MCPc performs an annual risk assessment that focuses on three high-risk areas: administrative, physical, and technical. MCPc will ensure effective policies, procedures, and protocols are in place for the proper selection and implementation of security measures, the protection of buildings and equipment, and the protection of the technical infrastructure and data.