top of page


What is the
SRM body of knowledge?

Protecting Our Societies Through Excellence in Security Risk Management

The 2008 edition of the Security Risk Management Body of Knowledge (SRMBOK) was the first comprehensive attempt to define the scope and content of the security risk management profession. It standardizes knowledge and practices, guides professional development, ensures quality and compliance, adapts to emerging threats, and supports decision-making in this complex, evolving field. SRMBOK integrates cross-disciplinary insights, which are crucial for navigating the diverse challenges in security risk management. This website builds on that tradition with additional resources and information.


The Full Story

In 2008, we published the original SRMBOK where we did our best to outline and integrate all there was to know about security risk management.


The first edition was a paperback book of roughly 450 pages, where, with the help of over 100 security and risk professionals, we outlined best practice and did our best to integrate and align the various SRM models and concepts..


We updated that in 2009 into a hard cover second edition published by John Wiley and Sons of New York which was almost 500 pages. The world is changing almost daily it seems so Julian, Miles, and Jason, with the help of dozens of generous contributors are now working on the third edition.

On this website, you will find some of our updated initial thoughts, training offerings, additional resources, and guides to implementing security risk management. 

For the moment, you can also find an update to the original SRMBOK in the Security Risk Management Aide-Mémoire (SRMAM).

What People Say About SRMBOK