RESIDENTIAL VULNERABILITY & THREAT ASSESSMENT

[PROPERTY / RESIDENCE - PRINCIPAL / OCCUPANT - ENGAGEMENT REF]

The Residential Vulnerability & Threat Assessment is the residence- and occupant-scoped vulnerability and threat picture prepared for a specific property and its principal occupant(s): it answers, for a defined residence occupied by a defined principal (or family/household) over a stated period, what threats exist to the occupant(s) through the residence, how vulnerable the residence is to each, where the protective gaps are, and which way the combined vulnerability-threat picture is trending - expressed as a structured, scored assessment using an explicit Threat Likelihood × Impact (1–5 × 1–5 = 1–25) register, cross-referenced to a Vulnerability Severity (1–5) scale, segmented by vulnerability domain (physical perimeter, structural, technical systems, procedural/household, digital/information, environmental/contextual) and aggregated to a headline residential vulnerability rating with a protective-prioritisation recommendation. It is a place- and person-anchored product assessed against the principal’s profile (who lives here, what they are exposed to), the property’s physical and operational characteristics, and the threat environment around it. It consumes the relevant environmental baseline from the Country Risk Assessment / Regional Study / Country-Entry Risk Assessment for the location and, where the occupant travels, from the Pre-Travel Threat Assessment for absence periods; it does not deliver or replace: the on-site physical security inspection, technical-testing, and specific hardening recommendations of the Residential Security Survey (separate product - that product inspects what is on the ground; this product assesses vulnerability from intelligence); the deep individual digital-footprint analysis, social-media mapping, and family-member exposure profiling of the Family & Household Digital Exposure Assessment (separate product - this product covers residential-context digital exposure (itinerary leakage, smart-home, device boundary) but does not profile each household member’s digital life); or the trip-specific threat picture and protective package of the Pre-Travel Threat Assessment (separate product - this product covers the residence during occupancy, absence, and re-occupancy, including vulnerability while the principal is away). Where those needs surface, raise them as RFIs in §22 and escalate. Protective-posture content here is analytic and advisory - it identifies the direction and category of measure that would reduce residential vulnerability; it does not constitute the physical security plan, the hardening specification, the digital-hygiene programme, or the security-operations plan for the property, which are separately scoped products. This is a vulnerability and threat assessment; it is not legal, insurance, security-audit, structural-engineering, or regulatory-compliance advice, and it is not a guarantee of the occupant’s safety or the residence’s invulnerability.


Document Control

FieldValue
Report Reference[REF-YYYY-###]
Date of Report[YYYY-MM-DD]
Baseline / As-Of Date[YYYY-MM-DD - the date through which vulnerability and threat are assessed]
Assessment Period[YYYY-MM-DD → YYYY-MM-DD - the occupancy window this assessment covers]
Classification / Handling[CONFIDENTIAL - CLIENT EYES ONLY / TLP:AMBER]
Client[CLIENT NAME]
Requesting Party[CONTACT - ENGAGEMENT REF]
Property / Residence[Address / location descriptor - redact to area/sector where dissemination requires]
Principal / Occupant(s)[Name(s) / role - and household composition; redact to role where dissemination requires]
Occupancy Type[Full-time / Part-time / Periodic / Seasonal / Vacant interval]
Purpose of Assessment[e.g., new-occupancy risk baseline / post-incident review / periodic reassessment / pre-purchase due diligence / insurance requirement]
Client Exposure / Duty-of-Care Basis[Why the client owns the occupant’s residential safety - employer / protectee / family principal / host / landlord]
Engagement Purpose[Decision the assessment informs - e.g., accept / mitigate / defer occupancy, protective-posture investment, hardening-package scoping]
Scope / Depth[Property-scoped, domain-segmented, occupant-specific vulnerability rating - see §2 scope]
Prepared By[ANALYST NAME / ID]
Reviewed By[REVIEWER NAME / ID]
Approving Officer[APPROVER NAME / ID]
Version[1.0]
Distribution[NAMED RECIPIENTS]

Handling: [Classification/TLP]. Disseminate only to the named authorized recipients. Reproduction or onward sharing prohibited without originator approval. This product is built around a named property, its address, its physical layout and security posture, and the identity and pattern-of-life of its occupant(s) - it is personal and location data of the highest sensitivity and, aggregated, constitutes a vulnerability blueprint for the residence. Store and transmit per the client data-processing agreement and applicable data-protection frameworks (GDPR, CCPA, and local equivalents); restrict to those with a protective need-to-know; and protect the address, floor plan, security-system details, and occupancy schedule as the most sensitive elements (their compromise is itself a vulnerability vector - see §13).

Nature of this product (READ FIRST): This is an open-source-based analytic assessment of vulnerability and threat to a residence and its occupant(s), prepared to inform the client’s duty-of-care and protective-investment decisions. It is not a physical security survey, structural-engineering inspection, security-audit, insurance survey, or digital-forensic examination; not a hardening specification, security-operations plan, or evacuation plan; and not a guarantee of the occupant’s safety or the residence’s invulnerability. The vulnerability and threat scores are the firm’s structured analytic judgments, calibrated to the stated scales - an aid to protective prioritisation, not precise measurements, actuarial probabilities, or statements of certainty. The assessment is one input; the client’s security, legal, engineering, and in-country advisers, and the occupant’s own decisions, govern protective measures on the ground.

Analytic independence & objectivity (ICD 203): Scores and judgments are the firm’s independent analytic assessment, reached on the evidence and free of any pressure to minimise or to inflate vulnerability for reasons other than the assessed picture. Reporting is distinguished from analyst judgment throughout; uncertainty drivers and change indicators are stated explicitly; alternative explanations are tested. Where the client’s or occupant’s preference is to occupy regardless, the assessment is not softened to suit it - the vulnerability is stated as assessed and the protective-investment decision left to the client.

Sourcing & legality: Findings derive from open, licensed, and lawfully accessed sources - public record, satellite and aerial imagery (current-as-of-date), property-registry and planning-permit data, reputable media, recognised security-risk datasets used within licence, mapping and routing data, open-source technical documentation (security-system specifications, building codes), and (where commissioned) discreet in-country human sourcing and reconnaissance - current as of the baseline date and graded (Annex A). No classified, proprietary-without-licence, or unlawfully obtained material is used; no surveillance, tracking, interception, physical intrusion, or access in breach of any jurisdiction’s law is conducted, including against the occupant, the residence, or any household member. Official statistics, property-listings, and vendor-provided data are treated as potentially self-interested and corroborated against independent sources.

Scope of protective content: Protective-posture and mitigation options in §19 are advisory and analytic - they indicate the direction and category of measure that would lower residual vulnerability to the occupant(s). They are not the physical security plan, hardening specification, digital-hygiene programme, security-operations plan, or evacuation plan, which are separately scoped products and should not be improvised from this document.

