Art and Science of Security Risk Assessment
Ira S. Somerson, CPP™
ASIS International
If you are responsible for protecting your company's assets, then you know that risk assessment means more than simply identifying security vulnerabilities; it also means measuring their likelihood, prioritizing them, assessing their risk of occurrence, and measuring their impact on your organization’s assets. Failure to consider all of these elements could constitute a violation of standard security industry practices. This valuable resource will help you develop the necessary strategies for conducting comprehensive risk assessments.