ANSI/ASIS PSC.1-2012

Last updated

ANSI/ASIS PSC.1-2012 is a management standard for quality of private security company operations. [1]

The standard seeks to operationalise the International Code of Conduct (ICoC) within a formal structure familiar to businesses. That structure, with national and international supervision, provides auditable procedures for the development of the standard, certification to it, and monitoring of ongoing compliance. [2] It incorporates elements of the Montreux Document.

Dr. Ian Ralby, a recognized expert on the regulation, governance, and oversight of private security companies, described the development of these standards in a 2015 paper for the Fletcher Security Review: "The ANSI/ASIS PSC.1 Standard, developed by a Technical Committee of over two hundred people from twenty-six countries, is by far the most detailed instrument relevant to the regulation, governance and oversight of the private security industry. It is the flagship Standard of the ANSI/ASIS PSC Standards Series which seek to operationalize the ICoC within a formal structure familiar to businesses. That structure, with both national and international supervision, provides auditable procedures for the development, certification, and monitoring of ongoing compliance. PSC.1 pushes the envelope with regard to business standards as the first to incorporate human rights requirements. The ICoC’s purpose was primarily to commit signatories to human rights principles regardless of whether they were so obligated by law. The PSC Standard Series takes that voluntary commitment a step further and requires companies, in order to be certified, to have adequately incorporated compliance with international human rights principles into their operating policies and procedures. The PSC.1 Standard is currently in the process of being converted into a full international Standard, ISO 18788." [3]

ANSI/ASIS PSC.1-2012 is one of four documents published in the ANSI/ASIS series that apply to Private Security Companies.

Related Research Articles

Audit Systematic and independent examination of books, accounts, documents and vouchers of an organization

An audit is a systematic and independent examination of books, accounts, statutory records, documents and vouchers of an organization to ascertain how far the financial statements as well as non-financial disclosures present a true and fair view of the concern. It also attempts to ensure that the books of accounts are properly maintained by the concern as required by law. Auditing has become such a ubiquitous phenomenon in the corporate and the public sector that academics have started identifying an "Audit Society". Auditors perceive and recognize the propositions before them for examination, obtain evidence, evaluate the same and formulate an opinion on the basis of their judgement which is communicated through their auditing report.

Corporate governance is the collection of mechanisms, processes and relations by which corporations are controlled and operated. Governance structures and principles identify the distribution of rights and responsibilities among different participants in the corporation and include the rules and procedures for making decisions in corporate affairs. Corporate governance is necessary because of the possibility of conflicts of interests between stakeholders, primarily between shareholders and upper management or among shareholders.

A private military company (PMC) is a private company providing armed combat or security services for financial gain. PMCs refer to their staff as "security contractors" or "private military contractors". Private military companies refer to their business generally as the "private military industry" or "The Circuit".

Due diligence Standard of care before entering into a contract with another party

Due diligence is the investigation or exercise of care that a reasonable business or person is expected to take before entering into an agreement or contract with another party, or an act with a certain standard of care.

Information and technology (IT) governance is a subset discipline of corporate governance, focused on information and technology (IT) and its performance and risk management. The interest in IT governance is due to the ongoing need within organizations to focus value creation efforts on an organization's strategic objectives and to better manage the performance of those responsible for creating this value in the best interest of all stakeholders. It has evolved from The Principles of Scientific Management, Total Quality Management and ISO 9001 Quality management system.

Forest Stewardship Council organisation promoting and certifying responsible management of forest

The Forest Stewardship Council (FSC) is an international non-profit, multistakeholder organization established in 1993 that claims to promote responsible management of the world's forests.

An audit committee is a committee of an organisation's board of directors which is responsible for oversight of the financial reporting process, selection of the independent auditor, and receipt of audit results both internal and external.

An information technology audit, or information systems audit, is an examination of the management controls within an Information technology (IT) infrastructure. The evaluation of obtained evidence determines if the information systems are safeguarding assets, maintaining data integrity, and operating effectively to achieve the organization's goals or objectives. These reviews may be performed in conjunction with a financial statement audit, internal audit, or other form of attestation engagement.

