|
Business Continuity Management:
Preparedness, Crisis Management, and Disaster Recovery (200X)
Includes auditable criteria for preparedness, crisis management, business
and operational continuity and disaster management. Standard will utilize
a management systems process approach using the Plan-Do-Check-Act (PDCA)
model and will be based on the BS 25999 standard (Part 1 - Code of Practice;
Part 2 - Specification).
Status: Under development.
Chief Security Officer Organizational Standard (2008)
Designed as a tool to allow an organization to decide upon and provide
a security architecture characterized by appropriate awareness, prevention,
preparedness, and response to changes in threat conditions. Standard
is structured at a high level. Specific considerations and responses
are also addressed for consideration by individual organizations based
on specific risk assessment and requirements.
Status: Pending publication.
Facilities Physical Security
Management (200X)
Uses a PDCA approach to identify, apply and manage physical security
measures to safeguard an organization's assets - people, property, information
and intangible that are based in facilities (not in transit). It describes
a process for providing physical/perimeter security at a facility to
set goals; identify, assess and manage risks; and select appropriate
physical security measures. Standard describes basic functions of physical
security measures and tools to protect facilities through the important
steps of deterrence, detection, delay and response.
Status: Under development.
Risk Assessment (200X)
Provides a needed basis for the process involved in the objective analysis
of the efficacy of risk management controls that protect an organization's
assets and will be based on the ASIS General Security Risk Assessment
Guideline.
Status: Under development.
Organizational Resilience:
Security, Preparedness and Continuity Management Systems - Requirements
with Guidance for Use (200X)
Based on the PDCA model it provides steps necessary to prevent, prepare
for and respond to a disruptive incident to manage and survive the event
and take actions to ensure the organization's resilience. Provides generic
auditable criteria to establish, check, maintain, and improve a management
system to enhance prevention, preparedness (readiness), mitigation,
response and recovery from disruptive incidents. Annex provides informative
guidance on system planning, implementation, testing, maintenance and
improvement.
Status: Under development.
Auditing Management Systems
for Security, Preparedness and Continuity Management with Guidance for
Application (200X)
Management systems standards emphasize the importance of audits as
a management tool for monitoring and verifying the effective implementation
of an organization's policy. Refers to the systematic, objective activities
performed to evaluate management system performance for security, preparedness
and continuity management. Audits are an essential part of conformity
assessment activities such as external certification/registration and
of supply chain evaluation and surveillance.
Status: Under development.
|
Business Continuity Guideline:
A Practical Approach for Emergency Preparedness, Crisis Management,
and Disaster Recovery (2005)
A guideline outlining a series of interrelated processes and activities,
including readiness, prevention, response, recovery/resumption, testing
and training, and evaluation and maintenance, that will assist in creating,
assessing, and sustaining a comprehensive plan for use in the event
of a crisis that threatens the viability and continuity of an organization.
Status: Available
from ASIS Bookstore
Chief Security Officer Guideline (2008)
Addresses the key responsibilities and accountabilities, skills and
competencies, and qualifications for an organization's senior security
executive.
Status: Available
from ASIS Bookstore
Facilities Physical Security
Measures Guideline (200X)
Assists in the selection of appropriate physical security measures
including defining risk levels, implementing an integrated set of physical
security measures, and devising policies and procedures related to security
incidents, access control, monitoring systems, lighting, security personnel,
audits and inspection, etc.
Status: Under development.
General Security Risk Assessment
Guideline (2003)
Provides a seven-step process that creates a methodology by which security
risks at a specific location can be identified and communicated, along
with appropriate solutions.
Status: Available
from ASIS Bookstore
Information Asset Protection
Guideline (2007)
Offers general protection advice (collection, storage, dissemination,
and destruction) for an entity's information assets, including proprietary,
classified, and marketing materials, etc.
Status: Available
from ASIS Bookstore
Preemployment Background Screening
Guideline (2006)
Aids employers in understanding and implementing the fundamental concepts,
methodologies, and related legal issues associated with the preemployment
background screening of job applicants.
Status: Available
from ASIS Bookstore. Revision in process.
Private Security Officer
Selection and Training Guideline (2004)
Comment period open through 12/20/08
PSO Draft Document 10/31/08
Comment Form
Sets forth minimum criteria for the selection and training of private
security officers, which also may be used to provide regulating bodies
with consistent minimum qualifications.
Status: Available
from ASIS Bookstore. Revision in process.
Threat Advisory System
Response Guideline (2008)
Provides private business and industry with possible actions that could
be implemented based on the Alert Levels of the Department of Homeland
Security.
Status: Available
from ASIS Bookstore.
Workplace Violence Prevention
and Response Guideline (2005)
Offers useful ways to maintain a safe and secure work environment through
such means as identifying, evaluating, and controlling potential hazards
and conducting employee informational training.
Status: Available
from ASIS Bookstore. Revision in process.
|
