ASIS International and RIMS today announced their collaboration on a joint Risk Assessment American National Standard, which will provide a basis for the process of conducting a successful, well-organized and documented risk assessment. Using a process approach consistent with ISO 31000 and the Plan-Do-Check-Act model, the Standard will include managing a risk assessment program, as well as conducting individual risk assessments. Annexes will provide examples of quantitative and qualitative methodologies for risk assessment. Committee formation is open November 15 - December 14.
“Risk assessments provide the foundation for decision making in any risk management process,” says Dr. Marc Siegel, commissioner, ASIS Global Standards Initiative. “Risk assessments are an on-going process; therefore it is critical to design a risk assessment program within the overall risk management program that is reliable, repeatable, and well documented. This standard will provide guidance on the risk assessment process to support risk management decision making to better address the uncertainties in an organization achieving its objectives.”
ASIS and RIMS are seeking volunteers to form the standard’s technical committee. Committee participation will fall under one of three self-declared “interest categories” including general interest, producer/service provider, and user/manager. Membership composition will be balanced across these categories based on ANSI “balance” requirements; and consideration may be given on committee size. ASIS or RIMS membership is not a requirement for participation. Applications from interested parties will be accepted until COB on December 14.
“Risk management is a constantly evolving – and essential – discipline for organizational success, which should not be done in isolation” states Carol Fox, director of strategic and enterprise risk practice for RIMS. “Having a consistent and generally accepted American National risk assessment standard, developed by consensus, should increase efficiencies and foster a common understanding about risk-taking within organizations. In working collaboratively on this standard with ASIS, RIMS stresses the importance of building alliances across associations to develop a shared understanding for assessing uncertainties that may affect future outcomes for all organizations, regardless of structure or size.”
ASIS is handling committee administration for this project. To learn more about this jointly developed standard and committee participation, visit http://www.asisonline.org/guidelines/committees/ra_std.htm.
The work of preparing ASIS Standards and Guidelines is carried out through the ASIS International Standards and Guidelines Commission and its committees. An ANSI accredited Standards Development Organization, ASIS actively participates in the International Organization for Standardization, developing standards and guidelines within a voluntary, nonproprietary and consensus-based process, utilizing the knowledge, experience and expertise of ASIS membership, security professionals and the global security industry. View a complete list of all ASIS Standards and Guidelines currently under development.