WKSP 0690 introduces weapon system program managers, engineers, security control assessor representatives and information system security managers to the cyber risk assessment CRA methodology for weapon systems. The workshop provides attendees with an understanding of the differences between information technology and operational technology, cyber- relevant characteristics of weapon systems, and distinctions between PIT systems, subsystems and products. The workshop describes the shortcomings of a compliance-driven assessment approach for weapon systems and suggests an analysis-based alternative. WKSP 0690 introduces the concepts of System-Theoretic Process Analysis for Security STPA-SEC and the principles of war in the cyber domain.