 Improving organisational resilience through enterprise security risk managementJohn Petruzzi and Rachelle Loyear Journal of Business Continuity & Emergency Planning, 2016, vol. 10, issue 1, 44-56 Abstract: Enterprise Security Risk Management (ESRM) is a new philosophy and method of managing security programmes through the use of traditional risk principles. As a philosophy and life cycle, ESRM is focused on creating a business partnership between security practitioners and business leaders to more effectively provide protection against security risks in line with acceptable risk tolerances as defined by business asset owners and stakeholders. This paper explores the basics of the ESRM philosophy and life cycle and also shows how embracing the ESRM philosophy and implementing a risk-based security management model in the business organisation can lead to higher levels of organisational resilience as desired by organisation leaders, executives and the board of directors. Keywords: ESRM; security risk management; organisational resilience; security management philosophy (search for similar items in EconPapers) Downloads: (external link) Related works: Export reference: BibTeX RIS (EndNote, ProCite, RefMan) HTML/Text Persistent link: https://EconPapers.repec.org/RePEc:aza:jbcep0:y:2016:v:10:i:1:p:44-56 Access Statistics for this article More articles in Journal of Business Continuity & Emergency Planning from Henry Stewart Publications |
Is your work missing from RePEc? Here is how to contribute.
Questions or problems? Check the EconPapers FAQ or send mail to .
EconPapers is hosted by the
School of Business at Örebro University.