Task 1 -- Enterprise Assets Protection Flashcards
Defining Assets Protection
Defining Assets Protection
Security professionals have traditionally spoken of protecting three types of assets: people, property, and information.
The larger view of assets protection has also considered intangible assets, such as an organization’s reputation, relationships, and creditworthiness.
In light of enterprise security risk management (ESRM), this vantage point has shifted from implementing security processes and programs to guiding asset owners, who also own decisions for the risk to the assets they manage. Security partners can help identify risks, prioritize those risks, and establish mitigation steps and methods, while the asset owner is ultimately responsible for security decisions.
Assets protection incorporates all security risks as well as many related functions, such as investigations, risk management, safety, quality/product assurance, compliance, and emergency management. Therefore, the senior assets protection professional must have strong collaboration and coordination skills as well as a thorough understanding of the workings of the enterprise. In today’s asset protection program, countermeasures need to include people, process, and technology.