Interesting way of describing/thinking about hazard or risk analysis which is applied in many industries through ISO standard frameworks such as ISO 14971 for medical devices (but is also used elsewhere). Risk analysis complements requirements analysis in that risk mitigation plans become requirements of the system (if the risks meet some threshold).
I came here to note the same thing, from an aerospace perspective.
In a formal development following something like ARP4754A even before one works on the requirements that a system has to meet, the high level system functions are considered and a Functional Hazard Assessment is done to look at the criticality of those functions failing. Then one can add requirements and architectural mitigations as the system and Safety Assessment is developed.