Perishability: This is a point-in-time assessment against a defined occupancy period. Vulnerability conditions change - physical modifications, occupancy changes, new threats, security-system degradation, or changes in the surrounding environment can invalidate a domain’s rating. Scores are time-sensitive - re-verify against current conditions at the start of each occupancy period and on any material change to the property, the occupant’s profile, or the threat environment.

Reliance: Reliance is limited to the named client for the stated property and purpose; no third-party reliance without originator consent.

Vulnerability Snapshot

FieldValue
Property / Residence[Address / location descriptor - redact as dissemination requires]
Principal / Occupant(s)[Name(s)/role - redact to role as dissemination requires]
Location[City / area / country]
Occupancy Type[Full-time / Part-time / Periodic / Seasonal / Vacant interval]
Overall Residential Vulnerability Rating[LOW (1–5) / MODERATE (6–10) / ELEVATED (11–15) / HIGH (16–20) / CRITICAL (21–25)] - [aggregate score]
Protective-Posture Recommendation[ACCEPT / MITIGATE / DEFER OCCUPANCY / DO NOT OCCUPY - see §16]
Rating Trajectory[Improving / Stable / Deteriorating / Volatile over the assessment period - see §16]
Highest-Vulnerability Domain(s)[The 1–2 domains driving the rating - see §15]
Top Residual Vulnerabilities[The 2–3 ranked residual vulnerabilities to act on - see §15]
Principal Threat Drivers[Occupant-profile-driven exposure / property-location factors / environmental threats pushing vulnerability up - see §6, §14]
Highest-Priority Watch Indicators[The 1–3 tripwires whose movement would most change the rating - see §18]
Conditions Attached (if any)[The protective conditions on which occupancy depends - see §16, §19]
Coverage Confidence[HIGH / MODERATE / LOW - access, source diversity, currency - see §24]
Overall Assessment Confidence[HIGH / MODERATE / LOW - see §24]

Table of Contents

  1. BLUF
  2. Executive Summary & Scope
  3. Key Judgments
  4. Priority Intelligence Requirements (PIRs)
  5. Vulnerability Framing, Taxonomy & Methodology
  6. Principal / Occupant Profile & Target Profile
  7. Property & Location Profile
  8. Physical Security & Perimeter Assessment
  9. Structural & Environmental Vulnerability
  10. Access, Egress & Circulation
  11. Security Systems & Technical Measures
  12. Household Personnel, Service Access & Insider Threat
  13. Digital & Information-Environment Exposure (Residential Context)
  14. Threat-Environment & Contextual Risk
  15. Consolidated Vulnerability Register & Heat Map
  16. Overall Vulnerability Rating
  17. Key Findings Summary
  18. Vulnerability-Escalation & Early-Warning Indicators
  19. Protective & Mitigation Options (Advisory)
  20. Analysis of Competing Hypotheses (ACH)
  21. Key Assumptions Check (KAC)
  22. Collection Gaps & RFIs
  23. Assessment & Recommendations
  24. Annex A - Sources & Methodology
  25. Annex B - Appendices

(Page numbers populate on export to Word/PDF.)


1. BLUF

2–3 sentences. Lead with the overall residential vulnerability rating, the protective-posture recommendation (accept / mitigate / defer / do-not-occupy), the vulnerability domain(s) driving the rating, and the single most decision-relevant implication for the occupant’s safety - with the recommended posture or condition. Written so the decision-maker can act on this line alone.

[BLUF]

2. Executive Summary & Scope

Triggering requirement and engagement purpose; who occupies the residence, the property type and location, and the client’s duty-of-care basis. Scope in/out stated explicitly - the property, the occupancy period and pattern, the vulnerability domains assessed, the occupant-specific lens applied, and what is deferred to sibling/downstream products (physical security survey; family digital-exposure assessment; travel threat-assessment → Pre-Travel Threat Assessment; the country/area environmental inputs consumed → Country Risk / Country Study / Operational Risk). Narrative synthesis of the rating, the protective-posture recommendation, and the principal residual vulnerabilities across the domains below, to the ICD 203 floor - reporting separated from analytic judgment, uncertainty drivers named, alternatives acknowledged. State the headline rating, the recommendation, and the top residual vulnerabilities here.

[EXECUTIVE SUMMARY & SCOPE]

3. Key Judgments

The analytic bottom line on vulnerability and threat to the residence and occupant - the overall rating and protective-posture recommendation, the domains and vulnerability factors that most determine it, and the most consequential residual vulnerabilities. Each judgment carries likelihood and analytic confidence as separate columns (never combined - ICD 203) and a change-indicator stating what would shift it. Order by decision-relevance. Note: the ICD 203 likelihood term here describes the analytic judgment; the 1–5 threat likelihood in the vulnerability register (§8–§14) is the scoring input - keep the two distinct and consistent (see §5 for the mapping).

#Key JudgmentLikelihoodAnalytic ConfidenceChange Indicator (what would shift it)
KJ-1[e.g., Overall residential vulnerability is assessed [BAND] across the period; recommendation [ACCEPT/MITIGATE/DEFER], driven primarily by [domain/factor]][ICD 203 term][HIGH/MOD/LOW][ ]
KJ-2[e.g., The highest-vulnerability domain is [domain], where [factor] is scored [residual L×I]][ ][ ][ ]
KJ-3[e.g., The occupant’s [profile factor] materially raises targeting risk for [threat category] and drives residential exposure][ ][ ][ ]
KJ-4[e.g., The dominant escalation pathway is [event/indicator] affecting [domain]][ ][ ][ ]
KJ-5[e.g., The vulnerability trajectory across the period is [stable/rising/volatile], pending [pivotal event or modification]][ ][ ][ ]

4. Priority Intelligence Requirements (PIRs)

Collection-management spine for a residential vulnerability product: PIR → domain → indicator → source. State each PIR, the answer, key evidence, and analytic confidence. Each PIR maps to one or more vulnerability domains. Summarize in the matrix.

