgment: [The aggregate rating, its band, the aggregation logic, the principal drivers, the trajectory, and the basis for the recommendation against the duty-of-care threshold - the figures used in the BLUF and Snapshot. Cross-reference pivotal indicators to §19 and conditions to §20.]

18. Key Findings Summary

Consolidated register of the load-bearing findings behind the scores, each graded by evidentiary status and confidence so the reader can see what is established vs. assessed vs. contested. Materiality flags the findings that most drive the rating and recommendation.

#FindingStatusConfidenceMateriality
1[ ][Established / Assessed / Contested][H/M/L][ ]

19. Threat-Escalation & Early-Warning Indicators

The travel analog of a red-flag register: specific, observable indicators whose movement would signal a residual-threat score rising, a new threat emerging, or the recommendation needing to change - split into pre-departure tripwires (would change the go/no-go) and in-trip tripwires (would trigger a posture change, leg cancellation, or move to the emergency/evacuation plan). Each is tied to the threat/leg it bears on, the change it would signal, a severity, and a disposition. These feed Real-Time Travel Monitoring and the Emergency & Evacuation Plan.

#Indicator (observable)PhaseThreat / Leg (§)Change SignalledSeverityCurrent StatusDisposition
1[ ][Pre-departure / In-trip][ ][e.g., Leg L3 residual 9→16][Crit/High/Med/Low][Not present / Emerging / Present][Watch / Notify client / Re-rate / Alter or cancel leg / Activate evac plan / Route to Real-Time Travel Monitoring]

Severity definitions: Critical - would change the recommendation to DEFER/DO-NOT-TRAVEL pre-departure, or trigger curtailment/evacuation in-trip; warrants immediate client notification (e.g., attack at a destination, coup, border closure, direct threat to the principal). High - would materially raise a leg/category score and warrants prompt notification and posture change. Medium - significant development requiring a re-rate. Low - note and monitor.

20. Protective Posture & Mitigation Options (Advisory)

Advisory, analytic options that would reduce residual threat to the traveller - mapped to the ranked threats (§16) and legs (§15), by treatment category (avoid / reduce / transfer / accept). This is direction and category only, not the protective plan: it states what kind of measure would lower a given residual score and roughly how much, and routes implementation to the appropriate separately scoped product. Do not write the detail deployment, transport plan, advance procedures, comms plan, or evacuation procedures here - those are the Executive Trip Security Package and the Travel Emergency & Evacuation Plan.

Ranked Threat / Leg (§15–§16)Treatment CategoryAdvisory Option (direction only)Expected Residual EffectImplementation Route (separate product)
[ ][Avoid / Reduce / Transfer / Accept][e.g., secure vetted ground transport on this leg / advance the venue / vary timings / harden comms / itinerary OPSEC][e.g., residual 16→9 if adopted][Trip Security Package / Emergency & Evacuation Plan / In-trip Monitoring / Privacy-OPSEC / Insurance/risk-transfer / Counsel]

Posture note: [The highest-leverage threat reductions available for this trip, the irreducible residual threat that remains after plausible protective measures (which should inform the go/conditions decision in §17), and the items that must be carried into the Trip Security Package and the Emergency & Evacuation Plan. Reiterate that this is advisory, not the protective or evacuation plan.]

21. Analysis of Competing Hypotheses (ACH)

Apply to the central judgment - typically whether the trip can be conducted at acceptable residual threat with planned measures (go-with-conditions) vs. should be deferred, or the single most consequential and contested threat (e.g., whether a specific directed threat against the principal is real and active). State the competing hypotheses, array the diagnostic evidence for/against each, and identify the most consistent explanation and what evidence would overturn it. Use ACH to discipline the recommendation against both alarmism and against pressure to clear the trip; do not pad the apparatus where the evidence is one-sided - say so and close.

Evidence / IndicatorH1: [Acceptable with conditions]H2: [Defer / threat too high]H3: [Directed threat is/ isn’t active]
[ ][C/I/N][C/I/N][C/I/N]

(C = consistent · I = inconsistent · N = neutral.) Most consistent hypothesis: [ ] - [rationale + the diagnostic evidence that would overturn it].

22. Key Assumptions Check (KAC)

The assumptions underpinning the scores and the recommendation - about itinerary stability, the reliability of advisory data, the protective measures assumed to be in place, the traveller’s own behaviour and compliance, and the absence of an exogenous shock at a destination - each with its basis, confidence, and the impact on the rating/recommendation if it proves wrong. Linchpin assumptions (those that, if wrong, change the recommendation) are flagged.

