UnixTime

Research Note

Security Engineering Deviation Record

Use this record when a system design deviates from approved secure architecture or engineering principles.

On this page

When to use this

Use this record when a system design deviates from approved secure architecture or engineering principles.

Deviation record

Deviation ID System Principle affected Reason Risk impact Compensating control Approved by Review date
TBD TBD TBD TBD TBD TBD TBD TBD

Minimum checks

  • Deviation is documented.
  • Risk impact is assessed.
  • Compensating control is defined.
  • Approval is recorded.
  • Review date is set.