  • PIR-1 - Target profile & directed threat: Does the occupant’s identity, role, public profile, affiliations, or known prior threats attract directed threat (targeting, hostile surveillance, grievance actor, protest, intrusion) to the residence, and from whom? [Answer / evidence / confidence]
  • PIR-2 - Property physical security & perimeter: What is the current physical-security posture of the residence - perimeter, barriers, access control, lighting, surveillance coverage, structural integrity - and what are the material gaps? [ ]
  • PIR-3 - Access, egress & circulation: How can the residence be approached and entered (vehicle and pedestrian access, vulnerable points, cover and concealment for an aggressor, alternate egress for the occupant), and what are the access-control weaknesses? [ ]
  • PIR-4 - Security systems & technical measures: What alarm, CCTV, intercom, access-control, and communications systems are in place, what is their coverage and operational status, and what are the technical vulnerabilities? [ ]
  • PIR-5 - Household personnel & insider threat: Who has regular access to the residence (staff, service providers, vendors, guests), what vetting has been conducted, and what is the insider-threat exposure? [ ]
  • PIR-6 - Digital & information-environment exposure: What discoverable information about the residence, its layout, security systems, occupancy schedule, and the occupant(s) exists in the open-source domain, and how does it enable physical threat? [ ]
  • PIR-7 - Threat environment & contextual risk: What is the crime, terrorism, unrest, and targeted-threat level in the residence’s immediate location and wider area, and which way is it trending across the occupancy period? [ ]
  • PIR-8 - Occupancy & absence vulnerability: What is the residence’s vulnerability profile when the occupant is present, when absent (travel, business, seasonal vacancy), and during transition periods? [ ]
  • PIR-9 - Trajectory & inflection: Where is the total vulnerability picture heading across the period, and what events/indicators would change a domain’s rating or the protective-posture recommendation? [ ]
  • [Add residence-specific PIRs - e.g., a named adjacent threat (embassy, protest site, crime hotspot), a specific prior incident at the property, a construction/renovation period affecting security, or a co-occupant/tenant with a distinct profile.]
PIRVulnerability DomainAnswer (summary)ConfidenceKey Gap
PIR-1Target profile / directed threat[ ][H/M/L][ ]
PIR-2Physical security & perimeter[ ][H/M/L][ ]
PIR-3Access, egress & circulation[ ][H/M/L][ ]
PIR-4Security systems & technical[ ][H/M/L][ ]
PIR-5Household personnel / insider threat[ ][H/M/L][ ]
PIR-6Digital / information exposure[ ][H/M/L][ ]
PIR-7Threat environment / contextual[ ][H/M/L][ ]
PIR-8Occupancy / absence vulnerability[ ][H/M/L][ ]
PIR-9Trajectory[ ][H/M/L][ ]

5. Vulnerability Framing, Taxonomy & Methodology

The load-bearing methodology section for a scored, domain-segmented product - state the rules before any score appears so the rating is transparent and reproducible. Define, in order:

  • Occupant exposure & vulnerability lens. Who lives at the residence, what is at stake (the occupant’s life, liberty, health, dignity, and privacy), and therefore the lens through which impact is scored. Vulnerability is scored as vulnerability OF THIS RESIDENCE for THIS OCCUPANT, not as generic location risk - state this explicitly. Household composition (principal alone / with family / with dependants / with staff living in) is noted as it changes the exposure.
  • Vulnerability taxonomy. The vulnerability domains assessed (this template uses eight - §8: Physical Security & Perimeter; §9: Structural & Environmental; §10: Access, Egress & Circulation; §11: Security Systems & Technical Measures; §12: Household Personnel & Insider Threat; §13: Digital & Information-Environment Exposure; §14: Threat-Environment & Contextual Risk; and the occupant-target-profile overlay in §6). Map the domains to the NE spine blocks (physical/structural → blocks 6/7; personnel → block 3; digital → block 6 extension; threat environment → block 7). Note any domain de-emphasised or added for this property and why.
  • Scoring scales. Threat Likelihood (1–5) and Impact (1–5) → inherent risk score (1–25); the band key; and the inherent → mitigation → residual logic. Impact is scored against the occupant’s exposure (life/liberty/health/privacy), not against the property in the abstract. State how the 1–5 threat likelihood relates to the ICD 203 estimative bands used in the Key Judgments (the mapping table below). A separate Vulnerability Severity (1–5) factor may appear as a modifying column in selected domain sections where a weakness’s severity is analytically distinct from the likelihood of its exploitation.
  • Inherent vs. residual vulnerability. Inherent = baseline vulnerability of the property as a physical and operational entity before any protective measures are credited. Residual = vulnerability after crediting existing security measures assessed to be in place (physical barriers, systems, personnel, procedures, insurance). Where no measures are yet defined or verified, state that residual = inherent until the §19 posture is scoped.
  • Protective-investment decision frame. The rating is objective (the firm’s assessment of vulnerability level); the client’s/occupant’s occupancy intent and risk appetite are recorded as context for interpreting it and for setting conditions, not used to adjust the scores. The recommendation (accept / mitigate / defer / do-not-occupy) follows from the rating against the duty-of-care threshold, stated here.
  • Relationship to other products. This consumes the country rating / baseline / operational picture for the location and the Pre-Travel Threat Assessment for absence periods; it raises RFIs for the Residential Security Survey, the Family & Household Digital Exposure Assessment, and any deeper K&R or RVTA analysis where findings warrant.
  • Principal coverage constraints. Access, currency against a changing property/threat picture, reliance on publicly available imagery, disclosed security-system specifications vs. actual deployed state, and any inability to conduct on-site inspection.
Framing ElementContent
Occupant exposure & vulnerability lens[Life / liberty / health / privacy / dignity - and household composition]
Property & occupancy period[Residence / location / occupancy type / window]
Vulnerability domains assessed (taxonomy)[Eight default domains; note additions/de-emphasis and why]
Scoring basis[Threat Likelihood (1–5) × Impact (1–5) = inherent; mitigation credited → residual; Vulnerability Severity modifier where applied]
Inherent vs. residual basis[Protective measures credited / none yet - residual = inherent]
Occupant risk appetite / occupancy intent (context only)[Recorded, not used to adjust scores]
Duty-of-care / recommendation threshold[The rating band at which the firm recommends mitigate / defer / do-not-occupy]
Relationship to other products[Consumes Country Risk / Country Study / Operational Risk / Pre-Travel / raises RFIs for survey / digital-exposure / K&R / RVTA]
Principal coverage constraints[Access, currency, imagery reliance, system-spec vs. state, no on-site inspection]

Threat Likelihood (1–5) ↔ ICD 203 mapping (apply consistently):

ScoreThreat Likelihood (1–5)Approx. ICD 203 band
1Remotealmost no chance / very unlikely (01–20%)
2Unlikelyunlikely (20–45%)
3Possibleroughly even chance (45–55%)
4Likelylikely (55–80%)
5Almost certainvery likely / almost certain (80–99%)

Impact (1–5), scored against the occupant: 1 Negligible · 2 Minor · 3 Moderate · 4 Major · 5 Severe/Catastrophic. Define each band concretely for this occupant in the source annex (e.g., what a “Moderate” vs. “Major” outcome means for personal safety, liberty/detention, health, privacy, and reputation).

