ASIS Standards and Guidelines - Published
ASIS Standards and Guidelines - Published
Standards contact: standards@asisonline.org
This Standard presents a comprehensive management approach for the protection of assets by the application of security measures for physical asset protection.
This Standard may be used in conjunction with other ASIS International documents that provide additional information and details:
ASIS International Protection of Assets.
ASIS GDL FPSM-2009, Facilities Physical Security Measures Guideline.
ANSI/ASIS SPC.1-2009, Organizational Resilience: Security Preparedness, and Continuity Management Systems - Requirements with Guidance for Use.
This Standard builds on the Montreux Document and the International Code of Conduct (ICoC) for Private Security Service Providers to provide requirements and guidance for a management system with auditable criteria for Quality of Private Security Company Operations, consistent with respect for human rights, legal obligations and good practices related to operations of private security service provider companies in conditions where governance and the rule of law have been undermined by conflict or disaster. It provides auditable requirements based on the Plan-Do-Check-Act model for third-party certification of private security service providers working for any client.
This Standard provides guidance for the use of a maturity model for the phased implementation of the ANSI/ASIS SPC.1-2009 organizational resilience standard in six phases, ranging from an unplanned approach, to managing events, to going beyond the requirements of the ANSI/ASIS SPC.1-2009 Standard and creating a holistic environment for resilience management.
This Standard provides an overview of policies, processes, and protocols that organizations can adopt to help identify and prevent threatening behavior and violence affecting the workplace, and to better address and resolve threats and violence that have actually occurred. This Standard describes the personnel within organizations who typically become involved in prevention and intervention efforts; outlines a proactive organizational approach to workplace violence focused on prevention and early intervention; and proposes ways in which an organization can better detect, investigate, manage, and - whenever possible - resolve behavior that has generated concerns for workplace safety from violence. The Standard also describes the implementation of a Workplace Violence Prevention and Intervention Program, and protocols for effective incident management and resolution.
Based on the BS 25999 (Part 1 and Part 2), this Standard specifies requirements for a business continuity management system (BCMS) to enable an organization to identify, develop, and implement policies, objectives, capabilities, processes, and programs-taking into account legal and other requirements to which the organization subscribes-to address disruptive events that might impact the organization and its stakeholders. This Standard specifies requirements for planning, establishing, implementing, operating, monitoring, reviewing, exercising, maintaining, and improving a documented BCMS within the context of managing an organization's risks.
Designed as a tool to allow an organization to decide upon and provide a security architecture characterized by appropriate awareness, prevention, preparedness, and response to changes in threat conditions. Standard is structured at a high level. Specific considerations and responses are also addressed for consideration by individual organizations based on specific risk assessment and requirements.
Adopted by DHS under PS-Prep
Based on the PDCA model it provides steps necessary to prevent, prepare for and respond to a disruptive incident to manage and survive the event and take actions to ensure the organization's resilience. Provides generic auditable criteria to establish, check, maintain, and improve a management system to enhance prevention, preparedness (readiness), mitigation, response and recovery from disruptive incidents. Annex provides informative guidance on system planning, implementation, testing, maintenance and improvement.
Free Download
Guidelines contact: guidelines@asisonline.org
A guideline outlining a series of interrelated processes and activities, including readiness, prevention, response, recovery/resumption, testing and training, and evaluation and maintenance, that will assist in creating, assessing, and sustaining a comprehensive plan for use in the event of a crisis that threatens the viability and continuity of an organization.
Addresses the key responsibilities and accountabilities, skills and competencies, and qualifications for an organization's senior security executive.
Assists in the selection of appropriate physical security measures including defining risk levels, implementing an integrated set of physical security measures, and devising policies and procedures related to security incidents, access control, monitoring systems, lighting, security personnel, audits and inspection, etc.
Provides a seven-step process that creates a methodology by which security risks at a specific location can be identified and communicated, along with appropriate solutions.
The current version of the General Security Risk Assessment Guideline is under review; please revisit the ASIS International website for future updates.
Offers general protection advice (collection, storage, dissemination, and destruction) for an entity's information assets, including proprietary, classified, and marketing materials, etc.
Aids employers in understanding and implementing the fundamental concepts, methodologies, and related legal issues associated with the preemployment background screening of job applicants.
Recommends minimum selection and training qualifications to improve the performance of private security officers and the quality of security services.
Provides private business and industry with possible actions that could be implemented based on the Alert Levels of the Department of Homeland Security.
Reference document only, due to change in DHS policy (free download) |
Offers useful ways to maintain a safe and secure work environment through such means as identifying, evaluating, and controlling potential hazards and conducting employee informational training.
