Security convergence

From Wikipedia, the free encyclopedia

Security convergence is a term that refers to the convergence of two historically disparate security functions -- namely physical security and information security -- within enterprises.

Contents 1 Motivation 2 Endorsement 3 Articles 4 External links

[edit] Motivation

Security convergence is motivated by the recognition that corporate assets are increasingly information-based. Whereas in the past physical assets demanded the bulk of protection efforts, today information assets demand equal (if not far more) attention.

Physical and information security are both integral parts of any coherent risk management program.

[edit] Endorsement

Convergence is so endorsed by the three leading international organizations for security professionals -- ASIS, ISACA and ISSA -- that they co-founded the Alliance for Enterprise Security Risk Management, in part, to promote it.

[edit] Articles

• Anderson, K., "Convergence: A Holistic Approach to Risk Management", Network Security, Elsevier, Ltd., Volume 2007, Issue 5, May 2007.
• Anderson, K., "IT Security Professionals Must Evolve for Changing Market", SC Magazine, October 12, 2006.

[edit] External links

• Alliance for Enterprise Security Risk Management