An important consideration when deciding to mitigate or accept a risk from a cyber attack to a weapon system is how it affects operational missions. To analyze mission impact, the authors propose a methodology that aims to achieve two goals: to be comprehensive enough to be executed at the scale of each of the missions in the U.S. Air Force yet simple enough to be updated as needed to guide decisions to accept or to mitigate specific risks.