Office security systems

The doors have closed on this year’s Global Security Exchange (GSX), held at Chicago’s McCormick Place this week. Presented by ASIS International, an association for security management professionals, the event offered six days filled with education and networking for the global security community. Attendance was strong with 20,000 registrants from more than 125 countries and 550+ exhibitors packing the convention centre. Security professionals also engaged in sessions around the world via Global Access LIVE! streaming—with participants in more than 15 countries. “GSX serves as a powerful forum for convening security leaders across the globe to learn, share information and network,” said Christina Duffey, CPP, 2019 ASIS President. “I leave this year’s GSX more energised about our association, our profession, and our industry. I am eternally grateful to our Chicago Chapter and host committee for their strong support and look forward to GSX 2020, which will take place in Atlanta.” Four key factors affecting perceptions GSX 2019 launched on Saturday, 7 September, with ASIS member certification reviews and the start of continuing education workshops in support of professional accreditations. Sunday, September 8, brought a lively Town Hall providing attendees with an open discussion forum with ASIS volunteer leaders. Monday, 9 September, the keynote address was delivered by geopolitical expert and author Ian Bremmer, Ph.D., covering the most pressing risks, trends and economics around the world. More than 3 million people are moving into urban environments every week” He described four key factors that are affecting global perceptions and can stoke conflict and uncertainty, including the decline of the ‘social contract’ (i.e., flat wages, scandals involving privileged class, and sense that government and employers no longer represent the needs of the people they serve), immigration, the ‘forever’ wars (i.e., the 18-year conflict in Afghanistan), and the role of social media in stoking division and fears. He also cited news headlines, including the consequences of Brexit, China’s global investments in Western Democracies, and the lack of a “Plan B” in dealing with Iran. New innovations in security profession The GSX Exhibit Hall opened Tuesday, 10 September with more than 550 exhibitors and innovative feature areas including the GSX Disruption District, X-Learning stages, and the D3 (Drones, Droids, Defense) Learning Theater, and new this year, the Startup Sector pavilion, highlighting new innovations in the security profession. Tuesday’s General Session speaker, Steve Demetriou, Chair and CEO, Jacobs, spoke on changing times. According to Demetriou, “Today, more than half the world’s population lives in urban environments, and more than 3 million people are moving into urban environments every week.” John F. Kelly, retired four-star general, former U.S. Secretary of Homeland Security and White House Chief of Staff, kicked off Military and Law Enforcement Appreciation Day on Wednesday, 11 September. General Kelly also touched on changes in Department of Homeland Security (DHS) agency structures and policies since 9/11 and described how the dramatically increased collaboration across the intelligence and enforcement agencies in recent years has made the country much safer. Evolving world needs security practitioners Tarah Wheeler emphasised that the world requires security practitioners to continue to update their thinking New to GSX this year and a first for the security industry, 12 companies were selected to compete in the first-ever GSX Pitch Competition. The closing general session featured Tarah Wheeler, Cybersecurity Policy Fellow at New America, who emphasised that the evolving world requires security practitioners to plan ahead and continue to update their thinking. “We are at GSX because we want to be fierce protectors,” she told the audience before providing valuable guidance on how to prepare before an incident response is required. “I think like a bad guy so I can keep people safe—and you should start thinking like a bad guy too.” Deviant Ollam, Physical Penetration Specialist with the CORE Group, gave the closing Game Changer session alerting the audience to the many ways that potential “bad actors” can gain access to sensitive company data, resources, and facilities. Ollam described three distinct attack surfaces—physical, digital, and human—and pointed out that attackers often find the most vulnerable points at the intersections of these areas, where the responsibility may not be clear and protective procedures may be weak. Free access to security education He emphasised the potential value of penetration testing, and encouraged testers to help make the world safer, saying “if you’re not making the blue team better, you’re not doing your job.”  Expanded for 2019, the Security Cares program was created to empower and positively impact the local communities serving as GSX host cities. Now in its fourth year, the program connected leaders of Chicago area community organisations and small- to medium-sized businesses with free access to valuable security education, networking, funding opportunities, and resources. GSX 2020 will take place September 21-23 in Atlanta.

