Which of the following is NOT a primary phase of the Joint Planning Process (JPP) as applied to cyber operations?

Joint Planning Process planning for cyber operations relies on a sequence of stages that keep the effort organized and focused on achieving the mission with awareness of constraints and effects. The main stages you go through involve starting the planning effort, conducting a thorough mission analysis to understand objectives, constraints, and the environment; developing and evaluating potential courses of action; and then executing the chosen plan while continuously assessing results and adjusting as needed. Risk management is essential, but it isn’t treated as its own stand-alone phase. Instead, risk identification, analysis, and mitigation are integrated across the planning and execution steps—identified during mission analysis, weighed during COA evaluation, and monitored during plan execution and assessment. That makes risk assessment not a primary phase in the JPP structure, which is why this option is the correct choice for what is NOT a primary phase. In cyber operations, this integrated approach means you continuously consider threats, vulnerabilities, potential impacts, and mitigations throughout planning and execution rather than isolating risk assessment into a separate phase.