Vulnerability Severity (1–5), where used as a modifier: 1 Minimal weakness · 2 Minor weakness · 3 Moderate weakness · 4 Major weakness · 5 Critical weakness - assessed against the residence’s capacity to resist the threat.

6. Principal / Occupant Profile & Target Profile

Why this occupant may attract directed threat that makes the residence a target - the profile-driven component of the assessment that distinguishes it from generic location vulnerability. Assess (do not merely list): public visibility and recognisability; role, employer, sector, and the controversy or grievance attached to them; nationality and how it is perceived at the location; wealth/status signalling visible from the residence (property value, vehicles, staff, neighbourhood); known prior threats, incidents, or hostile attention against the occupant or family; digital exposure that links the occupant to the address (discoverable home address, property photos, family details, patterns - see §13); household composition and any dependants or vulnerable persons; and behavioural factors relevant to residential risk (predictable schedule, repeated movements, open-gate posture). Score the directed-threat exposure this profile creates; the environmental (undirected) threat is scored in §14.

Profile FactorDetail / BasisThreat RelevanceThreat Likelihood (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Public visibility / recognisability[ ][Targeting / hostile surveillance / protest / media intrusion][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Role / employer / sector controversy[ ][Grievance / protest / directed threat / symbolic targeting][ ][ ][ ][ ][ ][H/M/L][ ]
Nationality / perceived affiliation[ ][How perceived at location / ethnic or sectarian exposure][ ][ ][ ][ ][ ][H/M/L][ ]
Wealth / status signalling (property-visible)[ ][Property crime / kidnap / extortion / express kidnap][ ][ ][ ][ ][ ][H/M/L][ ]
Prior threats / incidents / hostile attention[ ][Persistence / specific actor / dwelling-specific threat][ ][ ][ ][ ][ ][H/M/L][ ]
Digital / discoverable address linkage[ ][Itinerary leakage / pattern-of-life / address-enabled threat][ ][ ][ ][ ][ ][H/M/L][ ]
Household composition / dependants[ ][Expanded exposure / vulnerability / co-occupant profile][ ][ ][ ][ ][ ][H/M/L][ ]

Target-profile assessment: [Synthesis - whether and from whom this occupant and residence face directed (as opposed to ambient) threat, the single profile factor that most elevates residential vulnerability, and the principal uncertainty. Where a specific actor or campaign is in view, cross-reference §12 (insider threat) and §14 and route deep analysis to the appropriate sibling product.]

7. Property & Location Profile

The descriptive spine the vulnerability is scored against - the property’s physical and locational characteristics so every score in §8–§14 is grounded. Capture: property type (standalone house / apartment / compound / gated community / serviced apartment); location within the neighbourhood (street position, corner, dead-end, adjacent land uses); immediate neighbours and co-tenants; property boundaries and abutments; construction type and age; number of floors, total area, key rooms (especially principal bedroom, safe room, control centre, communications hub); vehicle access (garage, driveway, street parking); and the surrounding built environment (adjacent buildings, sight lines, cover for surveillance, traffic patterns). Flag location factors that intrinsically raise or lower vulnerability - isolation, proximity to high-profile targets or contested areas, police/security presence, natural cover, egress routes, and the neighbourhood’s general threat level.

Property CharacteristicDetail / BasisVulnerability Relevance
Property type & classification[ ][e.g., standalone compound vs. apartment - access control differences]
Location within neighbourhood[ ][e.g., corner lot / dead-end street / adjacent to vacant land]
Adjacent land uses / abutments[ ][e.g., park, embassy, construction site, commercial property]
Construction type / age / condition[ ][e.g., masonry vs. timber; age affects structural resilience]
Floors / area / key rooms[ ][e.g., principal bedroom floor, safe-room location]
Vehicle access / parking[ ][e.g., secure garage / open driveway / street parking]
Neighbourhood threat environment[ ][e.g., crime rate, police presence, historical incidents]

Location-profile assessment: [Synthesis - the location factors that most raise or lower the property’s intrinsic vulnerability, the single most consequential locational weakness, and whether the property’s profile (visible wealth, symbolic address, exposure) itself draws threat.]

8. Physical Security & Perimeter Assessment

The residence’s first line of defence - assess the perimeter, barriers, and physical controls that define the property boundary. Cover: perimeter walls, fences, gates, and their height, material, and integrity; vehicle and pedestrian entry points and access-control at each; natural and structural surveillance opportunities (sight lines from public space, adjacent buildings, cover for approach); lighting coverage (perimeter, entry points, grounds, dark zones); intrusion-deterrence features (gravel, anti-climb paint/detection, hostile-vehicle mitigation); and the condition of the perimeter as a whole (maintenance, gaps, degradation, blind spots). Score each sub-factor separately, then give a consolidated perimeter vulnerability score.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Perimeter walls / fences / barriers[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Gates / vehicle entrances[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Pedestrian entry points[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Sight lines / surveillance from public / adjacent[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Lighting (perimeter / grounds / dark zones)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Intrusion-deterrence features[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Perimeter maintenance / condition[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Physical security & perimeter assessment: [Synthesis - the overall perimeter vulnerability, the weakest points (doors, walls, gates, dark zones), the most likely entry methods for an aggressor, and the protective gaps that most affect the residual score.]

9. Structural & Environmental Vulnerability

The residence’s built-form and environmental weaknesses - factors that affect its ability to resist intrusion, protect occupants during an incident, and withstand environmental hazards. Assess: structural integrity (walls, doors, windows, locks, roof, cellar/basement access); door and window specifications (material, frame, glazing, lock type, hinge exposure); safe-room / panic-room existence, location, and specifications; communication-choke-point vulnerability (utility rooms, server/communications closets, electrical and data-entry points); environmental hazards relevant to the location (flood, seismic, storm, wildfire, landslide); and CBRN / industrial-accident exposure where the location warrants. Score structural weakness to forcible and covert entry; windows and glazing as the most common domestic intrusion points; and the safe room as the occupant’s last defensive position.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Structural integrity (walls / roof / cellar)[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Doors (external material / frame / locks)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Windows / glazing / openings[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Safe room / panic room[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Communications / utility chokepoints[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Environmental hazard exposure[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
CBRN / industrial exposure (where relevant)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Structural & environmental assessment: [Synthesis - the dominant structural weakness (typically windows and ground-floor doors), the safe-room adequacy (or its absence), and the environmental hazard most likely to affect the residence during the occupancy period.]

