Aronson Security Group (ASG) - Experts & Thought Leaders

ZBeta, a pioneer in delivering comprehensive physical security consulting services, has appointed Mike Lavway as its new Principal Consultant. With more than 15 years of expertise in enterprise security risk management, physical security technologies, and emerging solutions, Lavway will be key in advancing ZBeta’s client strategies and innovation efforts. ZBeta’s industry knowledge base Lavway will drive the strategy and execution of consulting services and guide the development As Principal Consultant, Lavway will drive the strategy and execution of consulting services and guide the development of client technology solutions and operational models. He will be instrumental in advancing ZBeta’s industry knowledge base and driving innovation across its consulting offerings. With a strong track record of building trusted client relationships, Lavaway will support program growth, shape new products, and oversee the quality delivery of complex engagements. Mike’s leadership “Mike’s expertise and strategic mindset make him a strong addition to our leadership team,” said Zack Brunette, CEO, ZBeta. “His ability to translate complex security challenges into results-driven solutions aligns with our mission to deliver data-informed consulting." "Mike’s leadership will be pivotal as we scale our services, expand our impact, and continue to elevate the security function within client organisations.” Previous leadership roles of Lavway  Lavway brings a venture in program growth, threat review, and integrated technologies Lavway brings deep experience in program development, threat assessment, and integrated technologies to ZBeta. In previous leadership roles at Aronson Security Group, ADT Commercial, and Everon, he led cutting-edge initiatives, including developing technology-led security operations centres and autonomous patrol technologies. ZBeta’s commitment “This role allows me to leverage my existing knowledge base to help shape impactful solutions for some of the most complex challenges in security today,” said Lavway. “ZBeta’s commitment to innovation, strategic thinking, and client success is what drew me in. I’m excited to contribute to a team prioritising purposeful planning, bold ideas, and consistent execution — raising the bar for what security consulting can deliver.”

AMAG Technology, a global access control, video management, identity management and visitor management solutions provider, hosted its annual Eagle Awards celebration on Thursday, April 12 in Las Vegas where it honored its top performing resellers for 2017. The resellers were recognised for their outstanding sales efforts and commitment to selling AMAG’s Symmetry security solutions. “We are grateful for our loyal partners and their commitment to selling and supporting AMAG and our expanding Symmetry platform,” said AMAG Technology President, Kurt Takahashi. “I am thrilled and honoured to award them for their hard work, dedication and outstanding efforts.” The following awards were presented at the private ceremony: Overall awards Master Reseller Award, Symmetric Interconnect Systems Government Reseller Award, Infotec Systems Corporation Canadian Reseller Award, Extravision Video Technologies, Inc. Partner Award, PSA Security Network, Inc. National Reseller Award, Johnson Controls President’s Circle Award, Convergint Technologies, LLC Regional awards Northeast, Structure Works, Inc.         Northwest, Aronson Security Group     Central North, Applied Network Concepts    Southwest, ACME Security        Eastern Canada, Extravision Video Technologies, Inc.     Western Canada, Unitech Electrical Contracting, Inc.    Central South, Texas Electronic Systems Specialists    Mid-Atlantic, Elite Contracting Group, Inc.    Southeast, A3 Communications, Inc.     Great Lakes, Zenith Systems, LLC

ADT, a provider of monitored security and interactive home and business automation solutions in the United States and Canada, announced the acquisition of Acme Security Systems. Acme will join forces with recently acquired Aronson Security Group (ASG) to further drive commercial growth and expansion. Headquartered in San Francisco and founded in 1974, Acme is among one of the largest privately held security systems integrators in the Bay Area, focusing on electronic security systems, access control, video networks and more. “ADT and Acme have a shared vision for exceptional service, and this alliance not only enhances our leadership in the market, but substantially extends our service capabilities for our valued customers,” said ADT President, Jim DeVries. “We’re thrilled to welcome the talented Acme team members as contributors in a significant chapter of ADT’s history.” “For our employees to unite with one of the most successful and recognisable security brands in history is a true honor,” added Steve Harris, Founder of Acme Security Systems. “ADT believes in their ability to provide unparalleled service to the commercial and national account market, and their enthusiasm is infectious. Together, we’ll be able to provide significant value for current and future customers.”

