by Brianna Crandall — March 1, 2017 — ASIS International (ASIS), the worldwide association for security management professionals, has published a new text on security risk assessment by Jean Perois, CPP, PCI, PSP: Getting the First Step Right: A Risk Assessment Guide for the Security Manager. This new publication contains both theoretical content and tales of personal experience based on the author’s decades of performing security risk assessments in the Middle East, particularly in the Arab countries of the Persian Gulf.
While most security practitioners will follow the steps of a written risk assessment methodology, Jean Perois shares valuable insights with his fellow practitioners by warning them about the minefield that an SRA can become. The author says he made mistakes on the job and found himself in embarrassing situations more than once; if the reader avoids even a few of these mistakes, this book will have served its purpose.
Perois describes methods, strategies, and philosophies related to security risk assessment. The book will help security practitioners (a) determine the likelihood that an adversary will exploit vulnerabilities; (b) estimate the impact; and (c) choose, prioritize, and implement appropriate countermeasures.
The security risk assessment is a decision-making tool, an essential first step toward strengthening security in an industrial facility. This book examines and explains several different risk assessment methodologies and standards.
Getting the First Step Right: A Risk Assessment Guide for the Security Manager, available for purchase from the ASIS Web site, will aid SRA writers, security managers, facilities managers and other contributors to the SRA team.