Rolling Meadows, IL, USA (15 June 2006)—The Alliance for Enterprise Security Risk Management (AESRM) is seeking nominations for the new AESRM Excellence in Security Convergence Award. The award was created to honor individuals who are leading the growing field of “security convergence,” which is the integration of traditional and information security functions.
“Recent incidents where laptop computers containing sensitive information on millions of people were stolen are perfect examples of the strong need for security convergence,” said Ray O’Hara, CPP, an AESRM leader. “Reducing the opportunity for criminals to steal equipment (physical security) and also their ability to access and use the information it holds (information security) helps mitigate the potentially devastating impact. Traditionally, physical and information security were separate disciplines. We now realize the need for individuals who have expertise in both.”
Individuals nominated for the new award should exhibit leadership in improving the convergence of physical and information security throughout their organizations. Their work should involve people, processes and technology to help reduce risk and increase return on investment. They also need to demonstrate how they have shared their convergence accomplishments with people outside of their organizations.
Nomination forms are available on the alliance’s newly established web site, www.aesrm.org. The deadline for nominations is 15 July 2006. The nominator and the person being nominated must be members in good standing of one of the three nonprofit organizations that formed AESRM—ASIS International, ISACA and the Information Systems Security Association (ISSA).
The award follows a recent report from AESRM that found convergence is a business issue that impacts not just the security function, but the business as a whole. Security integration helps organizations prevent, detect, respond to and recover from most any type of security incident. The study, Convergence of Enterprise Security Organizations, represents the views of chief security officers (CSOs), chief information security officers (CISOs) and other security professionals and is available as a free download at www.aesrm.org.
Background on AESRM
The Alliance for Enterprise Security Risk Management (AESRM) was formed in February 2005 by ASIS International, ISACA and the Information Systems Security Association (ISSA) to encourage board and senior executive attention to critical security-related issues and the need for a comprehensive approach to protect the enterprise. The alliance brings together more than 90,000 global security professionals with broad security backgrounds and skills to address the significant increase and complexity of security-related risks to international commerce from terrorism, cyber attacks, Internet viruses, theft, fraud, extortion and other threats.
ASIS International (ASIS) (www.asisonline.org) is the preeminent organization for security professionals, with more than 34,000 members worldwide. Founded in 1955, ASIS is dedicated to increasing the effectiveness and productivity of security professionals by developing educational programs and materials that address broad security interests, such as the ASIS Annual Seminar and Exhibits, as well as specific security topics. ASIS also advocates the role and value of the security management profession to business, the media, government entities, and the public. By providing members and the security community with access to a full range of programs and services, and by publishing the industry’s number one magazine — Security Management — ASIS leads the way for advanced and improved security performance.\
With more than 50,000 members who live and work in more than 140 countries, ISACA® (www.isaca.org) is a recognized worldwide leader in IT governance, control, security and assurance. Founded in 1969, ISACA sponsors international conferences, publishes the Information Systems Control Journal®, develops international information systems auditing and control standards, and administers the globally respected Certified Information Systems Auditor™ (CISA®) designation, earned by more than 48,000 professionals since inception, and the Certified Information Security Manager® (CISM®) designation, a groundbreaking credential earned by 6,000 professionals.
The Information Systems Security Association (ISSA)(www.issa.org), with more than 13,000 individual members and 107 chapters around the world, is the largest international, not-for-profit association for information security professionals. It provides educational forums, information resources and peer interaction opportunities to enhance the knowledge, skill and professional growth of its members. ISSA members are consistently recognized as experts on critical issues in the area of information security, and the Association is viewed as an important resource for small businesses, global enterprises and government organizations alike. Working closely with other industry organizations such as (ISC)2, ASIS and ISACA, and leading worldwide initiatives like the GAISP and the recommended CISO education curriculum, ISSA is focused on providing leadership and maintaining its role as The Global Voice of Information Security.