ADT Commercial have grown organically in double digits since 2016, in addition to growing through 15 acquisitions completed since the merger of ADT and Protection One. Acquisition of integrator companies such as Red Hawk Fire and Security and Aronson Security Group have expanded ADT Commercial’s presence geographically to more areas of the country. Most of the employees of the acquired companies have stayed with ADT and “helped to create a corporate culture and a good place for employees to work,” says Dan Bresingham, Executive Vice President of ADT Commercial. Happy employees ensure good customer service. Enterprise resource planning Bresingham will lead ADT Commercial as it becomes a separate business unit in 2020 “We adapt to where our clients want us to be,” adds Joe Sanchez, Senior Vice President of Customer Operations of ADT Commercial National Accounts. “We take a strategic approach as we determine how adaptive our customers are going to be to the new technology.” I caught up with ADT Commercial at the GSX trade show in Chicago. Bresingham tells me ADT Commercial has benefitted from the calibre and breadth of leadership talent that have come along with the various acquisitions, including Mike McWilliams of Red Hawk, Bob Dale of Protection One, and Phil Aronson of Aronson Security. The transitioning of internal systems such as enterprise resource planning (ERP), billing and customer repair software will further steamline the ADT Commercial operation in the next several months. Bresingham will lead ADT Commercial as it becomes a separate business unit in 2020. We caught up with ADT at the GSX trade show in Chicago Providing new opportunities for regional integrators Additional acquisitions are also likely; in fact, growth is likely to accelerate. ADT Commercial offers a national footprint that can provide new opportunities for regional integrators it brings into the fold. New acquisitions will continue to fill out ADT’s skillset requirements in specific geographic areas where more expertise is needed. Security directors have a small staff and we help them know what they should be looking at in terms of data" “The industry doesn’t change a lot,” says Bresingham. “The technology just gets better, faster, and cheaper. As a service provider we take the best technology and combine it to provide the best solutions. We’re product-agnostic. Most of our jobs are down-and-dirty, doing the same things, but we’re pushing ourselves to be the best every day at the basics.” An emphasis at ADT is to provide customers ‘actionable’ data compiled from their various security systems. “We have a range of customers,” says Sanchez. Managing networks and video remotely “From small businesses to large data centers, there is no electronic system we cannot do. We are adaptable, from providing basic intrusion all the way to more sophisticated elements. Security directors have a small staff and we help them know what they should be looking at in terms of data.” “Our customers are our ‘true north’,” says Sanchez. A strong relationship with clients forms the basis for ADT Commercial’s success. Helping customers track data utilises ADT Commercial’s eSuite account management system, homegrown software that compiles and analyses various customer data inputs. It also allows the ability to manage networks and video remotely. “We built it from scratch for customers. It’s a web-based system that helps them manage their business,” says Bresingham. “We hold ourselves accountable. We don’t hide from data, we encourage it.” Monitoring refrigeration units The solution is different in every case, just as every customer is uniqueIn addition to data from customer systems, eSuite can compile local weather information, crime statistics and other information that can help provide trending information to guide a customer’s business. The system’s flexibility enables ADT to provide the data each customer needs. ADT helps customers manage their business beyond the security department, too. “We do a lot of things in environmental control, monitoring refrigeration units and making sure humidity and temperature readings are correct,” says Sanchez. Leaving a door open could cause product loss at a pharmaceutical company, for example. In the food industry, a freezer malfunction could cause huge losses. In either case, an alarm can draw attention to the problem in a timely manner. Other customers face regulatory requirements that demand an audit trail of compliance, which ADT’s systems can provide. At the end of the day, ADT asks customers ‘What’s your security need?’ The company then adapts and assembles its solutions using internal resources and outside vendors, to meet that need. The solution is different in every case, just as every customer is unique.

