CATSA’s Enterprise Risk Management program embeds risk management into strategic decision-making and resource allocation, thereby allowing the organization to make more informed decisions as it relates to executing its corporate plan.
The Risk and Risk Responses annex outlines in more detail CATSA’s corporate risks as well as risk mitigations and controls that may affect the organization’s ability to achieve its mandated activities, strategic objectives or legislative requirements (Appendix F).
Mandated Services Risk
Due to the ever-evolving nature of aviation security, CATSA may not have the resources required to detect all high-risk threats and circumventions at screening checkpoints.
Service Delivery Through Third Parties Risk
CATSA may experience supply chain issues and negative service delivery impacts as a result of its dependence on third party contractors.
Human Resources Risk
CATSA may experience challenges in recruiting and/or retaining personnel due to various factors, resulting in a potential decline in corporate performance.
Traveller and Stakeholder Relations Risk
As a result of industry-wide challenges, CATSA may experience impacts to the organization’s performance and/or reputation, thus potentially affecting relationships with certain stakeholders.
IT Risk
Due to the evolving nature of the cyber threat environment, cyber threats and/or attacks may negatively affect CATSA's IT infrastructure and/or compromise organizationally sensitive or secret information.
CATSA Staff Capacity
CATSA's staff capacity, in certain areas, may be inadequate to sustain workloads and to support a healthy work environment resulting in employee dissatisfaction and a decrease in corporate performance over time.