Every ESRM program requires continuous monitoring, awareness and adjustment to keep moving forward.
Over the past few years, I’ve been writing about approaching security programs from a risk-based perspective. This past year focused on Enterprise Security Risk Management (ESRM) and the benefits this framework and philosophy can bring to your organization.
One of the tasks we must master as we enter into an Enterprise Security Risk Management (ESRM) program is the idea that we will now “manage” risks.
We learn from our mistakes. In our personal lives, we have made (and will make) mistakes. But we can learn and grow from these life lessons, take this newfound knowledge, and use it to our advantage.
During 2017, I watched as our profession and ASIS International began down the Enterprise Security Risk Management (ESRM) path. We declared ESRM as one of our cornerstone objectives, touted its return at our Annual Seminar and Exhibits with sessions and workshops, and structured an ASIS Board Initiative to begin inserting ESRM into the DNA of our society.
Over the past 10 months, we’ve had a chance to explore the concepts of Enterprise Security Risk Management (ESRM) in this column, and at the annual ASIS Seminar held in Dallas this year. It’s been an interesting journey, and we’ve learned so much, but we’ve also seen how far we have to go.
Security professionals like to solve problems.
The fun part of any Enterprise Security Risk Management (ESRM) program is starting with some interesting “what if” questions.
The move to Enterprise Security Risk Management, or ESRM, is a significant journey for organizations looking to reap the benefits of a risk-based, business focused approach to securing assets across the enterprise.
As I begin another year in the security industry, I’m hopeful that during 2017 we see our profession focus on Enterprise Risk Management, and that we begin the journey to identifying ourselves more closely as enterprise risk professionals.
Most Popular Stories
Canadian Technical Security Conference
April 2-4, 2019
April 10-12, 2019
26th Annual ASIS Toronto Best Practices Seminar
April 17, 2019
Security Canada East
April 24, 2019
Security Canada Ottawa
May 8, 2019