ASIS Releases New ANSI Standard

ASIS International recently released its Organizational Resilience Maturity Model American National Standard, which provides guidance for the implementation of the ANSI/ASIS SPC.1-2009 organizational resilience (OR) standard in six phases, ranging from an unplanned approach, to managing events, to going beyond the requirements of the OR standard and creating a holistic environment for resilience management. By adopting a phased implementation process, organizations can determine how much risk is acceptable and how to cost-effectively manage the uncertainty in achieving its objectives.

"The maturity model approach assumes that the driving force for pursuing the implementation of the OR standard is to establish a management system for the continual improvement of resilience performance," says Dr. Marc Siegel, Commissioner, ASIS International Global Standards Initiative and Chairman of the Technical Committee. "Building the management system in a phased approach and achieving benchmarks of maturity, provides the organization with link between costs and value added."

The maturity model helps organizations achieve the benefits of resilience management by "phasing in" a system tied to their specific business needs and economic realities. The maturity model enhances an organization's capacity to manage risk and resilience by avoiding, accepting, removing the source, changing the likelihood, changing the consequences, and sharing and/or retaining the risk. The tools in the standard help organizations phase in a management system timed to their business needs and economic realities. The approach can be used by any organization, regardless of whether they will eventually make a business decision to seek first, second, or third-party validation of their conformance with the requirements of the ANSI/ASIS.SPC.1-2009 OR Standard.

"Success breeds success. Organizations can use the standard as a basis for a recognition program to evaluate their level of performance and to drive continual improvement. The maturity model approach was piloted by the Tsogo Sun Group in preparation for the 2010 FIFA World Cup Tournament and demonstrated its value in improving the resiliency of the hospitality group before this international sporting event" says Dr. Siegel.

The ASIS/ANSI Organizational Resilience Maturity Model Standard can be integrated with quality, safety, environmental, information security, risk, and other management systems. Organizations that have adopted a management system (e.g., according to ISO 9001:2000, ISO 14001:2004, ISO 28000:2005, and/or ISO/IEC 27001:2005) can use this Standard in conjunction with their existing management systems.

All ASIS Standards and Guidelines are available through the ASIS website, www.asisonline.org.

The work of preparing ASIS Standards and Guidelines is carried out through the ASIS International Standards and Guidelines Commission and its committees. An ANSI accredited Standards Development Organization, ASIS actively participates in the International Organization for Standardization, developing standards and guidelines within a voluntary, nonproprietary and consensus-based process, utilizing the knowledge, experience and expertise of ASIS membership, security professionals and the global security industry.

Featured

  • Until We Meet Again

    A short three years ago we were all pondering whether to attend any tradeshows all thanks to COVID-19. Sorry to bring that nightmare up again, but it seems that little pandemic is in the rear-view mirror, and it’s time to meet again. Read Now

    • ISC West
  • Cyber Hygiene: What it Looks Like for IoT Devices

    Cyber Hygiene: What it Looks Like for IoT Devices

    For our second pillar about the Industrial Internet of Things (IIoT) Pillars of Security, we are going to discuss what cyber hygiene looks like for IoT devices. Read Now

  • ISC West Announces 2023 Keynote Series Speaker Lineup

    The International Security Conference (ISC), in collaboration with premier sponsor Security Industry Association (SIA), announced five of this year’s ISC West Keynote Series speakers. ISC West will kick off its annual conference on March 28 (SIA Education@ISC: March 28-30 | Exhibit Hall: March 29-31) at the Venetian Expo in Las Vegas, Nevada. Read Now

    • ISC West
  • Accelerating Security Modernization

    In recent years, the term “digital transformation” has been one of the most frequently used buzzwords across industries. On its most basic level, it refers to the reimagining of how an organization leverages its technology systems to improve business processes. Read Now

Featured Cybersecurity

New Products

  • Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation.

    Connect ONE®

    Connect ONE’s powerful cloud-hosted management platform provides the means to tailor lockdowns and emergency mass notifications throughout a facility – while simultaneously alerting occupants to hazards or next steps, like evacuation. 3

  • XS4 Original+

    XS4 Original+

    The SALTO XS4 Original+ design is based on the same proven housing and mechanical mechanisms of the XS4 Original. The XS4 Original+, however, is embedded with SALTO’s BLUEnet real-time functionality and SVN-Flex capability that enables SALTO stand-alone smart XS4 Original+ locks to update user credentials directly at the door. Compatible with the array of SALTO platform solutions including SALTO Space data-on-card, SALTO KS Keys as a Service cloud-based access solution, and SALTO’s JustIn Mobile technology for digital keys. The XS4 Original+ also includes RFID Mifare DESFire, Bluetooth LE and NFC technology functionality. 3

  • Dahua 2-Wire IP Video Intercom System

    Dahua 2-Wire IP Video Intercom System

    Dahua Technology is introducing a new line of expandable 2-wire IP video intercom solutions for the North America market. The New 2-wire IP video intercom is more advanced, cost effective, and designed to help businesses increase their security. 3