BQT Solutions Access Control Softwares

Insider threat programmes started with counter-espionage cases in the government. Today, insider threat programmes have become a more common practice in all industries, as companies understand the risks associated with not having one. To build a programme, you must first understand what an insider threat is. An insider threat is an employee, contractor, visitor or other insider who have been granted physical or logical access to a company that can cause extensive damage. Damage ranges from emotional or physical injury, to personnel, financial and reputational loss to data loss/manipulation or destruction of assets. Financial and confidential information While malicious insiders only make up 22% of the threats, they have the most impact on an organisation Most threats are derived from the accidental insider. For example, it’s the person who is working on a competitive sales pitch on an airplane and is plugging in financial and confidential information. They are working hard, yet their company’s information is exposed to everyone around them. Another type of insider, the compromised insider, is the person who accidentally downloaded malware when clicking on a fake, urgent email, exposing their information. Malicious insiders cause the greatest concerns. These are the rogue employees who may feel threatened. They may turn violent or take action to damage the company. Or you have the criminal actor employees who are truly malicious and have been hired or bribed by another company to gather intel. Their goal is to gather data and assets to cause damage for a specific purpose. While malicious insiders only make up 22% of the threats, they have the most impact on an organisation. They can cause brand and financial damage, along with physical and mental damage. Insider threat programme Once you determine you need an insider threat programme, you need to build a business case and support it with requirements. Depending on your industry, you can start with regulatory requirements such as HIPAA, NERC CIP, PCI, etc. Talk to your regulator and get their input. Everyone needs to be onboard, understand the intricacies of enacting a programme Next, get a top to bottom risk assessment to learn your organisation’s risks. A risk assessment will help you prioritise your risks and provide recommendations about what you need to include in your programme. Begin by meeting with senior leadership, including your CEO to discuss expectations. Creating an insider threat programme will change the company culture, and the CEO must understand the gravity of his/her decision before moving forward. Everyone needs to be onboard, understand the intricacies of enacting a programme and support it before its implemented. Determining the level of monitoring The size and complexity of your company will determine the type of programme needed. One size does not fit all. It will determine what technologies are required and how much personnel is needed to execute the programme. The company must determine what level of monitoring is needed to meet their goals. After the leadership team decides, form a steering committee that includes someone from legal, HR and IT. Other departments can join as necessary. This team sets up the structure, lays out the plan, determines the budget and what type of technologies are needed. For small companies, the best value is education. Educate your employees about the programme, build the culture and promote awareness. Teach employees about the behaviours you are looking for and how to report them. Behavioural analysis software Every company is different and you need to determine what will gain employee support The steering committee will need to decide what is out of scope. Every company is different and you need to determine what will gain employee support. The tools put in place cannot monitor employee productivity (web surfing). That is out of scope and will disrupt the company culture. What technology does your organisation need to detect insider threats? Organisations need software solutions that monitor, aggregate and analyse data to identify potential threats. Behavioural analysis software looks at patterns of behaviour and identifies anomalies. Use business intelligence/data analytics solutions to solve this challenge. This solution learns the normal behaviour of people and notifies security staff when behaviour changes. This is done by setting a set risk score. Once the score crosses a determined threshold, an alert is triggered. Case and incident management tools Predictive analytics technology reviews behaviours and identifies sensitive areas of companies (pharmacies, server rooms) or files (HR, finance, development). If it sees anomalous behaviour, it can predict behaviours. It can determine if someone is going to take data. It helps companies take steps to get ahead of bad behaviour. If an employee sends hostile emails, they are picked up and an alert is triggered User sentiment detection software can work in real time. If an employee sends hostile emails, they are picked up and an alert is triggered. The SOC and HR are notified and security dispatched. Depending on how a company has this process set-up, it could potentially save lives. Now that your organisation has all this data, how do you pull it together? Case and incident management tools can pool data points and create threat dashboards. Cyber detection system with access control An integrated security system is recommended to be successful. It will eliminate bubbles and share data