In EDS ansehen

Tactical security controls for unpredictable events: Aligning security tactics with business continuity for resilience in the face of the unknown.

Gespeichert in:

Bibliographische Detailangaben
Titel:	Tactical security controls for unpredictable events: Aligning security tactics with business continuity for resilience in the face of the unknown.
Autoren:	Loyear, Rachelle¹ (AUTHOR), Walker, MG William J.² (AUTHOR)
Quelle:	Journal of Business Continuity & Emergency Planning. Winter2025, Vol. 19 Issue 2, p102-118. 17p.
Schlagwörter:	BUSINESS continuity planning, SECURITY management, CRISIS management, SECURITY systems, *SYSTEM integration, DISASTER resilience, HAZARDS, CRISES
Abstract:	Unpredictable threats, ranging from civil unrest and cyber-physical disruptions to infrastructure failures, continue to challenge security and business continuity professionals. Traditional risk management approaches often fail in these fast-evolving scenarios, necessitating a shift toward tactical security controls that are adaptable, scalable and integrated within business continuity frameworks. This paper explores the security effects model, a strategic approach that categorises security controls based on the outcomes they achieve rather than the specific threats they address. By leveraging seven key security effects — deterrence, access control, detection, assessment, delay, response, and recording and communication — organisations can design security postures that remain effective even in highly dynamic environments. Among the abovementioned seven, the paper identifies four mission-critical security effects for unpredictable threats: detection, assessment, delay and response. By aligning security controls with these mission-critical effects, organisations can enhance early warning capabilities, streamline crisis assessment, buy critical response time and ensure cohesive multiteam coordination. Using a structured 'what if?' methodology, the paper demonstrates how organisations can proactively identify vulnerabilities and prepare security measures that are functional across multiple threat vectors. A case example using the Francis Scott Key Bridge collapse illustrates how applying this approach can improve security resilience against both accidental and intentional disruptions. The paper provides practical, actionable guidance for security and business continuity professionals, emphasising the need for an integrated security-continuity framework that aligns with industry best practices, including ISO 22301 and American Society for Industrial Security (ASIS) enterprise security risk management (ESRM). By shifting away from reactive security models to proactive, effects-based tactical controls, organisations can build resilience against the unknown while ensuring operational continuity in the face of emerging threats. This article is also included in The Business & Management Collection which can be accessed at https://hstalks.com/business/. [ABSTRACT FROM AUTHOR]
	Copyright of Journal of Business Continuity & Emergency Planning is the property of Henry Stewart Publications LLP and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.)
Datenbank:	Business Source Index

Nájsť tento článok vo Web of Science

Beschreibung
Abstract:	Unpredictable threats, ranging from civil unrest and cyber-physical disruptions to infrastructure failures, continue to challenge security and business continuity professionals. Traditional risk management approaches often fail in these fast-evolving scenarios, necessitating a shift toward tactical security controls that are adaptable, scalable and integrated within business continuity frameworks. This paper explores the security effects model, a strategic approach that categorises security controls based on the outcomes they achieve rather than the specific threats they address. By leveraging seven key security effects — deterrence, access control, detection, assessment, delay, response, and recording and communication — organisations can design security postures that remain effective even in highly dynamic environments. Among the abovementioned seven, the paper identifies four mission-critical security effects for unpredictable threats: detection, assessment, delay and response. By aligning security controls with these mission-critical effects, organisations can enhance early warning capabilities, streamline crisis assessment, buy critical response time and ensure cohesive multiteam coordination. Using a structured 'what if?' methodology, the paper demonstrates how organisations can proactively identify vulnerabilities and prepare security measures that are functional across multiple threat vectors. A case example using the Francis Scott Key Bridge collapse illustrates how applying this approach can improve security resilience against both accidental and intentional disruptions. The paper provides practical, actionable guidance for security and business continuity professionals, emphasising the need for an integrated security-continuity framework that aligns with industry best practices, including ISO 22301 and American Society for Industrial Security (ASIS) enterprise security risk management (ESRM). By shifting away from reactive security models to proactive, effects-based tactical controls, organisations can build resilience against the unknown while ensuring operational continuity in the face of emerging threats. This article is also included in The Business & Management Collection which can be accessed at https://hstalks.com/business/. [ABSTRACT FROM AUTHOR]
ISSN:	17499216