At GSX 2019, SilverShield™ Safety & Information Systems will showcase their award-winning visitor and information management system (Booth #1594). The solution is an easy-to-use, cloud-based SAAS approach to security, with several different modules that provide a complete safety solution. “The SilverShield Visitor and Information Management System is the most effective way for users to vet and manage visitors for any size facility,” said Robin Baker, CTO, SilverShield. “We look forward to demonstrating the powerful software to GSX attendees this year.” The SilverShield Visitor Management System enables staffed or unstaffed visitor screening at all types of facilities – schools, medical facilities, or any type of business that screens visitors and maintains visitor records. This cloud-based (SAAS) multi-platform solution allows users to quickly screen a visitor’s credentials against custom watchlists and the national sex offender database, in near-real-time, to decide if the visitor should be welcomed or denied entry. If welcomed, your staff is notified of visitor and VIP arrivals. Register manually or by scanning a valid ID The Virtual Lockdown System alerts users to take immediate action to initiate their lockdown procedures If there is a threat identified at any entrance, the system allows the user to immediately send silent alerts to designated stakeholders via a two-way communication mode. When integrated with the SilverShield ID Badge System, the system can create temporary ID or permanent ID badges for staff, students, and vendors. For organisations with unstaffed entrances, the SilverShield Kiosk System allows visitors to register themselves – manually or by scanning a valid ID. The interactive Kiosk System will also notify staff of VIPs or unwelcome guests, increasing security and safety even in unmanned entry points. In the event of an emergency situation or unwanted guest, the system’s Incident Management module can alert local police, initiate a virtual lockdown, and produce mass emergency notifications via email, SMS/text, mobile and web push notifications. The Virtual Lockdown System alerts designated stakeholders via an audible siren sent to all users’ computers or mobile devices, to alert users to take immediate action to initiate their lockdown procedures. Event Management System The solution pre-screens guests, ensuring that unwanted guests are not invited to events or facility activities SilverShield’s HR & Safety Resource Center enables companies and schools alike to store their Security Plans in a secure Learning Management System (LMS) and share it along with supporting materials with staff and stakeholders. The system also encourages assessments to ensure comprehension of security protocols, procedures and plans. The solution’s Event Management System pre-screens guests against watchlists and the national sex offender database, ensuring that unwanted guests are not inadvertently invited to events or facility activities. The system will manage invitations and RSVPs and can issue parking and visitor passes to approved guests via email and SMS/text, helping to safeguard a safe and secure event.

Trackforce™, a security workforce management platform, announces its acquisition of Valiant Solutions Inc., a provider of Human Capital Management (HCM) software solutions. The new company, Trackforce Valiant, now delivers all-in-one security workforce management platform: the only comprehensive operations management solution available to the industry. Building on a pedigree and industry knowledge of physical security, Trackforce Valiant is a purpose-built solution that supports the growing needs of security guard companies worldwide. As a result of this acquisition, Trackforce Valiant now enables automation of every single aspect of a security company’s operations, including crucial back office functions such as billing, payroll, time and labor management (TLM), human resource management (HR), and employee and client onboarding. This game-changing upgrade still delivers Trackforce’s globally proven front-line capabilities, including tracking guard tours, visitor management, incident reports, and more, in a paperless environment devoid of antiquated guard tour devices. We are now able to offer end-to-end management of the entire security company workforce environment" “Trackforce is one of the most innovative solutions for security guard management, and Valiant Solutions joining our team has created an exciting opportunity in the market,” explains Trackforce Valiant’s new CEO George Wright. “By bringing Valiant’s solutions onto one unified platform, we are now able to offer end-to-end management of the entire security company workforce environment that combines people, process, and technology in one seamless solution that benefits security company management, the workforce, and clients. Everyone wins together.” Intuitive SaaS solution Trackforce Valiant is a complete platform for security companies. “Our clients gain access to an entire feature-rich, intuitive, and customisable SaaS solution. With this news, we are now the market leader in providing secure productivity tools for the trusted workforce,” adds Wright. For security guarding companies, the benefits of the full Trackforce Valiant platform are massive. The fully automated back office environment increases productivity, saves time on operational and HR processes, and optimises the management and utilisation of all security employees with mobile and desktop applications. All the shift data and hours worked by each security officer are easily tracked, then processed