Chapter 9
Security Measures:
Policies and Procedures
In this chapter...
Security Awareness
Security Plan
Emergency Management Plan
Conclusion
173
TAG's Risk Assessment Process
®
Asset
Identification
Current
Security
Measures
Policies &
Procedures
Physical
Security
Security
Personnel
Threat
Assessment
Vulnerability
Assessment
Risk
Assessment
Cost
Benefit
Analysis
Report and
Recommendations
Crime
Analysis
Figure 9-1.
Strategic Risk Assessment Process, Copyright ©2007 by Threat Analysis Group,
LLC. Used by permission. Additional information available from Threat
Analysis Group, LLC via www.threatanalysis.com.
In the security field, three general types of countermeasures are taken to
prevent, mitigate, and eliminate risk: policies and procedures, physical security
measures, and security personnel. Despite their relative low cost to develop and
maintain, and their ability to demonstrate due diligence, policies and proce-
dures are often the most overlooked component of an effective security
program. Documentation of the security program is a critical element and
includes the identification of critical assets, threats, and vulnerabilities.
Get Strategic Security Management now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
