ASIS International, through its Commission on Standards and Guidelines, has released the All Hazards Risk Management Draft Best Practices Standard. The standard—the first ASIS has issued since adding standards development to its Guidelines program in April— provides a practical management systems approach to security, preparedness, response, business/operational continuity and recovery for disruptive incidents resulting in an emergency, crisis or disaster. The document is also in alignment with ISO management systems standards and is an enhancement of the ASIS Business Continuity Guideline.
The All Hazards Risk Management Draft Best Practices Standard is available for a public review and comment period of 60 days, ending October 16, 2007. The premise for the standard is that natural disasters, acts of terror, technology mishaps and environmental accidents have demonstrated that no members of the public or private sectors are immune from intentionally- or unintentionally-caused crises, and that organizations must know how to prepare for and respond to potentially devastating incidents.
The All Hazards Risk Management Draft Best Practices Standard, when completed, will provide organizations of all types and sizes with the elements needed to achieve and demonstrate proactive risk reduction and security performance related to their physical facilities, services, activities, products, supply chains and operational (business) continuity. "Because so many factors in a company's daily sustainability fall outside of its direct control, it is important that management have a plan in place to protect the organization and limit its damages from internal and external crises, and guide its recovery from such risks and threats," said F. Mark Geraci, CPP, chairman of the ASIS International Commission on Standards and Guidelines.
"The All Hazards Risk Management Draft Best Practices Standard provides an excellent start to that plan, but can be refined and improved through the efforts of business and security leaders who take the time to lend their thoughts during the review period." The Standard uses an "all-hazards" approach, covering the phases of emergency and crisis management before, during and after a disruptive incident. The document is written to complement the ISO Publicly Available Specification (PAS 22399), the only internationally agreed upon benchmark for emergency and disaster management. ASIS plans to submit the finalized version of the All Hazards Risk Management Best Practices Standard to ISO/TC 223—the technical committee comprised of representatives from industry, the first responder community, emergency and disaster managers, business, government and non-governmental organizations from more than 50 countries—for consideration as an international standard.
To download the All Hazards Risk Management Draft Best Practices Standard for review and comment, visit Also included is a comment form that can be completed and submitted electronically, or downloaded and faxed to 703-518-1517.