You are being redirected because this document is part of your ASTM Compass® subscription.
    This document is part of your ASTM Compass® subscription.

    STP1614

    Building Resilience: Preventing, Preparing For, and Responding to Intentional, Unintentional, and Natural Events

    Published: 2019


      Format Pages Price  
    PDF (405.34 KB) 16 $25   ADD TO CART
    Complete Source PDF (37.19 MB) 327 $110   ADD TO CART

    Cite this document

    X Add email address send
    X
      .RIS For RefWorks, EndNote, ProCite, Reference Manager, Zoteo, and many others.   .DOCX For Microsoft Word


    Abstract

    Securing assets and preparing for undesirable and disruptive events in organizations and their supply chains is a critical part of building resilient, sustainable organizations. Organizations need to seamlessly integrate risk, security, crisis, and continuity management into their overall business management strategies. International and national standards can help, but is the proliferation of standards helping or confusing a coherent approach to managing the risks of disruptive events? The International Organization for Standardization (ISO) 31000 standard for risk management provides a framework for building a system of management to address intentional, unintentional, and natural events. This helps the organization to become better prepared to address whatever uncertainty it may face. Key to success is building a comprehensive approach to managing risk that cuts across discipline and organizational silos. By integrating an ISO 31000-based approach for risk management into a formal management system, an organization can custom-build a system of management in conformance with a range of ISO management system standards. The integrated approach allows the organization to leverage its resources and expertise to build a more resilient organization capable of better handling undesirable events. The approach focuses on achieving an organization's objectives by integrating risk, security, crisis, and continuity management into day-to-day operations using an objectives-based approach. It drives a cultural change in the organization emphasizing that everyone has a role to play in managing risk. Inclusion and training in the risk management processes empowers people working for the organization to proactively identify and manage risks. ISO 31000 supports a paradigm shift in perspective. No longer does risk management focus on bad events, rather the question to be answered is: How do I use risk management to open doors of opportunity and minimize uncertainty in achieving objectives?

    Keywords:

    risk management, business management, resilience, security, business continuity, crisis management, supply chain, management systems, ISO 31000, COSO


    Author Information:

    Siegel, Marc
    Global Security and Resilience Projects, Homeland Security Graduate Program, San Diego State University, San Diego, CA

    M Siegel Associates LLC, Encinitas, CA


    Committee/Subcommittee: E54.04

    DOI: 10.1520/STP161420180044