to see real-time patterns. If HR, security and compliance departments are doing investigations, they can consolidate systems into the same tool to have better data aggregation. Companies can link their IT/cyber detection system with access control. Deploying a true, integrated, open system provides a better insider threat programme. Big companies should invest in trained counterintelligence investigators to operate the programme. They can help identify the sensitive areas, identify who the people are that have the most access to them, or are in a position to do the greatest amount of harm to the company and who to put mitigation plans around to protect them. They also run the investigations. Potential risky behaviour Using the right technology along with thorough processes will result in a successful programme You need to detect which individuals are interacting with information systems that pose the greatest potential risk. You need to rapidly and thoroughly understand the user’s potential risky behaviour and the context around it. Context is important. You need to decide what to investigate and make it clear to employees. Otherwise you will create a negative culture at your company. Develop a security-aware culture. Involve the crowd. Get an app so if someone sees something they can say something. IT should not run the insider threat programme. IT is the most privileged department in an organisation. If something goes wrong with an IT person, they have the most ability to do harm and cover their tracks. They need to be an important partner, but don’t let them have ownership and don’t let their administrators have access. Educating your employees and creating a positive culture around an insider threat programme takes time and patience. Using the right technology along with thorough processes will result in a successful programme. It’s okay to start small and build.

Growing up, I was surrounded by the military way of life as my father was a Captain in the Marine Corps during the Vietnam War and my grandfather and uncles all served in the military. Even from a young age, I knew I was going to serve our country. My 22-year career in the military includes serving in the United States Air Force, the California Air National Guard and as a reservist assigned to an active-duty Air Force unit. Training and development operations Over the course of my military career, I held a variety of assignments from starting out as a Gate Guard to becoming a Flight Chief and Non-Commissioned Officer in Charge (NCOIC) of a Security Forces section. I retired from the military as a Master Sergeant. After my deployment to Afghanistan, I joined Allied Universal as a security director. My 17-year career at Allied Universal encompasses roles including Service Manager and General Manager at the West Los Angeles Branch and leading the Training and Development operations and Fire Life Safety Division. In 2008, I was tasked to develop and implement the company’s Healthcare Division. Attaining meaningful employment opportunities Below are just a few reasons why the physical security sector is a natural fit for military veterans: Self-Discipline and Organisation Coveted in Security Sector - I believe that the skills learned in the military, such as self-discipline and organisation, have provided the necessary tools to be successful. I truly enjoy working with other veterans at my company as we all know that we can count on each other to get the job done right. This bond and sense of commitment to each other is always there. Multi-faceted Career Paths Available - The security sector also offers veterans the ability to attain meaningful employment opportunities with multi-faceted career paths. A veteran’s background and experience are highly valued in this sector and there are many positions to match our skill sets and expertise. The responsibility we have for those in our charge is really not any different than what we have learned in the military. Team Players - Teamwork is a lesson all military veterans learn. In the military, you live and work together, and are taught to support your team members and efficiently collaborate with the people around you. This is an invaluable skill in the security sector whether you are seeking an entry level or management position. No Military to Civilian Decoder Needed - Veterans need a ‘military to civilian decoder’ system to help explain the significance of their military skills and how they translate to the general employment landscape. The physical security sector, however, understands the language of the military and don’t generally require that military responsibilities be coded into language that non-military can understand. Securing mid-level appointments The physical security sector features a wide variety of jobs from entry level, middle management to senior positions. A retired veteran with a pension may look to the security sector for part-time or full-time entry level work. Other former military, who are not eligible for retirement benefits, may secure mid-level appointments with the goal of climbing the ladder to the highest rungs. The flexibility and opportunity are unparalleled in the security sector. Veterans generally enter the workforce with identifiable skills that can be transferred to the physical security world and are often skilled in technical trends pertinent to business and industry. And what they don't know, they are eager to learn - making them receptive and ready hires in physical security environments that value ongoing learning and training.

