|
Auditing Management Systems for Security, Preparedness and Continuity Management with Guidance for Application Standard (200X)
Management systems standards emphasize the importance of audits as a management tool for monitoring and verifying the effective implementation of an organization's policy. Refers to the systematic, objective activities performed to evaluate management system performance for security, preparedness and continuity management. Audits are an essential part of conformity assessment activities such as external certification/registration and of supply chain evaluation and surveillance.
Status: Under development.
Business Continuity Management Standard (200X)
Includes auditable criteria for preparedness, crisis management, business and operational continuity and disaster management. Standard will utilize a management systems process approach using the Plan-Do-Check-Act (PDCA) model and will be based on the BS 25999 standard (Part 1 - Code of Practice; Part 2 - Specification).
Status: Under development.
Chief Security Officer (CSO) Organizational Standard (2008)
Designed as a tool to allow an organization to decide upon and provide a security architecture characterized by appropriate awareness, prevention, preparedness, and response to changes in threat conditions. Standard is structured at a high level. Specific considerations and responses are also addressed for consideration by individual organizations based on specific risk assessment and requirements.
Status: Available from ASIS Bookstore
Organizational Resilience: Security, Preparedness and Continuity Management Systems - Requirements with Guidance for Use Standard (2009)
Click here for a free download.
Based on the PDCA model it provides steps necessary to prevent, prepare for and respond to a disruptive incident to manage and survive the event and take actions to ensure the organization's resilience. Provides generic auditable criteria to establish, check, maintain, and improve a management system to enhance prevention, preparedness (readiness), mitigation, response and recovery from disruptive incidents. Annex provides informative guidance on system planning, implementation, testing, maintenance and improvement.
Status: Available from ASIS Bookstore.
Physical Asset Protection Standard (200X) (formerly Facilities Physical Security Management)
Uses a PDCA approach to identify, apply and manage physical security measures to safeguard an organization's assets - people, property, information and intangible that are based in facilities (not in transit). It describes a process for providing physical/perimeter security at a facility to set goals; identify, assess and manage risks; and select appropriate physical security measures. Standard describes basic functions of physical security measures and tools to protect facilities through the important steps of deterrence, detection, delay and response.
Status: Under development.
Risk Assessment Standard (200X)
Provides a needed basis for the process involved in the objective analysis of the efficacy of risk management controls that protect an organization's assets and will be based on the ASIS General Security Risk Assessment Guideline.
Status: Under development.
Workplace Violence Prevention and Intervention Standard (200X)
Provides an overview of general security policies, processes, and protocols that organizations can adopt to help prevent threatening behavior and violence affecting the workplace and better respond to and resolve security incidents involving threats and episodes of actual violence. Standard presents practical definitions of workplace violence that includes a continuum of problematic behavior, and that classifies incidents based on the relationship of perpetrator to victim. It outlines security prevention and intervention strategies as well as the procedures for detecting, investigating, managing and addressing threatening behavior or violent episodes that occur in a workplace or in association with it or its employees. Standard is based on the ASIS International Workplace Violence Prevention and Response Guideline.
Status: Under development.
|
Business Continuity Guideline: A Practical Approach for Emergency Preparedness, Crisis Management, and Disaster Recovery (2005)
A guideline outlining a series of interrelated processes and activities, including readiness, prevention, response, recovery/resumption, testing and training, and evaluation and maintenance, that will assist in creating, assessing, and sustaining a comprehensive plan for use in the event of a crisis that threatens the viability and continuity of an organization.
Status: Available from ASIS Bookstore
Chief Security Officer Guideline (2008)
Addresses the key responsibilities and accountabilities, skills and competencies, and qualifications for an organization's senior security executive.
Status: Available from ASIS Bookstore
Facilities Physical Security Measures Guideline (2009)
Assists in the selection of appropriate physical security measures including defining risk levels, implementing an integrated set of physical security measures, and devising policies and procedures related to security incidents, access control, monitoring systems, lighting, security personnel, audits and inspection, etc.
Status: Available from ASIS Bookstore.
General Security Risk Assessment Guideline (2003)
Provides a seven-step process that creates a methodology by which security risks at a specific location can be identified and communicated, along with appropriate solutions.
Status: Available from ASIS Bookstore. The current version of the General Security Risk Assessment Guideline is under review, and further revision is awaiting finalization of the ISO Risk Management standard to assure consistency with relevant documents and standards. Please revisit the ASIS International website for future updates.
Information Asset Protection
Guideline (2007)
Offers general protection advice (collection, storage, dissemination, and destruction) for an entity's information assets, including proprietary, classified, and marketing materials, etc.
Status: Available from ASIS Bookstore
New Edition! Preemployment Background Screening Guideline (2009)
Aids employers in understanding and implementing the fundamental concepts, methodologies, and related legal issues associated with the preemployment background screening of job applicants.
Status: Available from ASIS Bookstore.
Private Security Officer Selection and Training Guideline (2004)
Sets forth minimum criteria for the selection and training of private security officers, which also may be used to provide regulating bodies with consistent minimum qualifications.
Status: Available from ASIS Bookstore. Revision in process.
Threat Advisory System Response Guideline (2008)
Provides private business and industry with possible actions that could be implemented based on the Alert Levels of the Department of Homeland Security.
Status: Available from ASIS Bookstore.
Workplace Violence Prevention and Response Guideline (2005)
Offers useful ways to maintain a safe and secure work environment through such means as identifying, evaluating, and controlling potential hazards and conducting employee informational training.
Status: Available from ASIS Bookstore.
|
