ASIS International (ASIS), (ISC)² and ISACA, the preeminent professional associations for physical, cyber and information security, have signed an MOU to develop a Security Awareness American National Standard. This guidance standard will address the intersections of physical, cyber and information security management to help organizations of all sizes maximize protection of people, property, and assets.
In an increasingly complex and interconnected world, the public and private sector are faced with growing physical and electronic challenges to protect personal information, business transactions, and critical infrastructure. Given the convergence of risks and fading boundaries between physical, cyber, and information security, it is essential that organizations of all types and sizes have the best tools at their disposal to promote security awareness from a holistic perspective.
“The human element is central to any successful security strategy. By promoting a ‘security awareness culture,’ organizations can proactively prevent problems that detract from achieving their business objectives,” says Dr. Marc H. Siegel, commissioner, ASIS Global Standards Initiative. “The proposed standard will integrate physical, cyber, and information security into day-to-day business and risk management practices. It will emphasize that everyone in the organization is part of the risk equation, and therefore, part of the solution.”
The Standard will focus on cross-disciplinary management measures, as well as awareness and training programs to help organizations and their supply chains prepare for and minimize the likelihood of an undesirable event, as well as respond to and recover from a security incident.
Topics of discussion related to security awareness will include:
- Physical security
- Information security
- Cyber security
- Wireless networks
- Password security
- Intangible asset security (brand, reputation, file sharing, intellectual property, and image)
ASIS, (ISC)² and ISACA will form a joint technical committee and working group to develop the standard, soliciting input from security experts around the globe. The committee will operate under ASIS’s ANSI-accredited process to develop an American National Standard that can be applied anywhere in the world.
Technical committee formation is expected to begin in April. For more information, contact firstname.lastname@example.org.