10. Access, Egress & Circulation

How the residence can be approached, entered, and exited - the veins of the vulnerability picture. Assess: vehicle approach routes and chokepoints (ambush-favourable terrain, cover, chokepoints where a vehicle can be blocked); pedestrian approach routes and sight lines from public space; primary and secondary entry points (doors, gates, garage, service/staff entrances); covert entry points (unsecured windows, basement, roof, shared walls, utility ducts); and the occupant’s egress routes (primary, secondary, tertiary exit from the property and the neighbourhood, including alternative routes if the primary is blocked). Apply OCOKA-style route factors - observation, cover and concealment, obstacles, key terrain, avenues of approach - from the perspective of both an intruder and the occupant.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Vehicle approach / chokepoints[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Pedestrian approach / sight lines[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Primary / secondary entry (doors, garage, staff)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Covert / unsecured entry points[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Occupant egress (primary / secondary / tertiary)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Neighbourhood egress / blockade vulnerability[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Access & egress assessment: [Synthesis - the most vulnerable approach and entry points (often a rear door, basement window, or unsecured service entrance), the route most favourable for hostile surveillance or ambush, and the adequacy of the occupant’s egress options if the primary route is blocked. The protective implication: which access points must be hardened and which egress routes must be kept open or alternative.]

11. Security Systems & Technical Measures

The electronic and technical security systems protecting the residence. Assess: alarm system (coverage - perimeter, interior, panic; type - wired/wireless/GSM; monitoring - on-site, remote, central station; backup power; tamper protection); CCTV system (camera coverage, field of view, recording and storage, remote access, lighting integration, blind spots, camera type and resolution); intercom and access-control system (visitor identification, remote release, lock type - magnetic, electric strike, keypad, biometric, smartphone-controlled); communication systems (landline, mobile coverage, satellite phone, mesh/radio, network redundancy); safe-room communications; and any smart-home / IoT devices that create a digital attack surface (smart locks, smart lighting, voice assistants, environmental sensors, smart appliances connected to the network). Flag systems that are known to the occupant vs. discoverable externally via Wi-Fi SSID, brand listings, or smart-home vulnerabilities. Note that the actual on-site state of systems may differ from disclosed specifications - this is an intelligence assessment, not a technical audit.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Alarm system (coverage / type / monitoring / backup)[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
CCTV (coverage / storage / blind spots)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Intercom / access control[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Communications (landline / cellular / sat / backup)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Smart-home / IoT attack surface[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
System discoverability (external footprint)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Security systems assessment: [Synthesis - the overall technical-security posture, the single most consequential gap (often alarm coverage or CCTV blind spot), whether systems are monitored and who responds, the IoT/digital exposure, and whether the systems as disclosed are adequate for the threat environment. Note that no on-site testing was conducted and system specifications are assessed from available information - the Residential Security Survey is the appropriate vehicle for technical validation (RFI → §22).]

12. Household Personnel, Service Access & Insider Threat

The human access layer - the most difficult vulnerability to control. Assess: household staff (residents and regulars - nannies, housekeepers, chefs, drivers, gardeners, security guards) and their vetting history, nationality, background, and tenure; service providers with regular or ad-hoc access (cleaners, maintenance, contractors, delivery personnel, tutors, medical providers, pet carers); guests and regular visitors (family, friends, associates) and their access pattern; the key-holder and access-code register (who holds keys, codes, fobs, biometric data, and whether they are tracked); staff quarters and their access to the main residence; and the insider-threat exposure - a disgruntled, coerced, or compromised staff member or service provider is the most effective means of bypassing all physical and technical security. Score separately for each staff role and access category where material.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Household staff (live-in / regular)[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Service providers (ad-hoc / scheduled)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Regular guests / associates[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Key-holder / access-code register[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Staff quarters / residence-access pathway[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Insider-threat exposure (coercion / grievance / compromise)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Household personnel & insider-threat assessment: [Synthesis - the human-access vulnerability that most reduces the effectiveness of physical and technical security, the single most consequential unvetted or unmanaged access path, and any indicators of insider-threat risk. Note that staff vetting status and personnel background checks are assessed from available information; the Family & Household Digital Exposure Assessment and background vetting are sibling products for deep personnel due diligence (RFI → §22).]

13. Digital & Information-Environment Exposure (Residential Context)

The discoverable information about the residence, its occupants, and their patterns that enables physical threat - the bridge between the digital domain and the physical vulnerability picture. Assess: the occupant’s discoverable link to the address (property records, social-media check-ins, geo-tagged photos, utility accounts, delivery-service databases, voter registration, campaign donations, professional bio with address); discoverable interior and exterior photos of the residence (real-estate listings, social media, press coverage, architectural/design features that reveal layout, security-system brands or panels); occupancy-pattern leakage (predictable schedules published on social media, absence periods from travel posts, event attendance); smart-home / IoT discoverability (Wi-Fi SSIDs, device brands, remote-access vulnerabilities, smart-lock models discoverable via Shodan or similar); family-member digital exposure linking to the address (children’s schools, spouse’s workplace, household social-media profiles); and the cumulative risk: can a determined adversary, using only open-source information, determine the address, layout, security posture, and occupancy schedule of this residence? Score the vulnerability this disclosure creates.

Sub-FactorDetail / BasisVulnerability Severity (1–5)Threat Likelihood of Exploitation (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskConfidenceSource Grade
Occupant-address linkage discoverability[ ][1–5][1–5][1–5][ ][ ][ ][H/M/L][A–F/1–6]
Residence imagery (interior / exterior / layout)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Occupancy-pattern leakage (schedule / absences)[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Smart-home / IoT discoverability[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Family / dependant digital exposure[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Cumulative adversary open-source profile[ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Digital & information-exposure assessment: [Synthesis - whether and to what degree the residence is discoverable and its vulnerabilities exposed through open sources, the single most enabling piece of information (often an interior photo or published schedule), and the cumulative finding on whether a determined open-source adversary could build a targeting profile. Direct the deep family digital-footprint work to the Family & Household Digital Exposure Assessment (sibling product) where warranted.]

14. Threat-Environment & Contextual Risk

The external threat environment in which the residence sits - the contextual risk that gives vulnerability its bite. Consumed from the country/area products and compressed to what bears on this property and occupancy period. Cover: crime in the immediate neighbourhood and wider city (burglary, home invasion, carjacking, express kidnap, street crime); terrorism and mass-casualty threat specific to the location and adjacent targets (embassies, government buildings, hotels, places of worship, transport hubs, high-profile residences); civil unrest, protest, and disorder that could affect access, egress, or neighbourhood security; conflict or insurgency exposure where applicable; and specific local dynamics live during the period (elections, anniversaries, events, construction, seasonal crime spikes). Do not re-derive a full country study - draw from the consumed 31/26/32 products and compress to what matters at this address.