ADT Inc.’s acquisition of Red Hawk Fire & Security, Boca Raton, Fla., is the latest move in ADT Commercial’s strategy to buy up security integrator firms around the country and grow their footprint. In addition to the Red Hawk acquisition, announced in mid-October, ADT has acquired more than a half-dozen security system integration firms in the last year or so.  Here’s a quick rundown of integrator companies acquired by ADT: Protec, a Pacific Northwest commercial integrator (Aug. 2017); MSE Security, the USA’s 27th largest commercial integrator (Sept 2017); Gaston Security, founded in 1994 as a video surveillance integration company and whose services have since expanded to include intrusion, access control, and perimeter protection (Oct. 2017); Aronson Security Group (ASG), which delivers risk and security program consultants and offers advanced integration services, consulting and design engineers and a National Program Management team (March 2018);  Acme Security Systems, among the largest privately held security systems integrators in the Bay Area, focusing on electronic security systems, access control, video networks and more (March 2018); Access Security Integration, a regional systems integrator specialising in design, delivery, installation and servicing of electronic security systems including enterprise-level access control, video and visitor management solutions, perimeter security and security operation command centers (Aug. 2018); In addition to their moves in the commercial integrator space, ADT has also sought to expand their presence in cybersecurity with the following two acquisitions: Datashield, specialising in Managed Detection and Response Services (Nov 2017); Secure Designs, Inc., specialising in design, implementation, monitoring, and managing network defense systems, including firewall services and intrusion prevention, to protect small business networks from a diverse and challenging set of global cyber threats (Aug. 2018). ADT has acquired more than a half-dozen security system integration firms in the last year or so For additional insights into ADT’s game plan and the strategy behind these acquisitions, we presented the following questions to Chris BenVau, ADT’s Senior Vice President of Enterprise Solutions. Q: ADT has been actively acquiring regional integrators this year – more than a half a dozen to date. Please describe the history of how ADT came to embrace a strategy of acquiring regional integrators as a route to growth? ADT's acquisition of Red Hawk is set to close in December, and brings premiere fire and life/safety solutions BenVau: Our acquisition strategy started at Protection 1 when we embarked on our journey to build out our commercial and national account business and add enhanced integration capabilities to our portfolio. The merger of Protection 1 and ADT brought that foundation to ADT which up to that point was primarily a residentially and SMB-focused company. After the merger, we set out to identify and acquire additional regional integrators that would continue to build on that foundation and deliver enhanced technical solutions, advanced technologies and an expanded service, install and support footprint. Through our acquisitions we now operate two Network Operations Centers and three Centers of Excellence. We are also unique in the industry with the number and variety of certifications, like Cisco and Meraki, our engineers hold which ultimately allows us to offer Managed Security as a Service. They have also enhanced our operational capabilities. Q: What criteria do you use to evaluate whether an integrator is a good “fit” for ADT? BenVau: First and foremost, we look at the culture of the companies. The companies that we target for acquisition must be metrics- and customer service-driven. Secondly, we look at the leadership teams. ADT view their acquisitions more like mergers and take a patient approach to integrating them into their business We have been fortunate in the fact the leadership of the companies we acquired remain with us today in key management and executive positions helping to drive continued growth within their organisations. We also evaluate their current customer base, unique solutions and their ability to complement and enhance our portfolio with the goal of becoming a leading full-service, enterprise commercial provider. Our acquisitions have bolstered our network capabilities, brought enterprise risk management services, and a broader solution set in high-end video and access control solutions. Our most recent acquisition – Red Hawk, set to close in December – brings us premiere fire and life/safety solutions. Q: What changes are typically needed after an integrator is acquired in order to adapt it to the ADT corporate model? BenVau: We view our acquisitions more like mergers and take a patient approach to integrating them into ADT while taking into account their culture. We want to ensure that we find the right positions for their people, embrace the right messaging and put the right processes in place. We acquire these companies because they are the best in their respective businesses and geographies and bring their knowledge and experience in markets or with solutions that we may not have had previous access to. ADT can support clients with their own in-house technicians which helps to ensure a consistent security program Q: How can regional integrators benefit from the ADT brand? Have your newly acquired integrators realised additional