#AssumptionBasisConfidenceImpact if WrongLinchpin?
1[e.g., The itinerary as provided is complete, current, and will hold][ ][H/M/L][ ][Y/N]
2[e.g., The protective measures credited in residual scores will be in place for the trip][ ][ ][ ][ ]
3[e.g., The traveller will comply with the agreed posture and not free-lance high-risk movements][ ][ ][ ][ ]
4[e.g., No major exogenous shock (attack, coup, disaster, border closure) intervenes at a destination][ ][ ][ ][ ]

23. Collection Gaps & RFIs

Where coverage is thin or contested, the impact on the scores/recommendation, the collection that would close the gap, and where to escalate. Travel-product gaps are typically a destination lacking a current country/area product, a venue or route needing advance reconnaissance, a specific directed-threat question, or a late itinerary change.

GapLeg / Category (§)Impact on Rating/RecommendationRecommended CollectionEscalation TargetPriority
[ ][ ][ ][ ][Country Risk Assessment / Regional Study / Country-Entry Risk Assessment / K&R Risk Assessment / RVTA / In-country HUMINT / Advance recon (Trip Security Package) / In-trip Monitoring][H/M/L]

24. Assessment & Recommendations

24.1 Threat Assessment

Overall assessment of threat to the traveller - the headline rating and band, the travel recommendation and any conditions, the legs and residual threats that most drive it, the most consequential uncertainties, and the implications for the trip as planned. State the figures used in the BLUF and Snapshot, and the coverage/confidence caveats that bound them. Be explicit about the irreducible residual threat that remains even after plausible protective measures.

[ASSESSMENT]

24.2 Recommendations

  • For decision-makers / the principal: [The go / go-with-conditions / defer recommendation and what it rests on; the conditions that must be met to travel; the planning assumption the assessment supports; and the events under which the decision should be revisited.]
  • For the protective team / risk owners: [The priority residual threats to treat, the highest-leverage measures by category (per §20) to carry into the Executive Trip Security Package, the per-leg seams to cover, and the indicators to put under watch.]
  • For emergency planning: [The threats and legs that must be reflected in the Travel Emergency & Evacuation Plan - medical-evac reach (§13), curtailment/evacuation triggers (§19), and detention-response posture (§11).]
  • For analysts (next intelligence steps): [Which destinations, venues, routes, or threats warrant a deeper or sibling product (advance recon, country/area product, K&R), which watch indicators to track, and the re-verification cadence to departure.]
  • Escalations / downstream products: [Items routed to the Trip Security Package, Emergency & Evacuation Plan, Real-Time Travel Monitoring, Country Risk Assessment / Regional Study / Country-Entry Risk Assessment, K&R Risk Assessment, RVTA, or Privacy-OPSEC.]
  • Conditions for reliance / refresh: [The perishability window and the indicators/events (per §19) that should trigger a re-assessment before or during travel.]

25. Annex A - Sources & Methodology

Collection methods and scope; the source register graded with the Admiralty two-axis code; the reference scales (below); statement of the likelihood-vs-confidence separation and the 1–5 ↔ ICD 203 mapping; the threat taxonomy and scoring methodology (inherent → mitigation → residual; impact scored against the traveller’s exposure; leg segmentation and aggregation logic for the overall trip rating); the frameworks applied (PMESII-PT mapping; OCOKA route factors) and any tailoring; coverage and currency limitations (access, advisory-data reliability, contested information environment, late itinerary changes); confirmation that all collection was open-source and lawful (no surveillance, tracking, or interception, including of the principal); and the treatment of official advisories and state-controlled media as potentially self-interested and corroborated against independent sources.

Source reliability (Admiralty, A–F): A Completely reliable · B Usually reliable · C Fairly reliable · D Not usually reliable · E Unreliable · F Reliability cannot be judged.

Information credibility (Admiralty, 1–6): 1 Confirmed by other sources · 2 Probably true · 3 Possibly true · 4 Doubtful · 5 Improbable · 6 Truth cannot be judged. (Each sourced datum carries a two-character grade, e.g., B2.)

Estimative probability / likelihood (ICD 203): almost no chance / remote (01–05%) · very unlikely (05–20%) · unlikely (20–45%) · roughly even chance (45–55%) · likely (55–80%) · very likely (80–95%) · almost certain (95–99%).

Analytic confidence (evidence base - kept separate from likelihood): HIGH (multiple independent reliable sources, primary documentation, no significant contradiction) · MODERATE (some corroboration, gaps, minor unresolved inconsistency) · LOW (single/uncorroborated source, significant gaps, plausible alternatives open). Never combine a likelihood term and a confidence level in the same sentence.

