Strategic Security Management
A Risk Assessment Guide for Decision Makers

Karim H. Vellani, CPP, CSC


Contributing Authors:
Norman Bates, CPP
James H. Clark, CPP
Brian Gouin, PSP, CSC
Karl F. Langhorst, CPP
Charles A. Sennewald, CPP, CSC
Nick Vellani, CISSP, CISA, CSC
 

Previews:
Introduction
Chapter 1 Data Driven Security

Order from Amazon.com

Blog @ Threat Analysis Group, LLC

Book Description
Strategic Security Management supports data driven security that is measurable, quantifiable and practical. Written for security professionals and other professionals responsible for making security decisions as well as for security management and criminal justice students, this text provides a fresh perspective on the risk assessment process. It also provides food for thought on protecting an organizations assets, giving decision makers the foundation needed to climb the next step up the corporate ladder.

Strategic Security Management fills a definitive need for guidelines on security best practices. The book also explores the process of in-depth security analysis for decision making, and provides the reader with the framework needed to apply security concepts to specific scenarios. Advanced threat, vulnerability, and risk assessment techniques are presented as the basis for security strategies. These concepts are related back to establishing effective security programs, including program implementation, management, and evaluation. The book also covers metric-based security resource allocation of countermeasures, including security procedures, personnel, and electronic measures.

Strategic Security Management contains contributions by many renowned security experts, such as Nick Vellani, Karl Langhorst, Brian Gouin, James Clark, Norman Bates, and Charles Sennewald.

 

• Provides clear direction on how to meet new business demands on the security professional

• Guides the security professional in using hard data to drive a security strategy, and follows through with the means to measure success of the program

• Covers threat assessment, vulnerability assessment, and risk assessment and highlights the differences, advantages, and disadvantages of each
   

Review from SecurityManagement.com:

***** (5 out of 5 Stars)

Strategic Security Management: A Risk Assessment Guide for Decision Makers. By Karim H. Vellani, CPP, CSC; published by Butterworth-Heinemann; available from ASIS, item # 1728, 703/519-6200 (phone), www.asisonline.org (Web); 416 pages; $60 (ASIS members), $66 (nonmembers).

Strategic Security Management: A Risk Assessment Guide for Decision Makers.This book takes on the ambitious goal of bridging the gap between theory and reality in risk-assessment-based security management—and achieves it handily. The author emphasizes the fundamental responsibilities of today’s security managers: to assess risks, demonstrate them to justify costs, and accurately measure security’s effectiveness to manage it properly.

In each chapter, subject matter is covered logically and clearly with multiple examples. In the chapter on security measures, for example, policies and procedures are discussed thoroughly, and a sample security policy statement is provided as a guide.

Understanding and using security metrics—primarily through baseline and performance data—is critical to making good security decisions, the author notes. While much has been written about security metrics, this work clarifies and explains this concept in a way that aids in comprehension and application.

Updated technological information is provided in the physical security section, including a discussion of Internet protocol (IP) video monitoring systems. Also discussed are networking devices, recording issues, and use of intelligent software.

A section on security personnel provides an overview of training standards, performance evaluations, and contract versus proprietary forces. Additional sections cover information technology (IT), crime prevention, project management, premises security liability, forensic security, and ethics. The ASIS International General Security Risk Assessment Guideline is referenced heavily, and portions are reproduced in the book.

Short summaries at the end of each chapter capture the main points found in the section. The text concludes with a four-page bibliography, a “recommended reading” section, and an index. If readers cannot find something they want in the book, they can definitely find it among the additional resources provided by the author.

Two words describe this text: information-packed. The intended audience is a large one, including security professionals, security managers with decision-making responsibility, and criminal justice students. This book is a valuable asset for them all.

Reviewer: Jack F. Dowling, CPP, PSP, is president of JD Security Consultants, LLC, of Downingtown, Pennsylvania. He is a member of the ASIS International Council on Commercial Real Estate and its Physical Security Measures Guideline Committee. He teaches in the University of Phoenix’s Criminal Justice Administration Program.

Table of Contents

Dedication
Acknowledgements
About the Author
Contributing Authors
Introduction
Chapter 1: Data Driven Security
Chapter 2: Asset Identification and Security Inventory
Chapter 3: Threat Assessments
Chapter 4: Crime Analysis
Chapter 5: Vulnerability Assessment
Chapter 6: Risk Assessment
Chapter 7: Information Technology Risk Management
Chapter 8: Prevention
Chapter 9: Security Measures: Polices & Procedures
Chapter 10: Security Measures: Physical Security
Chapter 11: Security Measures: Deploying Physical Security Measures
Chapter 12: Security Measures: Personnel
Chapter 13: Project Management
Chapter 14: Premises Security Liability
Chapter 15: Forensic Security
Chapter 16: Ethics in Security
Appendix A: Certified Security Consultant’s (CSC) Code of Ethics
Appendix B: International Association of Professional Security Consultant’s Forensic Methodology
Appendix C: Sample Risk Assessment Report
Appendix D: Crime Analysis Reports
Bibliography
Recommended Reading
 

About The Author

Karim H. Vellani is the President of Threat Analysis Group, LLC, an independent security consulting firm. Karim is Board Certified as a Protection Professional (CPP) by the American Society for Industrial Security – International and Board Certified as a Security Consultant (CSC) by the International Association of Professional Security Consultants. He holds a Master’s Degree in Criminal Justice Management from Sam Houston State University in Huntsville, Texas.

As an independent security management consultant, Karim has extensive experience in risk and security management and provides security consulting services to government, commercial, and industrial clients. Recently, Karim developed unique risk assessment methodologies for specific industries and clients. That practical experience forms the basis for some of the knowledge in Strategic Security Management.

Karim also developed a crime analysis methodology that utilizes the Federal Bureau of Investigation’s (FBI) Uniform Crime Report coding system and a software application called CrimeAnalysis^TM. The methodology was first published in another book entitled Applied Crime Analysis and is available from the publisher, Elsevier Butterworth-Heinemann. Since developing the crime analysis methodology, Karim has assessed crime threats at thousands of facilities. As an Adjunct Professor at the University of Houston - Downtown, Karim taught graduate courses in Security Management and Risk Analysis for the College of Criminal Justice’s Security Management Program.
 

Order from Amazon.com

Comments or questions?  Contact us via email:  ssm@threatanalysis.com
 

©2003-2007 Threat Analysis Group, LLC All rights reserved.