by an intelligent back-office management platform, thus minimising payroll processing time for all security personnel. In the field, the platform empowers security officer supervisors with intelligence-driven technology fed by data captured on smartphones by guards on the front line. This improved access to relevant data supports more effective management of more customer sites and assets while maintaining a high standard of service irrespective of location. A unified front-line and back-office management system ultimately allows users to manage and track not only who is assigned to each site but also any security officer activity, all with an unmatched level of vigilance. Holistic view of security operations Trackforce implements solutions for clients such as G4S, SecurAmerica and Inter-Con Security Systems, among others What is more, security company customers can attain fresh insights to improve management with greater transparency, real-time KPIs, and a holistic view of their security operations based on data captured by officers on duty. “Trackforce has become an integral partner in the success and growth of our security company,” observes Joe Murphy, Senior Vice-President at SecurAmerica. “Since implementing the Trackforce platform several years ago, we have established a solid foundation, and we are now building on it to provide the highest level of services and demonstrable value to our customers.” “We have been using Valiant for many years, and I have been consistently impressed with the professionalism of Valiant’s staff, the ease of use of the software, and the wide variety of tools at my disposal,” remarks Ken Grossberger, Vice President of Elite Investigations. “I’ve always received timely, helpful responses to any issues, and Valiant continuously improves current products while bringing new ones online. Valiant’s team has always done a great job for us, and I’m excited to see what this new announcement brings for our business.” Trackforce implements solutions for clients such as G4S, Whelan Security, SecurAmerica, McKesson Corporation, and Inter-Con Security Systems, among many others.

Morse Watchmans, the provider of key control and asset management systems, will showcase its KeyWatcher Touch, AssetWatcher, and KeyWatcher fleet key and asset management solutions at GSX 2019 this week (booth #1153). “We are excited to show GSX 2019 attendees how key management and asset control can help them to create a state-of-the-art security system for their organisation,” said Fernando Pires, CEO, Morse Watchmans. “We continue to be completely focused on providing innovative solutions for our customers to help them achieve their business goals, reduce costs, and secure their enterprise.” Access control system Morse Watchmans’ KeyWatcher Touch key management system features a 7” touchscreen with an easy-to-use interface and patented SmartKey system with KeyAnywhere technology to make it simple to remove and return a key to any key cabinet in an enterprise. Key Group Associations feature makes it easier for users to cover special situations New features to KeyWatcher Touch include remote functions added to the TrueTouch Software that supports multiple user logins for key returns and removals. A new ‘Key Group Associations’ feature allows users more specific key access to be configured directly through the access control system. This feature makes it easier for users to cover special situations, such as when an employee is out of the office that day, or if they fit the criteria for a specific profile, but temporarily need some additional keys. RFID-enabled locker system AssetWatcher is a flexible, scalable, and highly capable RFID-enabled locker system. It can support more than 10,000 users on a single system and is configurable in three modes. AssetWatcher’s RFID technology allows users to easily track who is removing or replacing an asset, as well as when and where in the system the asset has been taken from or placed. Available in 10, 22, or 34-locker configurations, each system is designed to be freestanding and can be mounted to the wall or the floor. A number of modes allow AssetWatcher to accommodate a wide variety of uses. Classic mode allows assets to be returned either to any open locker or to be assigned to a specific locker. Owner mode assigns individuals with a specific locker, which may or may not be shared with other users Personal mode allows assets to be added to the system for tracking, with permissions based on lockers rather than assets. Leased mode allows users to ‘lease’ a locker temporarily. Owner mode assigns individuals with a specific locker, which may or may not be shared with other users to accommodate shared or specific assets that may be used by one or more persons. Stronger key security KeyWatcher Fleet is the first key security system that puts users in command of vehicle distribution, comprehensive utilisation, right-sizing of a fleet, and more. The software allows fleet managers to create user role-based ‘Pools’, or groups of vehicles, to assign each vehicle accordingly. A convenient dashboard displays real-time status, bookings summary, vehicle use and many other data points to instantly provide the pulse of the fleet. Built on the KeyWatcher Touch hardware, KeyWatcher Fleet uses the same 16, 8, and 6-key modules, along with the same card and locker modules. Unique PIN codes ensure only authorised individuals can access keys, or users can add an optional card or fingerprint reader for even stronger key security, allowing users to manage thousands of keys and users with a single system or network.