growth? BenVau: The companies we have acquired, generally, have exceeded expectations and surpassed initial goals. ADT brings expanded opportunities for these companies as well with our national footprint. Our National Account Sales Team has seen impressive growth over the years and are only limited by our ability to deliver. These integrators help to deliver on that. In the past, the regional players may have had to rely on sub-contractors to service their larger clients. With ADT, we can now support those clients with our own in-house technicians which helps to ensure a consistent security program across multiple locations.Our National Account Sales Team has seen impressive growth over the years and are only limited by our ability to deliver" Q: Are additional integrator acquisitions planned this year and into 2019? How much is enough and when will it end (or slow down significantly)? BenVau: We expect to close on our latest acquisition, Red Hawk, before the end of 2018. Red Hawk brings a national footprint focused on fire/life safety and security to ADT. While ADT already had a robust security offering, Red Hawk will contribute significantly to the fire side of the business. In addition, we will continue to evaluate the companies in the industry to determine if additional acquisitions make sense. Q: Do you expect greater consolidation of the integrator channel in the industry as a whole? Why is this a good time for consolidation? Is it a good M&A market for buyers like ADT? BenVau: We will continue to evaluate companies in the industry to determine if further acquisitions make sense. As for the industry, we can only speak for ourselves. Our focus is on investing in our field organisation, in particular our service technicians, engineers and project management teams" Q: What other trend(s) do you see in the industry that will impact ADT (on the commercial side) in the next year or so, and how? BenVau: In addition to their moves in the commercial integrator space, ADT has also sought to expand their presence in cybersecurity Networking is a big one. As we continue to drive integration of devices and services, from AI, “the cloud,” machine learning and even analytics, there will be more focus on the network they ride on. A deeper knowledge of network design, bandwidth impact, and system integration will be critical. As part of our acquisition strategy, we focused on talent to add to the team and have been able to add to our bench strength in this area. Q: Any other comments/insights you wish to share about ADT’s strategy, future, and role in the larger physical security marketplace? BenVau: Our focus is on investing in our field organisation, in particular our service technicians, engineers and project management teams. The cornerstone of our success lies in our ability to deliver outstanding customer support and service. It starts with sales and the ability to deliver security and life safety technologies, but it ends with a delighted customer who partners with us to help secure the things that matter most to them. Our recent acquisitions have more than doubled our commercial field operations teams and are key to establishing the ADT Commercial brand as a leading full-service provider of enterprise solutions to the marketplace.

For the past several years, information technology security concerns and priority regarding insider threats have steadily risen as evidenced by a variety of surveys across the IT security industry. Companies are becoming increasingly worried about insider threats.  From the cyber security perspective, insider threat is primarily focused on malicious threats to the company either by, or to, information technology assets. Whether it is fraud, intellectual property theft, or even cyber system sabotage, the cyber security professional considers it an insider threat if the incident involves IT assets and internal resources. Development of cyber security tools Cyber security tools to predictably identify trends and identify malicious activity in real time, are increasingly under development and becoming a mainstay for the cyber security toolkit. Whether the culprit is malicious, exploited, or just plain negligent, both cyber and corporate security have a responsibility to detect and prevent the threat. As a result, you are seeing the development of enterprise risk programmes combining physical and cyber security teams to implement a cohesive insider threat programme. A natural outcome of this is the emerging interfacing of physical and cyber systems at various levels to provide both predicative and real-time intelligence of insider threat activity. Security Information and Event Management System (SIEM) One of the most obvious system interfaces is the extraction of access control data and its incorporation into a Security Information and Event Management System (SIEM, pronounced “sim”) such as Splunk, AlienVault, and ArcSight to name a few. SIEM’s are used by the Cybersecurity teams to provide a total picture of the cybersecurity landscape. Specifically, most SIEM’s use data collection “agents” across a variety of InfoSec sub-systems such as anti-virus, firewalls, intrusion detection systems as well as applications, which is then correlated and anomalies flagged for action. Both normal activities and deviations can then be driven to an operator console. One of the most obvious system interfaces is the extraction of access control data and its incorporation into a Security Information and Event