Webinar-Risk Assessment Standard

05 March 2013

ASIS and the Risk and Insurance Management Society (RIMS) to develop ANSI Risk Assessment Standard:

The webinar will introduce participants to the “Risk Assessment” standard to be developed that will provide guidance on a generic process for risk assessments enabling repeatable, documented and objective identification, analysis and evaluation of risk to provide a foundation for information-based analysis of the efficacy of risk management controls that protect an organization’s assets. It will address operational risks and does not include financial or safety engineering risks. The risk assessment process includes: risk identification (threat, vulnerability and criticality/impact analysis), risk analysis, and risk evaluation. It uses a process approach consistent with the ISO31000 and with the Plan-Do-Check-Act model. Reliable risk assessments require that they be conducted using a systematic approach, in an organized and well-documented manner, with clearing identified stakeholders and assumptions. The standard will discuss managing a risk assessment program, as well as conducting individual risk assessment.  Annexes provide examples of quantitative and qualitative methodologies for risk assessment.

Topics to be discussed include:

  • About the Standard to be developed and objective
  • What are standards and how they are developed
  • How the standards development consensus process works and what to expect
  • ASIS’s role as the ANSI Accredited Standards Developer

Speaker bios:

Dr. Marc Siegel is the Commissioner of the ASIS International Global Standards Initiative.  He represents ASIS at the International Organization for Standardization (ISO) and at regional and national forums.  Dr. Siegel works with ASIS and national standards bodies on five continents to develop international and national risk management, reliance, security, preparedness, and continuity standards, as well as training on their implementation.   As an Adjunct Professor in the College of Business Administration and the Master’s Program in Homeland Security at San Diego State University, Dr. Siegel pioneered the concept of applying a systems approach to security and resilience management.   He is an RABQSA International certified Security Management Systems Business Improvement Lead Auditor and Skills Assessor, as well as a trainer for the ISO 28000 Security Management Lead Auditor Certification Program.

Ms. Susan Carioti has served the standards community for over 24 years implementing standards development in ANSI accredited Standards Developing Organizations (SDOs).  In ANSI accredited SDO Alliance for Telecommunications Industry Solutions Ms. Carioti executed technical standards development for over 500 American National Standards.  Additionally, Ms. Carioti serves as voting representative on the ANSI Executive Standards Council, Chairs the ANSI Audit Subcommittee as well as represents ASIS International on the ANSI National Policy Committee and the Organizational Member Forum.

Ms. Carol Fox, ARM, is Director of Strategic and Enterprise Risk Practice for RIMS, a global not-for-profit association dedicated to advancing risk management for organizational success. Prior to joining RIMS in 2010, Ms. Fox was senior director of risk management at Convergys Corporation, a publically traded, global relationship management company. A graduate of Miami University (Ohio), she serves on the advisory board for its Center for Business Excellence. A published author on a variety of risk management topics, she currently serves as vice chair on the U.S. Technical Advisory Group for the international ISO 31000 risk management standards. In 2009, RIMS presented Ms. Fox with the Harry and Dorothy Goodell Award for her contributions to risk management. Treasury & Risk named her as one of its 2011 100 Most Influential People in Finance.