Check Point® Software Technologies Ltd., a provider of cyber security solutions globally, has announced the launch of Check Point CloudGuard Connect to transform enterprise branch office connectivity with cloud-delivered security services. Check Point CloudGuard Connect delivers top-rated Threat Prevention updated in real-time with the latest ThreatCloud intelligence, flexibility to deploy branch office security in minutes from the cloud or on-premise, seamless integration with leading SD-WAN providers like VMware and Silver Peak, and a unified threat and access management platform that can reduce operational expense by up to 40%. As enterprises increasingly move their on-premise branch office workloads and applications to SaaS applications, they are adopting Software-Defined Wide Area Networking (SD-WAN) to intelligently route traffic to cloud services. However, connecting branch offices directly to the cloud significantly increase their security risk and security management costs. Branches are no longer protected by centralised data centre security, which exposes them and the enterprise WAN to sophisticated multi-vector Gen V attacks. Protection from Gen V security threats For flexibility, CloudGuard Connect is integrated with SD-WAN providers like VMware and Silver Peak "The movement to SD-WAN requires integrated security to protect enterprises from from Gen V security threats. Enterprises expect top-rated security even at the branch office," said Itai Greenberg, Vice President of Product Marketing and Management at Check Point. "With CloudGuard Connect enterprises can now deploy Check Point's top-rated threat prevention and intelligence to protect their branch offices against the latest Zero Day and Gen V security threats. "Securing SD-WAN connections to the cloud is essential given today's advanced cyber threats," says Sanjay Uppal, VMware Vice President and GM of VeloCloud™. "We're excited to partner with Check Point to help drive the transformation in connecting branches to the cloud." "Through the Silver Peak and Check Point partnership, enterprise IT organisations can confidently embrace a cloud-centric security model, centrally configuring and enforcing uniform security policies across the WAN with just a few mouse clicks," said Chris Helfer, senior vice president of strategic alliances at Silver Peak. "The Silver Peak® Unity EdgeConnect™ SD-WAN edge platform managed by the Silver Peak Unity Orchestrator™, automatically services chain applications to Check Point CloudGuard Connect and CloudGuard ConnectEdge." Cloud guard Check Point provides organisations of all sizes with integrated, advanced threat prevention, reducing complexity and lowering the total cost of ownership. With CloudGuard Connect, Check Point protects branch office connections to the cloud from sophisticated threats with dynamic scalability, intelligent provisioning and consistent control. Unlike other solutions that only detect, Check Point prevents threats with: Top-rated Threat Prevention with 100% Catch Rate Innovative solutions that combine cloud-hosted patented CPU-level inspection and OS-level sandboxing to prevent infection from the most dangerous zero-day and sophisticated Gen V attacks Check Point CloudGuard Connect threat prevention stays up to date on the latest Zero-Day and Gen V cyber-attacks through ThreatCloud. ThreatCloud is a cloud-driven knowledge base that delivers real-time dynamic security intelligence. ThreatClould gathers threat intelligence from 86 billion security decisions, 4 million file emulations, and 7000 Zero-Day attacks every day. SD-WAN vendors in Cloud Check Point CloudGuard Connect secures SD-WAN connections to the cloud. Check Point CloudGuard Connect seamlessly implements branch security across thousands of branches where space is limited and there are no local IT resources. For enterprises that require on-premise security for data privacy or data-location requirements, CloudGuard ConnectEdge can be deployed using a virtual security gateway running on existing branch office IT equipment including dedicated SD-WAN or universal Customer Premise Equipment (uCPE) devices. To provide enterprises with the ultimate flexibility, Check Point CloudGuard Connect is seamlessly integrated with leading SD-WAN providers including VMware and Silver Peak. Reducing OpEx costs up to 40% Both Check Point CloudGuard Connect and CloudGuard ConnectEdge are integrated into Check Point's R80 threat prevention and management platform and Infinity Architecture. This enables enterprises to have a unified view of their threat landscape and security policy from one single console, no matter which form of the CloudGuard service they choose to utilise. They get real-time updates on security threats through the cyberattack dashboard. The unified security platform is integrated with Check Point's Infinity architecture increasing security productivity enabling enterprises to reduce operating costs up to 40%.