The jury is in: traditional security is out — and it’s being replaced with service-based solutions. The bottom line is: if you’re not embracing it, you’ll soon be left behind. XaaS — the collective term referring to the delivery of anything as a service — includes all services made possible through the use of the cloud. Security-as-a-Service (SaaS), which encompasses any type of system from access control to video surveillance, has paved the way for users to gain significant functionality and scalability not previously experienced with more traditional methods. Complicated IT functions SaaS allows manufacturers to provide numerous benefits to their customers As such, there is a marked transition for manufacturers from simply designing and building products to providing a service rooted in a partner- and customer-centric focus. This change hasn’t come easily. Some are still holding out and waiting for the “fad” to pass. However, the potential advantages for all parties involved far outweigh the perceived negative points. First and foremost, SaaS allows manufacturers to provide numerous benefits to their customers. An “as-a-service” model shifts the burden of data maintenance and infrastructure spending to an integrator/dealer partner or service provider. This relieves the end user of the expertise necessary to implement complicated IT functions to keep networked and on-premise solutions up-to-date. Traditional security systems Additionally, end users demand solid customer service. For some end users, traditional security systems are so similar in features and functionality that the key differentiator is the ability of the integrator or manufacturer to provide exceptional customer service and training. This is made possible through the service-based model, where customers appreciate a strong relationship with their integrator or manufacturer that provides them with additional knowledge and assistance when necessary. The cloud has proven to be  highly functional, flexible, and convenient for organisations Everyone also wants convenience. In the consumer market, we invest in things like meals that are pre-measured, prepped, and ready to be cooked, or companies that auto-ship dog food to our door each month. This ease-of-use translates over to the B2B market, where time is money and systems that save valuable resources are highly regarded. The role of the cloud The cloud has proven to be a highly functional, flexible, and convenient method for organisations to leverage as part of their strategies to protect and modernise their facilities. And the service-based nature lends itself well; forward-thinking integrators and dealers can diversify their product arsenal while still capitalising on a recurring monthly revenue model (RMR). But then why has there been so much resistance to this change? Over the last 10 to 15 years, the cloud has gotten a bad rap for a myriad of reasons, including usability, management, and unreliability. However, that view of the cloud is changing for the positive as the technology becomes more advanced and innovators learn more about what it means to design a product or service with security at its core. "As-a-service” platform For example, one of the biggest misconceptions that plagues the cloud is the idea that it is not secure. However, the security of public cloud service providers is integral to their success because their business depends on it. Developing an ongoing and trustworthy relationship with customers can only be made possible through the assurance that their services are safe and the customer’s data is protected. As such, they’ve embraced the service-based model that is, at its core, the future of the business world as we know it. There isn’t a person, manufacturer, or integrator partner out there today who isn’t somehow touched or influenced by an “as-a-service” platform. And it’s about time the service-based model that leverages the public cloud reaches the masses.