Sub-ThreatDriver / BasisProximity to ResidenceThreat Likelihood (1–5)Impact (1–5)Inherent Risk (L×I)Existing MitigationResidual RiskTrendConfidenceSource Grade
Neighbourhood crime (burglary / home invasion)[ ][ ][1–5][1–5][ ][ ][ ][↑/→/↓][H/M/L][A–F/1–6]
Terrorism / mass-casualty (adjacent targets)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Civil unrest / protest / disorder (access-blocking)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Conflict / insurgency (where applicable)[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]
Specific local dynamics in window[ ][ ][ ][ ][ ][ ][ ][ ][H/M/L][ ]

Threat-environment assessment: [Synthesis - the dominant external threat to this property and occupant (typically neighbourhood crime or an adjacent high-profile target’s indirect risk), how the threat environment interacts with the property’s specific vulnerabilities (§8–§13), and the trajectory across the occupancy period. Cross-reference the Country Risk Assessment / Country Study / Operational Risk Assessment consumed for context.]

15. Consolidated Vulnerability Register & Heat Map

Aggregate every scored vulnerability and threat from §6 and §8–§14 into one ranked register, ordered by residual score, so the client sees the whole vulnerability picture and the priorities in one place. The heat map plots the distribution across the 5×5 grid. The domain sections build the scores; this section ranks and visualises them.

RankVulnerability / ThreatDomain (§)Sub-FactorInherent Risk (L×I)Existing MitigationResidual Risk (L×I)BandTrendConfidence
1[ ][§][ ][ ][ ][ ][Low/Mod/Elev/High/Crit][↑/→/↓][H/M/L]
2[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]
3[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]
[ ][§][ ][ ][ ][ ][ ][ ][H/M/L]

Residual-vulnerability heat map (plot each vulnerability’s residual L×I; cell = count or vulnerability IDs):

Impact ↓ / Threat Likelihood →1 Remote2 Unlikely3 Possible4 Likely5 Almost Certain
5 Severe[ ][ ][ ][ ][ ]
4 Major[ ][ ][ ][ ][ ]
3 Moderate[ ][ ][ ][ ][ ]
2 Minor[ ][ ][ ][ ][ ]
1 Negligible[ ][ ][ ][ ][ ]

Register note: [Where the residual vulnerability clusters (which domain and which sub-factor), the count above the duty-of-care threshold, and the single vulnerability most driving the rating and recommendation. Note any cross-domain effects - a digital-exposure finding enabling a physical vulnerability, or an insider-threat gap bypassing technical measures - and how they compound the risk.]

16. Overall Vulnerability Rating

The headline rating for the residence and occupancy period, and the resulting protective-posture recommendation. Derive the overall rating from the domain and sub-factor residual scores (state the aggregation logic - the highest-impact residual vulnerabilities and the highest-vulnerability domain dominate; a single Critical domain can set the rating regardless of benign domains). Give the per-domain summary, the aggregate rating and band, the trajectory with likelihood and confidence stated separately, and the explicit recommendation with any conditions.

Domain (§)Vulnerability SummaryPeak Residual Sub-FactorDomain BandTrend
Target profile / directed (§6)[ ][ ][Low/Mod/Elev/High/Crit][↑/→/↓]
Physical security & perimeter (§8)[ ][ ][ ][ ]
Structural & environmental (§9)[ ][ ][ ][ ]
Access, egress & circulation (§10)[ ][ ][ ][ ]
Security systems & technical (§11)[ ][ ][ ][ ]
Household personnel / insider threat (§12)[ ][ ][ ][ ]
Digital & information exposure (§13)[ ][ ][ ][ ]
Threat environment & contextual (§14)[ ][ ][ ][ ]
Trajectory PathDescriptionLikelihoodAnalytic ConfidenceKey Watch Indicators
Most likely[ ][ICD 203 term][HIGH/MOD/LOW][ ]
Most dangerous (rating step-up)[ ][ICD 203 term][HIGH/MOD/LOW][ ]
Improving / de-escalation[ ][ICD 203 term][HIGH/MOD/LOW][ ]

Protective-posture recommendation:

FieldDetermination
Overall Residential Vulnerability Rating[LOW / MODERATE / ELEVATED / HIGH / CRITICAL - aggregate score]
Recommendation[ACCEPT / MITIGATE / DEFER OCCUPANCY / DO NOT OCCUPY]
Conditions (if MITIGATE)[The protective conditions on which occupancy / acceptance depends - by domain, per §19; e.g., hardened perimeter on X, access-control upgrade, staff vetting, digital-hygiene programme]
Decision authority[Who owns the occupancy / investment decision - client/occupant; the firm advises]
Reassessment triggers[The indicators/events (per §18) that require re-rating during the occupancy period]

Overall rating & recommendation judgment: [The aggregate rating, its band, the aggregation logic, the principal drivers, the trajectory, and the basis for the recommendation against the duty-of-care threshold - the figures used in the BLUF and Snapshot. Cross-reference pivotal indicators to §18 and conditions to §19.]

17. Key Findings Summary

Consolidated register of the load-bearing findings behind the scores, each graded by evidentiary status and confidence so the reader can see what is established vs. assessed vs. contested. Materiality flags the findings that most drive the rating and recommendation.

#FindingStatusConfidenceMateriality
1[ ][Established / Assessed / Contested][H/M/L][ ]

18. Vulnerability-Escalation & Early-Warning Indicators

The residential analog of a red-flag register: specific, observable indicators whose movement would signal a residual-vulnerability score rising, a new vulnerability emerging, or the recommendation needing to change - split into pre-occupancy tripwires (would change the go/no-go on occupancy) and in-occupancy tripwires (would trigger a posture change, protective upgrade, or evacuation/relocation). Each is tied to the domain/vulnerability it bears on, the change it would signal, a severity, and a disposition. These feed any residential security-operations plan and coordinate with the Pre-Travel Threat Assessment for absence periods.

#Indicator (observable)PhaseDomain / Vulnerability (§)Change SignalledSeverityCurrent StatusDisposition
1[ ][Pre-occupancy / In-occupancy / Absence-period][ ][e.g., Domain band rises from Mod to Elev][Crit/High/Med/Low][Not present / Emerging / Present][Watch / Notify client / Re-rate / Upgrade measure / Curtain / Evacuate / Route to sibling product]

Severity definitions: Critical - would change the recommendation to DEFER/DO-NOT-OCCUPY pre-occupancy, or trigger immediate evacuation/relocation in-occupancy; warrants immediate client notification (e.g., direct threat against the residence, credible attack plotting, breach of perimeter by an adversary). High - would materially raise a domain/overall score and warrants prompt notification and protective upgrade. Medium - significant development requiring a re-rate. Low - note and monitor.

