On March 12, 2009, American National Standards Institute (ANSI) approved ASIS SPC.1-2009 as an American National Standard. This Standard is titled Organizational Resilience: Security, Preparedness, and Continuity Management Systems – Requirements with Guidance for Use.
The adoption of this standard by ANSI is significant in the world of business continuity and security for multiple reasons:
- The standard very clearly incorporates the Management System Model found in ISO 9001:2008 (Plan, Do, Check, Act) into the joint disciplines of Security and Preparedness.
- It begins the process of convergence between Security and Preparedness. This is significant as in years past; the 2 disciplines were seen not as complementary, but as competing for scarce resources in most organizations.
- Highlights the need for risk identification and development of corresponding risk prevention, reduction and mitigation strategies which enhance an organizations sustainability and resiliency.
- The American Society for Industrial Security (ASIS) is also developing a standard for Business Continuity Management Systems that will utilize BS 25999-1 as a starting point. This standard will fall under the umbrella and compliment ASIS SPC.1 Organizational Resiliency.
The Abstract from the standard sums it up as “A comprehensive management systems approach for security, preparedness, response, mitigation, business/operational continuity, and recovery for disruptive incidents resulting in an emergency, crisis, or disaster.”
Click the link below to read the standard for yourself….