Skip Navigation LinksASIS International / Education & Events / Education Programs / Classroom / Risk, Threat, and Vulnerability Assessment

Risk, Threat, and Vulnerability Assessment

06 - 08 November 2017
New Orleans, LA
Early bird discounts end Sep 30


​Reduce Risk ... Increase Resilience22.png

Be a critical business partner to senior management.

What makes a risk, threat, and vulnerability assessment successful and effective? Why are assessments essential for organizational resilience?

This program starts by explaining the differences between risk, threat, and vulnerability and then demonstrates how assessments are absolutely essential for organizational resilience. Learn about acceptable business risk thresholds and the metrics you can use to describe them.

This workshop helps attendees establish a solid foundation to build a RTVA program. The program speakers were content experts in their field. Their ability to share personal experiences as they were presenting the workshop contents was very helpful.
Dr. Timothy Burke
Advocate Health Care

Immediate Benefits

  • Learn how to develop an effective risk management and assessment program that is highly valued within your organization.
  • Understand how to integrate risk assessment into the business process
  • Develop the skills to identify necessary people and assets that provide the enterprise tangible and intangible value.
  • Learn how to develop a solid business case for the program—one that addresses cost, benefits, and operational aspects.

Who Should Attend

  • Security management professionals across all public and private sectors
  • Anyone involved with design, specifications, implementation, operation, or maintenance of security systems, including those in specialties such as emergency management, business continuity planning, facility and infrastructure management, HR, and others.
  • Architects, designers, and integrators working on security project

Program Overview

This 3-day course offers a comprehensive examination of all aspects of planning and implementing a risk assessment program in any organization, small or large, public or private, and in any industry or setting. Through engaging lectures, eye-opening case studies, practical exercises and a relevant site visit, this program not only covers the essentials topics listed below, but also provides opportunities to apply the principles.

Communicating and Developing the Business Case
The key task behind planning and conducting a risk assessment program is developing an understanding of the organization to be assessed.

Risk Management Process
Before starting the design and implementation of the risk assessment program, it is important to understand the objectives of the risk management program and to evaluate both the extent and efficacy of existing risk control measures and system. Learn how to do this efficiently.

Analyzing the Risk
What is the scope of the risk assessment program? Is it meeting the organization's risk assessment objectives? Does it consider the context of the organization, its needs, and requirements? The scope should define the processes, functions, activities, physical boundaries (facilities and locations), and stakeholders within the boundaries of the risk assessment program. Learn how to match the scope to the resources available.

Treatment of the Risks/Mitigation
Risk rating scales are defined in relation to an organizations' objectives and scope. Risks are typically measured in terms of impact and likelihood of occurrence. Impact scales of risk should mirror the units of measure used for organizational objectives, which may reflect different types of impact such as financial, personnel, and/or reputation.

Organizational Resilience and Risk
Building a resilient organization is a cross-disciplinary and cross-functional endeavor. An organizational resilience approach to managing risk encourages critical infrastructure businesses to develop a more natural capability to deal with unexpected disruptions to business-as-usual activity. Discover the most effective ways to approach resilience that allow organizations to adapt to changes in their operating environment over time.

Test, Measure, Review, Document Control and Assurance
Understand the various tools and techniques that can be utilized to determine risk assessment. Identify how the organization can now bring its individual residual risk ratings together into a portfolio view to identify interdependencies and interconnections. Management can then determine any actions necessary to revise its risk responses or address design or effectiveness of controls.

Site Visit
Visit a major employer in the New Orleans area to see how the organization has applied the principles of risk management. Return to the classroom to further explore how theory and practice come together. (site visit location will be announced soon)

Please Note:
Registrants should be aware that this course includes a visit to a third-party site. The host organization may require the use of non-disclosure agreements or have other requirements for visitors to the site.  The site tour is subject to the requirements of the host organization​​

 Hotel, Fees and Schedule


Hyatt French Quarter
800 Iberville Street
New Orleans, LA 70112

Make your hotel reservation online at or by calling toll-free at +1.888.421.1442. 

Be sure to mention ASIS when requesting the special room rate of $189 single/double (plus tax). This rate will be honored until October 16 or until the room block is full.


Fees include daily continental breakfast, lunch on day one, a networking reception, and refreshment at  breaks. Hotel costs and certificate exam free are not included.

