In this Standard Security Management is described as a process that is risk based, stakeholder driven and continually improved with a Plan-Do-Check-Act (PDCA) cycle. Tasks and outputs for Strategic, Tactical and Operational Security Policies and Objectives are specified.
80 aspects of 20 Security topics with some 300 (Key) Controls are listed for pragmatic and concise development and implementation. Reviewing and auditing with these controls will assist you in raising the maturity levels for Security in your organisation.
This Standard is drafted in accordance with the High Level Structure for management systems of ISO. This ensures compatibility and smooth integration with other management systems, such as ISO 22301 Business Continuity Management, ISO 27001 and ISO 27002 Information Security Management, and ISO 55000 Asset Management.
This Standard includes the protection of all parts, processes, sites, infrastructures, systems, and tangible and intangible assets and interests of an organisation.
This Standard specifies the requirements that may be used for the certification of a Security Management System.
The National Security Advisory Centre (NSAC) was founded in May 2010 in The Netherlands and has extensive expertise in Security Risk Management, Terrorist Threat and Risk Assessments and Mitigation, Business Continuity Management, Insider Threats, Emergency and Crisis Management, IT and SCADA Security, and Disaster Recovery.
NSAC supports operators of National Critical Infrastructure, Government Agencies, Municipalities, Industry Associations and Private Companies in protecting critical assets and infrastructures.
Marcel Spit is the founder of NSAC and has drafted the first edition of the USMS Standard. The draft was discussed in detail, reviewed and adjusted by the USMS Standard Review Committee consisting of senior Security professionals including certified Security experts of ASIS International - Benelux Chapter and the Association of Security Professionals of The Netherlands (VBN).
Based on technical scientific research, this book presents a new perspective to help you understand how to assess and manage surprising, extreme events, known as ‘Black Swans’. This approach looks beyond the traditional probability-based principles to offer a broader insight into the important aspects of uncertain events and in doing so explores the ways to manage them.
This book recognises the fundamental issues surrounding risk assessment and risk management to help you to understand and prepare for black swan events.
Complete with international examples to illustrate ideas and concepts
Integrates risk management and resilience based thinking
Suitable for a variety of applications including engineering, finance and security.