Cybersecurity standards are techniques generally set forth in published materials that attempt to protect the cyber environment of a user or organization. This environment includes users themselves, networks, devices, all software, processes, information in storage or transit, applications, services, and systems that can be connected directly or indirectly to networks.

A chief security officer (CSO) is an organization's most senior executive accountable for the development and oversight of policies and programs intended for the mitigation and/or reduction of compliance, operational, strategic, financial and reputational security risk strategies relating to the protection of people, intellectual assets and tangible property.

Internal control, as defined by accounting and auditing, is a process for assuring of an organization's objectives in operational effectiveness and efficiency, reliable financial reporting, and compliance with laws, regulations and policies. A broad concept, internal control involves everything that controls risks to an organization.

ISO/IEC 27006 is an information security standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Part of the ISO/IEC 27000 series of ISO/IEC Information Security Management System (ISMS) standards, it is titled Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management systems.

The Montreux Document is an agreement between signature countries obligations regarding private military and security companies in war zones. It was ratified in Montreux, Switzerland, in September 2008. The document lists some 70 recommendations for good state practices such as verifying companies track record, examining procedures used to vet staff, correct prosecution when breaches of law occur, and ensure compliance and personnel training with international humanitarian and human rights law.

Information governance, or IG, is the overall strategy for information at an organization. Information governance balances the risk that information presents with the value that information provides. Information governance helps with legal compliance, operational transparency, and reducing expenditures associated with legal discovery. An organization can establish a consistent and logical framework for employees to handle data through their information governance policies and procedures. These policies guide proper behavior regarding how organizations and their employees handle electronically stored information (ESI).

A dispute mechanism is a structured process that addresses disputes or grievances that arise between two or more parties engaged in business, legal, or societal relationships. Dispute mechanisms are used in dispute resolution, and may incorporate conciliation, conflict resolution, mediation, and negotiation.

The International Code of Conduct for Private Security Service Providers (ICoC) is a set of principles for private security providers, created through a multi-stakeholder initiative convened by the Swiss government. This process involved and continuously involves representatives from private security companies, states, and civil society organizations. The code reinforces and articulates the obligations of private security providers particularly with regard to international humanitarian law and human rights law. The ICoC also sets the foundation for developing an institutional framework to provide meaningful and independent oversight of and accountability to the ICoC. Accordingly, the stakeholders involved agreed on ‘Articles of Association’ setting up an effective oversight mechanism.

The Telecommunications Industry Association (TIA) ANSI/TIA-942-A Telecommunications Infrastructure Standard for Data Centers is an American National Standard (ANS) that specifies the minimum requirements for structured cabling work defined in TIA/EIA-568, and is often cited by companies such as ADC Telecommunications and Cisco Systems. The standard was updated with an addendum ANSI/TIA-942-A-1 in April 2013 from the TR-42.1 Commercial Building Telecommunications Cabling Subcommittee, the formulating group that oversees development of the standard. The Telecommunications Industry Association does not offer certification programs or certify compliance to TIA standards. In many cases, there are other organizations and consultants that can provide those services. However, TIA does not certify these organizations or consultants. This is similar to how organizations like ISO operate where they rely on Certification Bodies to ensure that there is oversight over organizations performing such activities.

ISO/IEC 27001 is an information security standard, part of the ISO/IEC 27000 family of standards, of which the last version was published in 2013, with a few minor updates since then. It is published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) under the joint ISO and IEC subcommittee, ISO/IEC JTC 1/SC 27.

ISO/PAS 28007:2012 was developed as an initiative by the maritime industry and based on a request by the International Maritime Organization to provide guidelines for ISO 28000-certified companies deploying Privately Contracted Armed Security Personnel (PCASP) on board ships.

ANSI/ASIS PSC.4-2013 is guidance for Quality Assurance and Security Management for Private Security Companies Operating at Sea.

References

  1. "PSC Series of Standards". asisonline.org. Retrieved 2014-05-11.
  2. "A Brief Explanation of the Private Security Regulatory Initiatives The Standards | Dextra Fortis". dextrafortis.com. Retrieved 2014-05-11.
  3. Chiang, Keifer. "Fletcher Security Review - Going Dark". FSR Main Site. Retrieved 2019-09-27.


This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.