Ava Group (AVA), a provider of security risk management services and technology will be showcasing its portfolio of security solutions at ISC West - Las Vegas, booth 25103. ISC West is the largest converged security industry trade show in the US with the exhibition taking place from April 10-12th. The event provides a major platform for professional networking, sourcing new suppliers and introducing new products and technologies, encompassing everything from access control to unmanned vehicles. ISC West also includes the SIA Education@ISC conference programme, running from April 9-11th. Risk management services Ava Group’s technology division incorporates two well established security risk management companies - Future Fibre Technologies (FFT) and BQT Solutions, both of which will be on the booth this April. As a provider of risk management services and technologies, Ava Group offers a portfolio of complementary solutions encompassing both fiber optic intrusion detection as well as high security access control and locking. Ava Group is proud to present the latest solutions from its technology division, namely the Orca lock and latest enhancements to the Aura Ai-2 controller Ava Group is proud to present the latest solutions from its technology division, namely the Orca lock and latest enhancements to the Aura Ai-2 controller. The enhanced Aura Ai-2 from Future Fibre Technologies features unrivalled high-sensitivity detection, location accuracy, cut resilience capability and the industry’s longest linear range. Outdoor locking solution This product features new ultra-low noise optical detection electronics. This ensures a single controller can cover a distance up to 110 kilometers, accurately detecting, locating and reporting multiple disturbances to just +/- two meters. BQT Solutions will be demonstrating the new high-strength Orca lock (YG80) – providing ultimate security for all environments. Building on the success of the award winning YG10, the Orca lock is designed for securing gates, roller doors, shipping containers and any other large door or entryway. Alongside the Orca’s impressive physical attributes, a unique feature is its ability to fully integrate into an access control system, surpassing any other solutions available in the market. Orca is fully monitored, weatherproof, and user configurable - providing the perfect indoor and outdoor locking solution. Real-world projects The Ava Group team will be on hand to explain how its solutions are being used in real-world projects to address the latest threats As well as getting to know the product range, the Ava Group team will be on hand to explain how its solutions are being used in real-world projects to address the latest threats. Newly appointed Chief Operating Officer, Scott Basham commented, “We’ve seen continued growth in demand for our products in the US market and returning to ISC West provides us with a perfect platform to showcase our broad range of capabilities and explain to visitors how our product range can be applied to meet their particular needs. We always welcome the opportunity to be face-to-face with our customers worldwide and thoroughly enjoy being able to engage directly with the market in this way.” Fiber sensing technology Alongside their presence in the exhibition hall, Ava Group’s CTO – Technology, Dr Jim Katsifolis will be presenting ‘Fiber Optic Perimeter Intrusion Detection Systems (PIDS): Trends, Myths and Realities Revealed’ 10:15 am on April 9th, Sands 302. This presentation promises to cover how best to select appropriate fiber sensing technology products when specifying, as well as how to assess the true performance of such PIDS systems. With over 1,000 exhibitors and brands and an anticipated 30,000 security professionals, ISC West is a must-visit for anyone in the security risk industry.

Ava Group (AVA), a provider of security risk management services and technology will be showcasing its portfolio of security solutions at Intersec Dubai 2019, stand S3-C48. Intersec Dubai features a rich selection of exhibitors in Security, Safety & Fire Protection, attracting visitors from the Middle East, Africa, the Indian subcontinent and well beyond. Ava Group will be presenting the latest exciting solutions from its technology division - which incorporates Future Fibre Technologies (FFT) and BQT Solutions. As a provider of risk management services and technologies, Ava Group offers a portfolio of complementary solutions encompassing both fibre optic intrusion detection and high security access control and locking. Increased investment As a key event for the region and beyond, Intersec Dubai is the perfect way for security providers and buyers to start 2019" Mark Horton, Global Sales & Marketing Director commented, “As a key event for the region and beyond, Intersec Dubai is the perfect way for security providers and buyers to start 2019. Our solutions offer the very latest in security technology and the highest levels of protection, key benefits that we know are always well-received by visitors at the event.” Mark continued, “Over the last couple of years we have seen a significant growth in demand for our products in the Middle East, with increased investment in infrastructure across the region as a whole. Because of continued growth in the market, we have also invested in the expansion of our Dubai-based office and regional support team to ensure we are perfectly placed to supply and service our customers.” Reporting multiple disturbances Future Fibre Technologies will be showcasing its enhanced Aura Ai-2 controller. Featuring unrivalled high-sensitivity detection, location accuracy, cut resilience capability and the industry’s longest linear range - this product features new ultra-low noise optical detection electronics. This ensures a single controller can cover a distance up to 110 kilometres, accurately detecting, locating and reporting multiple disturbances to just +/- two metres. Also on stand S3-C48, BQT Solutions will be demonstrating the new high-strength Orca lock to the middle east market Also on stand S3-C48, BQT Solutions will be demonstrating the new high-strength Orca lock to the middle east market. Building on the success of the award winning YG10, the Orca lock is designed for securing gates, roller doors, shipping containers and any other large door or entryway. Alongside the Orca’s impressive physical attributes, a unique feature is its ability to fully integrate into an access control system, surpassing any other solutions available in the market. Security risk management Orca is fully monitored, weatherproof, and user configurable - providing the perfect indoor and outdoor locking solution. As well as the products themselves, the Ava Group team will be on hand to explain how its solutions are being used in real-world projects to address the latest threats. Mark concluded, “We are looking forward to discussing recent key examples of our technology in action, including a major military closed data network where our data network infrastructure protection solution is protecting against tapping and tampering. These projects illustrate the depth of our expertise in security risk management and highlight the level of protection which we achieve to client’s assets and infrastructure. If you are visiting the event come and have a chat with our friendly and expert team on Stand S3-C48 about your specific security needs.”

