这是一种寄生虫。1-2017强调对风险采取主动、前瞻性的方法，支持追求业务目标和机会，以及预防、保护、准备、准备、缓解、响应、连续性和从不良和破坏性事件中恢复的过程。通过在整个企业范围的业务管理活动中充分整合风险管理流程，组织将有权根据最佳可用信息做出明智的决策。该标准旨在通过使用一种管理系统方法来消除风险的“筒仓化”，该方法提供了一个整体框架来制定和实施政策、目标和计划，考虑到:组织及其供应链的环境、法律、监管、，以及内部和外部利益相关者在实现保护人力、有形和无形资产的目标时所需的合同义务和自愿承诺。 ORM。1取代了两个已接受审查的传统ASIS标准:ANSI/ASIS组织弹性:安全、准备和连续性管理系统（SPC.1）和ANSI/ASIS/BSI业务连续性管理标准（BCM.1）。

ASIS ORM.1-2017 emphasizes a proactive, forward-looking approach to risk that supports the pursuit of business objectives and opportunities, as well as a process for prevention, protection, preparedness, readiness, mitigation, response, continuity, and recovery from undesirable and disruptive events. By fully integrating risk management processes throughout enterprise-wide business management activities, organizations will be empowered to make informed decisions based on best available information.The Standard looks to eliminate "siloing" of risk by using a management systems approach that provides a holistic framework to develop and implement policies, objectives, and programs that consider:Context of the organization and its supply chainLegal, regulatory, and contractual obligations and voluntary commitmentsNeeds of internal and external stakeholdersUncertainties in achieving its objectivesProtection of human, tangible, and intangible assets.The ORM.1 replaces two legacy ASIS standards that had been up for review: the ANSI/ASIS Organizational Resilience: Security, Preparedness and Continuity Management Systems (SPC.1) and ANSI/ASIS/BSI Business Continuity Management Standard (BCM.1).