Management System (SIEM) To the enterprise the advantage is obvious; it now has the ability to have a wide view of the current normal and aberrant network, application and data behaviour to begin the predictive analysis of insider threats. However, an IT systems-only view is in fact limited as critical pieces of information are missing from the analysis and extraordinary efforts need to be made to obtain information. Currently, this situation extends to most physical security systems. SIEM scenario Let’s pretend that a SIEM operator begins to receive alerts that a computer located in Toronto, Ontario begins to attempt access to a number of directories that it does not have privileges to. The attempts continue for a couple of minutes and that activity triggers an alert to the SIEM. The SIEM operator can quickly determine from the access control log that the ID of the person is Bob Smith.  However, that does not really mean that Bob Smith is attempting the breach. The SIEM operator may need to call the Global Security Operations Centre and request an access report for the room the attack is being mounted from. If Bob Smith’s card was used to get into the room, and his ID was used to logon to the computer, then chances are its Bob Smith. The last piece of confirming evidence would be a video snippet from the camera monitoring the door to match the access granted with the photo on file and then to the video snippet. Cyber Security can then shutdown the computer and Corporate Security can physically stop the threat. Rising concerns around insider threats make the integration of real-time security information even more compelling Need for process automation The above scenario assumes that the GSOC can make the request an immediate action priority. But what if it can’t because of another higher priority event occupying the GSOC? The answer is to automate the process with an interface between the two systems. “Data mining on an archive is relatively simple” said Mike Hamilton, CEO of Critical Informatics at the ISC West Conference in 2016. “Arguably the more beneficial function is the real-time correlation of physical security data with a SIEM.” The notion that an InfoSec SOC can hook into a live PhySec database, be it access control, intrusion detection, or video isn’t new. Indeed, the idea of it has been bandied about for a decade. However, with the recent advances in SIEM’s, InfoSec SOC’s, and the movement within the enterprise of a unified enterprise security governance, combined with rising concerns around insider threats, makes the integration of real-time security information even more compelling. Imagine the same scenario mentioned previously, but now when the SIEM operator receives the alert they also get real-time access control and video snippets attached to the incident. Imagine further that the SIEM operator can use automated incident response processes to initiate an immediate joint corporate / information security, HR, Legal and employee manager response? Because of the speed of damage that insider threat can create it is vital that the incident response be decisive, pre-determined, and unified to be effective. Because of the speed ofdamage that insider threatcan create it is vital thatthe incident response bedecisive, pre-determined,and unified Data-mining for Insider Threat isn’t limited to real-time incidents of course. There is value for the enterprise when Insider Threat pattern analysis is done that includes a physical security database extraction. Indeed, deep pattern analysis would be executed against an archive since real-time databases could have performance issues against an intensive query. So, what are the issues that face an enterprise when it is considering insider threats? There are several:1.Enterprise governance All the data access governance issues that apply to enterprise data (e.g. privacy concerns, legal requirements for preservation, cross-functional incident management) apply. An enterprise would be ill-advised to undertake a SIEM/Physical Security Insider Threat integration without the governance framework well thought out and planned. 2.Technical issues Integrations require the manufacturers Application Programme Interface (API) to be available, and the application versions to be current. Each type of database integration would need a script written through the API’s and each would need to be maintained, including application version upgrades. So, a management plan would need to be in place for the script maintenance. Hardware and application standards would also need to be in place. 3.Enterprise growth As the enterprise grows the SIEM would need to extend into the new network locations. Extensions may be relatively simple, for example the company has purchased new office locations and is extending the network. However, mergers and acquisitions (M&A) add a complexity to the programme. The M&A may acquire assets that do not conform to a corporate standard. Writing new hooks to standalone databases would be a nightmare. For an enterprise considering using a SIEM or other dedicated application for Insider Threat the issues are complex, but not insurmountable. Further, the threat represented by an insider threat activity in today’s business environment requires tools that provide the timeliest information to initiate an appropriate response. Best practices, tool development, and unified governance all play a part, and data mining for insider threat will certainly become standard. Save