Threat and Hazard Identification and Risk Assessment information

Threat and Hazard Identification and Risk Assessment Guide

Threat and Hazard Identification and Risk Assessment Toolkit

Use of Threat and Hazard Identification and Risk Assessment
for Preparedness Grants

Threat and Hazard Identification and Risk Assessment Information Bulletin #385

Frequently Asked Questions (information from FEMA)

What is a Threat and Hazard Identification and Risk Assessment (THIRA)?

The Threat and Hazard Identification and Risk Assessment is a tool that allows a jurisdiction to understand its threats and hazards and how the impacts may vary according to time of occurrence, season, location, and other community factors. This knowledge helps a jurisdiction establish informed and defensible capability targets.

Who is required to complete a THIRA?

The THIRA requirement, as it applies to the Federal Emergency Management Agency (FEMA) preparedness
grants, is that the following entities must complete a THIRA by December 31, 2012 as a condition of their
FY 2012 grant funding:
 All 56 State Administrative Agencies (SAAs) receiving funding under the FY 2012 Homeland
Security Grant Program (HSGP) and the Emergency Management Performance Grant (EMPG)
program; and
 All 31 Urban Areas receiving funding under the FY 2012 Urban Areas Security Initiative (UASI)
grant program.
All tribal nations that receive FY 2012 Tribal Homeland Security Grant Program (THSGP) funding
(announcement of recipients scheduled for June 29, 2012) are encouraged but not required to complete the
THIRA by December 31, 2012.
Other jurisdictions such as local units of government and regional planning groups are highly encouraged,
but not required, to complete a THIRA in conjunction with the SAA. The SAA is expected to engage their
whole community, including tribal nations, to ensure that the entire scope of statewide risk is incorporated
into the state’s THIRA.

What is the State Preparedness Report (SPR)?

The State Preparedness Report is an annual capability assessment. The Post-Katrina Emergency
Management Reform Act of 2006 (PKEMRA) requires an SPR from any state/territory receiving federal
preparedness assistance administered by the Department of Homeland Security. Each state submits an SPR to

What is the relationship between the THIRA and SPR?

The ultimate outcome of the THIRA process is a set of capability targets. The SPR assesses current
capability against these targets and documents any gaps that exist. The capability targets generated through
the THIRA process are used as the basis for the SPR assessment.

How is the SPR used to collect the THIRA?

A complete THIRA, developed in alignment with CPG 201, contains five elements:
 A list of threats and hazards – natural, technological, and human-caused – which are of concern to a
 Context statements which describe when and where a threat or hazard may occur.
 Desired outcome statements – what the jurisdiction wants to achieve – for all 31 core capabilities as
described in the National Preparedness Goal.
 Estimations of how the threats and hazards described in context statements impact the core
 Capability targets for all core capabilities.
Using the table templates provided in CPG 201 Supplement 1: Toolkit, a jurisdiction can upload their context
statements, desired outcomes, and estimation of impacts as attachments to its SPR submission, using the SPR
assessment tool. For SAAs, the state / territory capability target information is entered directly into the SPR
assessment tool.

Does the annual maintenance of the THIRA mean that I need to annually update my Hazard Mitigation

No. While the THIRA should be maintained annually (and revised as needed), the Hazard Mitigation Plans
should continue on their existing revision cycles: every five years for local jurisdictions and every three years
for states.

How often should the THIRA be updated?

The THIRA should be maintained annually. This annual maintenance cycle allows a jurisdiction to have a
dialog with its whole community partners to discuss desired outcomes, how they may meet capability targets
and requirements, or how capability targets and requirements may be reduced through prevention, protection,
and mitigation activities. When the jurisdiction is discussing and reviewing its THIRA with its partners, it
should assess whether or not a change in the risk landscape has occurred over the previous year. This review
should take into account the following:
 Have mitigation projects been completed which would lessen the impact of a threat or hazard on a
 Have protective measures been implemented which would lessen the community’s vulnerability to a
threat or hazard?
 Has a real-world event taken place which alters the estimated impacts of a threat or hazard on the
 Has an emerging threat to the community been identified that was not previously included in the
Based on the answers to these questions, a jurisdiction may choose to update their THIRA or to maintain its
current THIRA.