Assessing mission assurance for combat support when under a cyber attack is challenging because of the sheer number of information systems, the range of vulnerabilities, and the number of combat support functions they support. RAND researchers developed a tool that presents a sequential process for prioritizing those functions and information systems most likely to be problematic for the operational mission during cyber attacks.