19. Protective & Mitigation Options (Advisory)

Advisory, analytic options that would reduce residual vulnerability to the occupant(s) - mapped to the ranked vulnerabilities (§15) and domains (§8–§14), by treatment category (avoid / reduce / transfer / accept). This is direction and category only, not the physical-security plan, hardening specification, or digital-hygiene programme: it states what kind of measure would lower a given residual score and roughly how much, and routes implementation to the appropriate separately scoped product. Do not write the perimeter-hardening spec, the access-control system design, the alarm- or CCTV-system specification, the staff-vetting programme, or the digital-hygiene protocol here - those are the Residential Security Survey, the Family & Household Digital Exposure Assessment, or a dedicated security-planning product.

Ranked Vulnerability / Domain (§15)Treatment CategoryAdvisory Option (direction only)Expected Residual EffectImplementation Route (separate product)
[ ][Avoid / Reduce / Transfer / Accept][e.g., harden perimeter wall to [height/standard] / upgrade door and window locks to [standard] / install monitored alarm covering [zone] / vet household staff to [level] / remove discoverable address from [sources] / vary occupancy pattern][e.g., residual [score] → [score] if adopted][Residential Security Survey / Family & Household Digital Exposure Assessment / Protective-operations plan / Insurance/risk-transfer / Privacy-OPSEC programme / Counsel]

Posture note: [The highest-leverage vulnerability reductions available for this residence, the irreducible residual vulnerability that remains after plausible protective measures (which should inform the accept/conditions decision in §16), and the items that must be carried into the separate security-survey and digital-exposure products. Reiterate that this is advisory, not the physical-security plan or hardening specification.]

20. Analysis of Competing Hypotheses (ACH)

Apply to the central judgment - typically whether the residence can be occupied at acceptable residual vulnerability with planned measures (accept/mitigate) vs. should be deferred or not occupied, or the single most consequential and contested vulnerability (e.g., whether a specific directed threat against the occupant makes the address unsafe regardless of physical posture). State the competing hypotheses, array the diagnostic evidence for/against each, and identify the most consistent explanation and what evidence would overturn it. Use ACH to discipline the recommendation against both alarmism and against pressure to minimise vulnerability; do not pad the apparatus where the evidence is one-sided - say so and close.

Evidence / IndicatorH1: [Acceptable with mitigation]H2: [Defer / do not occupy]H3: [Specific directed threat is/is not active]
[ ][C/I/N][C/I/N][C/I/N]

(C = consistent · I = inconsistent · N = neutral.) Most consistent hypothesis: [ ] - [rationale + the diagnostic evidence that would overturn it].

21. Key Assumptions Check (KAC)

The assumptions underpinning the scores and the recommendation - about the property’s physical state, the accuracy of disclosed security-system specifications, the occupant’s compliance with security procedures, the reliability of staff and service providers, the stability of the threat environment, and the absence of an exogenous shock affecting the residence - each with its basis, confidence, and the impact on the rating/recommendation if it proves wrong. Linchpin assumptions (those that, if wrong, change the recommendation) are flagged.

#AssumptionBasisConfidenceImpact if WrongLinchpin?
1[e.g., The property’s physical condition and security systems are as disclosed or as assessed from available information][ ][H/M/L][ ][Y/N]
2[e.g., The security measures credited in residual scores are operational and will be maintained for the occupancy period][ ][ ][ ][ ]
3[e.g., The occupant(s) will comply with agreed security procedures and not circumvent measures][ ][ ][ ][ ]
4[e.g., The threat environment at the location will not materially deteriorate beyond the assessed trajectory][ ][ ][ ][ ]
5[e.g., No major exogenous shock (attack, natural disaster, civil unrest, forced evacuation) affects the residence][ ][ ][ ][ ]

22. Collection Gaps & RFIs

Where coverage is thin or contested, the impact on the scores/recommendation, the collection that would close the gap, and where to escalate. Residential gaps are typically a property lacking current satellite/street-level imagery, unverified security-system specifications, staff/vendor vetting status unavailable, an occupant-profile gap, or a threat-environment question requiring deeper local collection.

GapDomain (§)Impact on Rating/RecommendationRecommended CollectionEscalation TargetPriority
[ ][ ][ ][ ][Country Risk / Country Study / Operational Risk / Residential Security Survey / Family & Household Digital Exposure Assessment / K&R / RVTA / In-country HUMINT / Advance recon / Pre-Travel][H/M/L]

23. Assessment & Recommendations

23.1 Vulnerability Assessment

Overall assessment of vulnerability and threat to the residence and occupant(s) - the headline rating and band, the protective-posture recommendation and any conditions, the domains and residual vulnerabilities that most drive it, the most consequential uncertainties, and the implications for occupancy as planned. State the figures used in the BLUF and Snapshot, and the coverage/confidence caveats that bound them. Be explicit about the irreducible residual vulnerability that remains even after plausible protective measures.

[ASSESSMENT]

23.2 Recommendations

  • For decision-makers / the occupant: [The accept / mitigate / defer / do-not-occupy recommendation and what it rests on; the conditions that must be met to occupy; the planning assumption the assessment supports; and the events under which the decision should be revisited.]
  • For the protective team / risk owners: [The priority residual vulnerabilities to treat, the highest-leverage measures by domain (per §19) to carry into the Residential Security Survey, the Family & Household Digital Exposure Assessment, or a protective-operations plan, the domain-specific seams to cover, and the indicators to put under watch.]
  • For contingency planning: [The vulnerabilities and scenarios that must be reflected in any residential security-operations plan, evacuation/relocation triggers (§18), and the threat-environment contingencies that warrant a re-rate.]
  • For analysts (next intelligence steps): [Which domains, properties, or threats warrant a deeper or sibling product (security survey, digital-exposure, K&R, RVTA), which watch indicators to track, and the re-verification cadence for the occupancy period.]
  • Escalations / downstream products: [Items routed to the Residential Security Survey, Family & Household Digital Exposure Assessment, Pre-Travel Threat Assessment, Country Risk / Country Study / Operational Risk, K&R Risk, RVTA, or Privacy-OPSEC.]
  • Conditions for reliance / refresh: [The perishability window and the indicators/events (per §18) that should trigger a re-assessment during the occupancy period.]

24. Annex A - Sources & Methodology

Collection methods and scope; the source register graded with the Admiralty two-axis code; the reference scales (below); statement of the likelihood-vs-confidence separation and the 1–5 ↔ ICD 203 mapping; the vulnerability taxonomy and scoring methodology (inherent → mitigation → residual; impact scored against the occupant’s exposure; domain segmentation and aggregation logic for the overall rating); the frameworks applied (NE spine blocks mapping; OCOKA route factors applied to access/egress) and any tailoring; coverage and currency limitations (access, satellite-imagery date, reliance on disclosed specifications, absence of on-site inspection, contested information environment); confirmation that all collection was open-source and lawful (no surveillance, tracking, interception, physical intrusion, or access in breach of any law, including against the occupant, the residence, or any household member); and the treatment of official records, property-listings, and vendor-provided data as potentially self-interested and corroborated against independent sources.

