ASIS International and RIMS have jointly announced the publication of the new ASIS/RIMS Risk Assessment ANSI Standard. This standard provides guidance on developing and sustaining a coherent and effective risk assessment program.
The ASIS/RIMS Risk Assessment Standard provides a framework and process for organizations to establish an ongoing program to evaluate risks and conduct individual risk assessments. The standard complements the ISO 31000 risk management standard and the ISO 31010 standard cataloguing risk assessment methodologies by providing a blueprint for the risk assessment process.
“Managing risk is about managing uncertainties in order to achieve strategic, tactical and operational objectives. This includes identifying opportunities, minimizing potential losses, and building a more resilient organization and supply chain. It is essential that decision-makers have accurate and dynamic information on uncertainties and their potential outcomes in order to help better assure their organizations thrive and survive,” stated ASIS Global Standard Initiative Commissioner Dr. Marc Siegel. “The ASIS/RIMS Risk Assessment Standard provides a blueprint for addressing enterprise-wide risk at all levels and regardless of the source.”
The standard presents a basis for a universal and integrated approach to risk management, including: building a risk assessment program; understanding the context for risk assessments; conducting a risk assessment, and using risk assessment outcomes for decision-making.
ASIS and RIMS members get one free download through their respective websites. Others are welcome to purchase the standard through either organization’s online stores.