Risk scoring (the load-bearing scale of this product): Likelihood (1–5) × Impact (1–5) = 1–25; band key: 1–5 Low · 6–10 Moderate · 11–15 Elevated · 16–20 High · 21–25 Critical. Likelihood is scored 1 Remote / 2 Unlikely / 3 Possible / 4 Likely / 5 Almost certain (mapped to ICD 203 bands in §5). Impact is scored 1 Negligible / 2 Minor / 3 Moderate / 4 Major / 5 Severe, against the traveller’s exposure (life/liberty/health/mission - define each band concretely for this traveller below). Inherent score is before protective measures; residual score credits measures assessed to be in place or committed for the trip. The overall trip rating is derived from the leg and category residual scores with the highest-impact threats and highest-threat leg dominating (state the aggregation rule), not a naive average - a single Critical leg can set the rating.

Coverage confidence (product-level): HIGH (strong access, diverse independent sources across all destinations/legs, current data, low contested-information distortion) · MODERATE (adequate coverage with gaps on some legs/destinations, partial access, some reliance on official/contested advisories) · LOW (significant access/currency barriers, thin or heavily contested sourcing on material legs, late or unstable itinerary).

Impact-band definitions (traveller-specific - complete for this engagement): [Define what Negligible/Minor/Moderate/Major/Severe mean concretely for each exposure type - personal safety/injury, liberty/detention, health/medical, and mission/reputation.]

Analytic-framework note: The assessment scores threat to the named traveller’s defined exposure across a six-category taxonomy mapped to PMESII-PT, with movement scored on OCOKA route factors and located to itinerary legs; the collection logic is PIR → leg/threat-category → indicator → source. Scores are structured analytic judgments calibrated to the stated scales, not measurements; the recommendation is independent and objective per ICD 203 and is not adjusted to clear or to defer the trip for reasons other than the assessed threat.

Searched sources (record source type, provider/title, as-of date, coverage scope, limitations, and any self-interest/reliability caveat): [TABLE]

26. Annex B - Appendices

  • Appendix A - Traveller / Principal Profile: the identity, role, visibility, prior-threat history, party composition, and discoverable-footprint summary that drives the directed-threat scoring (§6) - handled as sensitive personal data.
  • Appendix B - Full Itinerary & Movement Profile: the complete leg/segment table (§7) with dates, modes, carriers, accommodation, venues, and movements - the single most sensitive element of this report.
  • Appendix C - Full Scored Threat Register: the complete §6 and §9–§16 register with inherent score, mitigation, residual score, leg, trend, confidence, and source grade for every sub-threat.
  • Appendix D - Threat Heat Maps: inherent and residual 5×5 distributions, and per-leg heat maps.
  • Appendix E - Per-Leg Threat Profile: the §15 timeline with dominant threats, residual ratings, exposure seams, and protective implications.
  • Appendix F - Threat-Escalation & Early-Warning Matrix: the §19 pre-departure and in-trip indicators with current status, change signalled, and monitoring notes.
  • Appendix G - Protective Posture & Mitigation Register: the §20 advisory options with treatment category, expected residual effect, and implementation route to the Trip Security Package / Emergency & Evacuation Plan.
  • Appendix H - Scoring Methodology & Scale Definitions: the likelihood/impact scales, traveller-specific impact-band definitions, inherent/residual logic, and the overall-rating aggregation rule.
  • Appendix I - Destination Environmental Reference: pointers to the Country Risk Assessment / Regional Study / Country-Entry Risk Assessment consumed for each destination, or the compressed environmental picture used as input.
  • Appendix J - Maps & Route Graphics: destination, venue, and route mapping with chokepoints/alternates (where produced), handled as sensitive.
  • Appendix K - Full Source Register: every source, Admiralty grade, access date, reference, and any coverage/limitation note.
  • Appendix L - Glossary & Abbreviations.
  • Appendix M - Revision History.

END OF REPORT.

Verification disclaimer: This pre-travel threat assessment is a point-in-time, trip- and traveller-scoped analytic threat picture based on open, licensed, and lawfully accessed sources current as of the baseline date; it is not legal, medical, insurance, or travel advice, not a protective-operations or evacuation plan, and not a guarantee of the traveller’s safety. The threat scores are the firm’s independent, objective structured analytic judgments calibrated to the stated scales - an aid to protective prioritisation, not precise measurements or actuarial probabilities. Protective-posture content is advisory and is not the protective, transport, medical, or evacuation plan. Travel threat is highly perishable and local - scores are time-sensitive and must be re-verified against current reporting immediately before departure and on any itinerary change. All collection was open-source and lawful; no surveillance, tracking, or interception was conducted, including of the principal. Official advisories and state-controlled sources were treated as potentially self-interested and corroborated where possible. No classified, unlawfully obtained, or out-of-licence material was used in the production of this report.

Document control footer: [REF-YYYY-### · Version · Classification/TLP · Prepared/Reviewed/Approved · Distribution].

Model wiring

Generated from cell frontmatter at publish time.