Source reliability (Admiralty, A–F): A Completely reliable · B Usually reliable · C Fairly reliable · D Not usually reliable · E Unreliable · F Reliability cannot be judged.

Information credibility (Admiralty, 1–6): 1 Confirmed by other sources · 2 Probably true · 3 Possibly true · 4 Doubtful · 5 Improbable · 6 Truth cannot be judged. (Each sourced datum carries a two-character grade, e.g., B2.)

Estimative probability / likelihood (ICD 203): almost no chance / remote (01–05%) · very unlikely (05–20%) · unlikely (20–45%) · roughly even chance (45–55%) · likely (55–80%) · very likely (80–95%) · almost certain (95–99%).

Analytic confidence (evidence base - kept separate from likelihood): HIGH (multiple independent reliable sources, primary documentation, no significant contradiction) · MODERATE (some corroboration, gaps, minor unresolved inconsistency) · LOW (single/uncorroborated source, significant gaps, plausible alternatives open). Never combine a likelihood term and a confidence level in the same sentence.

Risk scoring (the load-bearing scale of this product): Threat Likelihood (1–5) × Impact (1–5) = 1–25; band key: 1–5 Low · 6–10 Moderate · 11–15 Elevated · 16–20 High · 21–25 Critical. Threat Likelihood is scored 1 Remote / 2 Unlikely / 3 Possible / 4 Likely / 5 Almost certain (mapped to ICD 203 bands in §5). Impact is scored 1 Negligible / 2 Minor / 3 Moderate / 4 Major / 5 Severe, against the occupant’s exposure (life/liberty/health/privacy - define each band concretely for this occupant below). Inherent score is before protective measures; residual score credits measures assessed to be in place or committed for the occupancy period. A separate Vulnerability Severity (1–5) factor may appear as a modifying column in selected domain sections. The overall rating is derived from the domain and sub-factor residual scores with the highest-impact vulnerabilities and highest-vulnerability domain dominating (state the aggregation rule), not a naive average - a single Critical domain can set the rating.

Coverage confidence (product-level): HIGH (strong access, diverse independent sources across all domains, current satellite/street-level imagery, verified security-system data, low contested-information distortion) · MODERATE (adequate coverage with gaps on some domains, partial or dated imagery, reliance on disclosed specifications, some contested information) · LOW (significant access/currency barriers, thin or heavily contested sourcing on material domains, no imagery or system data available, unverifiable disclosures).

Impact-band definitions (occupant-specific - complete for this engagement): [Define what Negligible/Minor/Moderate/Major/Severe mean concretely for each exposure type - personal safety/injury, liberty/detention, health, privacy, and reputation.]

Analytic-framework note: The assessment scores vulnerability to the named occupant(s) at the identified residence across an eight-domain taxonomy mapped to the NE spine blocks (entity identification, pattern-of-life, network/associates, capabilities/resources, vulnerabilities, threat landscape), with access/egress assessed using OCOKA route factors, and digital exposure assessed through the open-source discoverability lens. Scoring is structured analytic judgment calibrated to the stated scales, not measurements; the recommendation is independent and objective per ICD 203 and is not adjusted to minimise or to inflate vulnerability for reasons other than the assessed picture.

Searched sources (record source type, provider/title, as-of date, coverage scope, limitations, and any self-interest/reliability caveat): [TABLE]

25. Annex B - Appendices

  • Appendix A - Property & Occupant Profile: the property address, type, location characteristics, occupant identity and role, household composition, and occupancy pattern that drive the vulnerability scoring (§6, §7) - handled as the most sensitive location and personal data.
  • Appendix B - Full Property & Location Profile: the complete §7 table with property characteristics, boundaries, abutments, construction type, floors and key rooms, and neighbourhood factors.
  • Appendix C - Full Scored Vulnerability Register: the complete §6 and §8–§14 register with inherent score, mitigation, residual score, domain, trend, confidence, and source grade for every sub-factor.
  • Appendix D - Vulnerability Heat Maps: inherent and residual 5×5 distributions, and per-domain heat maps.
  • Appendix E - Domain-by-Domain Assessment: the §8–§14 narrative assessments for each domain, with scored sub-factors, synthesis, and protective implications.
  • Appendix F - Vulnerability-Escalation & Early-Warning Matrix: the §18 pre-occupancy and in-occupancy indicators with current status, change signalled, and monitoring notes.
  • Appendix G - Protective & Mitigation Options Register: the §19 advisory options with treatment category, expected residual effect, and implementation route to the security-survey / digital-exposure product.
  • Appendix H - Scoring Methodology & Scale Definitions: the threat-likelihood/impact scales, occupant-specific impact-band definitions, vulnerability-severity scale, inherent/residual logic, and the overall-rating aggregation rule.
  • Appendix I - Location Environmental Reference: pointers to the Country Risk Assessment / Country Study / Operational Risk Assessment consumed for the location, or the compressed environmental picture used as input.
  • Appendix J - Satellite Imagery & Maps: property and neighbourhood satellite imagery (current-as-of-date), with perimeter, entry points, approach routes, and egress routes annotated (where produced), handled as sensitive location data.
  • Appendix K - Full Source Register: every source, Admiralty grade, access date, reference, and any coverage/limitation note.
  • Appendix L - Glossary & Abbreviations.
  • Appendix M - Revision History.

END OF REPORT.

Verification disclaimer: This residential vulnerability and threat assessment is a point-in-time, property- and occupant-scoped analytic assessment based on open, licensed, and lawfully accessed sources current as of the baseline date; it is not a physical security survey, structural-engineering inspection, security audit, or digital-forensic examination, not a hardening specification, security-operations plan, or evacuation plan, and not a guarantee of the occupant’s safety or the residence’s invulnerability. The vulnerability and threat scores are the firm’s independent, objective structured analytic judgments calibrated to the stated scales - an aid to protective prioritisation, not precise measurements or actuarial probabilities. Protective-posture content is advisory and is not the physical-security plan, hardening specification, or digital-hygiene programme (separate products). Vulnerability is highly sensitive to physical changes, occupancy changes, and threat-environment shifts - scores are time-sensitive and must be re-verified against current conditions at the start of each occupancy period and on any material change. All collection was open-source and lawful; no surveillance, tracking, interception, physical intrusion, or access in breach of any law was conducted, including against the occupant, the residence, or any household member. Official records, property-listings, and vendor-provided data were treated as potentially self-interested and corroborated where possible. No classified, unlawfully obtained, or out-of-licence material was used in the production of this report.

Document control footer: [REF-YYYY-### · Version · Classification/TLP · Prepared/Reviewed/Approved · Distribution].

Model wiring

Generated from cell frontmatter at publish time.