Early bird
(before September 30)
​After September 30
Member​ ​$995 ​$1095
​Nonmember ​$1295 ​$1395


Sunday, November 5

Monday, November 6
7:00-8:00 am

Program Hours

Monday, November 6
8:00 am–5:00 pm

Tuesday, November 7
8:00 am–5:00 pm

Wednesday, November 8
8:00 am–5:00 pm ​

 Policies and Discounts


If confirmation of registration and payment has not been received three days prior to the event, please email

Certificates of Attendance

ASIS reserves the right to withhold certificates, if attendance requirements are not met.

Certificates are not issued for Review Programs.

Last-Minute Registrations

While we welcome all registrations, including those on-site, the availability of handout materials cannot be guaranteed.


Business casual is recommended.

Continuing Professional Education (CPE)

Each 50-minutes of instruction is worth one CPE.

Alternate Registration Methods

If you prefer, you can register by phone (+1.703.519.6200), fax (+1.703.519.6299), or mail.

Cancellation and Transfer Policy

For a full refund or transfer credit, written requests must be received by ASIS at least 10 business days before the start date of the program. Those received less than 10 days prior will be charged a $100 cancellation/transfer fee.

Transfers will be limited to a maximum of two per original registration. No refunds or transfers are made for requests received on or after the start date. Contact us or fax your request to ASIS Member Services at +1.703.519.6298.

Tours of Third-Party Sites

When a program includes a visit to or a tour of a third-party site, the host organization may require the use of non-disclosure agreements. Subject to the requirements of the host organization, the agreements offered to nationals and non-nationals of the host country may differ.

Team Discount

Receive a 10% discount when three to five attendees register from the same organization, 15% for six or more. Email for details.

Certification Discount

ASIS members and nonmembers holding the distinction of CPP, PCI, and PSP receive a $25 discount per classroom program. This discount is automatically applied at checkout.


Ms Amy M Poole
  • Ms Amy M Poole
  • Consultant
  • Charlotte NC, UNITED STATES
  • Colleagues: 0

Bio: Amy Poole has 5 years of experience in managing corporate security programs and projects. With a background in audit and compliance prior to her security career, Amy brings a history of risk-based work to her security approach, tailoring enterprise security programs to an ESRM model. Amy is the co-chair of the Communications Committee within the ASIS Women in Security Council and a member of the ASIS Leadership and Management Practices Council. She is the board secretary for the Global Security Risk Management Alliance, and a certified Project Management Professional (PMP) through the Project Management Institute (PMI).
Mr Mark Schreiber, CPP
  • Mr Mark Schreiber, CPP
  • Principal Consultant
  • Safeguards Consulting, Inc.
  • Simpsonville SC, UNITED STATES
  • Colleagues: 0

Bio: Mark Schreiber is a Security Engineer and Technical Consultant who has been in the industry for almost 20 years. Mark is an ASIS International Certified Protection Professional (CPP) and has designed all forms of physical security systems across the globe. Typical system designs are large campus, critical infrastructure systems that integrate complex access control, video surveillance, and perimeter intrusion systems for Fortune 100 clients. Through his experience and support of multiple ASIS Councils, Mark has presented at multiple ASIS Annual Seminars and ASIS trainings. In addition, Mark is an ASIS Council Vice President, ASIS Chapter Chairperson, and past Chairperson and volunteer leader of several ASIS Councils, including the Security Architecture and Engineering Council, the Critical Infrastructure Working Group, and the Information Technology Security Council.
Mr J Kelly Stewart
  • Mr J Kelly Stewart
  • Managing Director & CEO
  • Newcastle Consulting
  • Leesburg VA, UNITED STATES
  • Colleagues: 0

Bio: J. Kelly Stewart, MBA, CHS-IV, CAS is the Managing Director and CEO for Newcastle Consulting, LLC - an Enterprise Security Risk, Information, and Design Management Consultancy that provides proactive, predictive, and responsive advice and access to information critical in building a companies' resilience to operational risk. Kelly draws upon more than 25 years of public and private sector experience with Fortune 500 and 100 corporations as a Chief Security Officer; an international, physical security operations practitioner; and a risk management advisor. He is an internationally recognized instructor, speaker and authority on comprehensive risk assessment, security master planning, and security design and integration. Kelly holds three Master degrees in Security Management, Project Management and an MBA. Kelly has presented for ASIS at multiple seminars and workshops over the years and is currently an ASIS Council Vice President and volunteer leader in numerous ASIS Councils.