Tactical security controls for unpredictable events: Aligning security tactics with business continuity for resilience in the face of the unknown

Unpredictable threats, ranging from civil unrest and cyber-physical disruptions to infrastructure failures, continue to challenge security and business continuity professionals. Traditional risk management approaches often fail in these fast-evolving scenarios, necessitating a shift toward tactical...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:Journal of business continuity & emergency planning Ročník 19; číslo 2; s. 102
Hlavní autoři: Loyear, Rachelle, Walker, M G William J
Médium: Journal Article
Jazyk:angličtina
Vydáno: England 01.01.2026
Témata:
Commerce - organization & administration
Disaster Planning - organization & administration
Humans
Risk Management - organization & administration
Security Measures - organization & administration
ISSN:1749-9216
On-line přístup:Zjistit podrobnosti o přístupu
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:Unpredictable threats, ranging from civil unrest and cyber-physical disruptions to infrastructure failures, continue to challenge security and business continuity professionals. Traditional risk management approaches often fail in these fast-evolving scenarios, necessitating a shift toward tactical security controls that are adaptable, scalable and integrated within business continuity frameworks. This paper explores the security effects model, a strategic approach that categorises security controls based on the outcomes they achieve rather than the specific threats they address. By leveraging seven key security effects - deterrence, access control, detection, assessment, delay, response, and recording and communication - organisations can design security postures that remain effective even in highly dynamic environments. Among the abovementioned seven, the paper identifies four mission-critical security effects for unpredictable threats: detection, assessment, delay and response. By aligning security controls with these mission-critical effects, organisations can enhance early warning capabilities, streamline crisis assessment, buy critical response time and ensure cohesive multiteam coordination. Using a structured 'what if?' methodology, the paper demonstrates how organisations can proactively identify vulnerabilities and prepare security measures that are functional across multiple threat vectors. A case example using the Francis Scott Key Bridge collapse illustrates how applying this approach can improve security resilience against both accidental and intentional disruptions. The paper provides practical, actionable guidance for security and business continuity professionals, emphasising the need for an integrated security-continuity framework that aligns with industry best practices, including ISO 22301 and American Society for Industrial Security (ASIS) enterprise security risk management (ESRM). By shifting away from reactive security models to proactive, effects-based tactical controls, organisations can build resilience against the unknown while ensuring operational continuity in the face of emerging threats. This article is also included in The Business & Management Collection which can be accessed at https://hstalks.com/business/.
Bibliografie:ObjectType-Article-1
SourceType-Scholarly Journals-1
ObjectType-Feature-2
content type line 23
ISSN:1749-9216
DOI:10.69554/RDBQ6306