Genetec Inc., a technology provider of unified security, public safety, operations, and business intelligence, announced Genetec ClearID™, a self-service physical identity and access management (PIAM) system that standardises and enforces security policies to help make organisations more efficient, compliant and secure. Available in North America in September 2019, and globally in early 2020, ClearID will be showcased at the Global Security Exchange (GSX) in Chicago, in booth #1533. From corporate offices and university campuses to highly regulated multinationals in the oil, gas, mining, and petrochemical industries, ClearID removes the day-to-day complexities of managing individual cardholders and access rights. Guided by an organisation's existing policies, ClearID automates workflows and self-service capabilities to enable a more fluid, efficient working environment for everyone – without compromising security. ClearID can be deployed more easily than on-premises solution that requires complicated integrations" By automating access rights management, ClearID reduces bottlenecks related to managing employee and visitor access requests. Cumbersome and time-consuming paperwork related to granting people access to facilities or specific work areas can be streamlined with automated workflows allowing employees to make on-demand requests in the online portal. This means that managing day-to-day access needs, meeting compliance conditions, and ensuring policy updates become a more automated process. Enhancing user experience "As a cloud-based service that's built to work natively with Genetec Synergis™ access control security software, ClearID can be deployed faster and more easily than an on-premises solution that typically requires complicated integrations and customisations," says Jonathan Doyon, Genetec Product Group Director for ClearID. "With less infrastructure, customers save both money and time by not having to maintain additional physical systems." A self-service physical identity and access management system, ClearID enables employees to login to an online portal and make access requests directly to the area owner or supervisor. Employees control their own access requests which ClearID automatically approves, denies, or routes on to an operator to review, based on corporate policies and automated workflows. "The seamless movement of people throughout an organisation is integral to its efficiency and operations", continued Mr Doyon. "Genetec ClearID is a smarter way to manage employee, visitor and contractor access rights – greatly enhancing the user experience, eliminating unnecessary overhead from administrators and helping standardise and codify security policies to make organisations more efficient, compliant, and secure." Simplify manual processes ClearID will simplify the auditing process by providing area owners with an instant view of who has access to their areas The initial release of ClearID will help improve visitors' experiences by providing a smoother, automated process that begins as soon as a meeting is arranged. Using a web portal, the employee (host) creates a profile for the visitor including the meeting details. The visitor, in turn, receives a confirmation email with a QR code that can be used to sign in once on site, print a badge, and automatically advise the host of their arrival.  Another key functionality supports organisations in industries where they need to comply with strict access requirements. ClearID will simplify the auditing process by providing area owners with an instant view of who has access to their areas. This will allow them to quickly revoke the people who shouldn't be there as well as simplify manual processes that are time and resource intense and prone to human error. In future releases of ClearID, contractor management features will ensure that when access requests are initiated, approvals or denials are made prior to the contractor's arrival based on the necessary qualifications, tests and steps of identity authentication required to grant access. This will support additional compliance with standards, and minimise costs associated with contractor wait times.