BQT Solutions, a provider of high security card and biometric readers and locks, has launched its new Orca weatherproof lock which provides industry-leading strength, unparalleled environmental durability and seamless access control integration for securing gates, roller doors, shipping containers, and any other large door or entryway. Matthew Nye-Hingston, CTO of BQT Solutions Locking division commented, “Orca is the ultimate weatherproof lock, providing the complete combination of strength, security and convenience in one solution. It encompasses the features found in premium electronic locks, with the physical strength and function required to secure doors of any shape, whatever size.” Integration into access control system Key features such as an IP67 rated design and built-in heater enable the Orca to withstand extreme weather environments including hot and cold climatesOrca lock is the latest generation of roller lock from BQT Solutions, building on an impressive portfolio that includes the YG10 – winner of the SIA New Product Showcase Award in the Lock Systems and Secure Storage Containers category presented at ISC West 2018. Along with its highly impressive physical attributes, Orca’s ability to integrate into an access control system is what elevates its abilities well beyond anything else on the market. Orca is fully monitored and user-configurable, whilst being impervious to weather or environmental challenges making it perfect for deployment indoors or outdoors. Orca’s standout features include: High Security Performance - With a holding force in excess of 50,000N, 18mm diameter stainless steel bolt pin and reinforced strike design, the Orca lock ensures the most sensitive sites remain protected from even the most vigorous methods of attack. Fully Weatherproof - Key features such as an IP67 rated design and built-in heater enable the Orca to withstand extreme weather environments including hot and cold climates, marine and desert conditions. Highly Configurable - Orca can be adapted to suit a wide range of application requirements, with user selectable fail safe/fail secure modes and three user selectable control methods. Complete Monitoring - Orca can truly become a part of the access control system, with a range of output signals including: bolt locked and unlocked position, door position, and tamper detection. Versatile Installation - A symmetrical design means Orca can be installed both horizontally and vertically, giving greater flexibility to installers looking for optimum positioning. Low Cost Running - With the heater disabled, Orca offers low current consumption, drawing as little as 30mA in standby and only 300mA in operation at 12VDC. Long-term Reliability - A high quality low voltage motor is the key to the Orca’s reliability while stainless steel and wear resistant plastic components ensure complete peace of mind for any security operator. Optimal heavy-duty monitored lock BQT Solutions is a specialist in the development, manufacture and supply of high quality, high security card and biometric readersMatthew added, “Orca is the perfect heavy-duty monitored lock for any integrated security solution. Our highly-skilled team in New Zealand has worked hard to ensure we bring a product to the market that we truly believe is the best of its kind. With several exhibitions lined up in the new year, we are looking forward to showing more customers how Orca can secure their installations.” An Ava Group company, BQT Solutions is a specialist in the development, manufacture and supply of high quality, high security card and biometric readers, electromechanical locks and related electronic security products. The company provides a wide range of both off-the-shelf solutions and purpose tailored solutions. Working with major system integrators, security consultants and end users, BQT Solutions develops tailored access control solutions to fulfil a range of access control requirements. From standalone units to fully integrated enterprise solutions, BQT access control systems are designed to provide maximum security, maximum value – and a migration path to meet present and future needs.