Each asset is assigned an owner responsible for managing and safeguarding it, ensuring accountability and clear communication. Asset owners are tasked with identifying, classifying, and valuing assets, as well as implementing appropriate security measures to protect them. By maintaining accurate inventory records and assigning ownership, the organization ensures proper utilization, monitoring, and protection of assets, from acquisition through to disposal or decommissioning. This process also supports the effective management of asset-related risks.

Asset security controls must be implemented based on risk level to prevent unauthorized access, theft, loss, damage, or destruction of both physical and digital assets. Assets should be identified, classified, and categorized based on their value or sensitivity to ensure appropriate protection. Security controls and countermeasures must be developed, implemented, and monitored continuously for effectiveness. Regular reviews and updates should be conducted to address evolving threats, vulnerabilities, and organizational needs. This approach ensures asset protection remains aligned with modern security practices and includes measures for assets stored or accessed outside primary facilities.