Which persons should be involved in the threat, risk, and vulnerability assessment?

Answer:facility owners have a responsibility to limit or manage risks from threats to the extent possible.

Facility owners, particularly owners of public facilities, should develop and implement a security risk management methodology which adheres to the Interagency Security Committee (ISC) standard while also supporting the security needs of the organization.