The extensive analysis and discussion preceding any decision to implement a new physical security solution – whether it’s hardware, software or a combination of both – often focuses on technology, ROI and effectiveness. When it comes to deciding what type of security entrances to install at your facility, you will almost certainly also consider the aesthetics of the product, along with throughput and, if you’re smart, you’ll also look into service concerns. Each of these factors has its important place within the evaluation process, and none should be overlooked as they all have a significant effect on how well your entrances will perform once they are installed. Culture influences door solution decisions How significant will the change from current entrances to security entrances be for employees? Still, one additional factor actually trumps everything: if you have not considered your organisation’s culture in choosing a security entrance, you may be missing the most important piece of the puzzle. Culture is a part of every other decision factor when selecting an entry solution. Before you make a decision about what type of entrance to deploy, you need to consider and understand the values, environment and personality of your organisation and personnel. For example, how significant will the change from current entrances to security entrances be for employees? If people are accustomed to simply walking through a standard swinging door with no access control, this will be a culture change. Beyond this, whether you are considering a type of turnstile, a security revolving door or possibly a mantrap portal, simply walking through it will be a significant change as well. Training employees on door security You’ll want to know whether employees have ever used security entrances before. If these types of entrances are in place in another part of the facility, or in a facility they’ve worked in at an earlier time, the adjustment will not be as great as if they’ve never used them at all. Consider, too, how your personnel typically react to changes like this in the organisation or at your facility. They may be quite adaptable, in which case there will be less work to do in advance to prepare them. However, the opposite may also be true, which will require you to take meaningful steps in order to achieve buy-in and train employees to properly use the new entrances. With the increased importance of workplace security, discussing new entrances with  workforces will help maintain a safer environment Communicate through the decision-making process All of this will need to be communicated to your staff, of course. There are a number of ways to disseminate information without it appearing to come down as a dictate. Your personnel are a community, so news about changes should be shared rather than simply decreed. As part of this process, you’ll need to give some thought to the level of involvement you want for your staff in the decision-making process. Finally, do not overlook the special needs among your personnel population. You undoubtedly have older individuals on staff, as well as disabled persons and others who bring service animals to the office. Entrances need to be accessible to all, and you never want to be in the position of having a gap in accessibility pointed out to you by the individual who has been adversely affected. New security entrance installation By communicating early and often with your personnel, you can alleviate a great deal of the anxiety Once you have made the decision about which security entrances to install, training your personnel on how to use the new security entrances – both before and after the installation – will help to smooth the transition. Because workplace security is such a big issue right now, it makes sense to discuss the new entrances in the context of helping to maintain a safer environment. They will prevent violent individuals from entering, decrease theft, and most of all, promote greater peace of mind during the workday. If you can help them take control of their own safety in a responsible way, you have achieved much more than just a compliant workforce. By communicating early and often with your personnel, you can alleviate a great deal of the anxiety and concern that surrounds a significant change in the work environment. Schedule group meetings Consider your employees; what type of communications do they respond best to? A few suggestions to educate staff on the benefits of the new entrances include: Typically, you would communicate a general message 2-3 months in advance and then provide more specific information (for example, impacts to fire egress, using certain entrances during construction) in a follow up message closer to the installation date. Schedule group meetings to: announce the rationale for increased security, share statistics on crime, review the new security changes that are coming, show drawings/photos of the new doors/turnstiles, and show the orientation videos available from the manufacturer. These meetings are an excellent way to work through user questions and directly address any concerns. Once the installation of a new security system is complete, it is a good idea to have an "ambassador" on board to help employees use these new systems Ensure you monitor public areas If you are implementing a lot of new changes, such as a new access control system, new guard service and security entrances, you might consider hosting a ‘security fair’ on a given day and have the selected vendors come for a day with tabletop displays to meet employees and answer questions during their lunch. This could be a great way to break the ice in a large organisation. Make user orientation videos (provided by the manufacturer) available in several ways, for example: Intranet Site Monitors in public areas—lounges, cafeteria, hallways, etc. Send to all staff as email attachments Immediately after installation, once the doors or turnstiles are operational but before they are put into service, train ‘ambassadors’ on how to use the door/turnstile. Have these people monitor and assist employees during peak traffic times. What is the ultimate success of the installation? By communicating clearly and openly with your population you can greatly facilitate adoption and satisfaction If you have thousands of employees, consider dividing them into groups and introduce the new entrance to one group at a time (Group A on Monday, Group B on Tuesday, etc.) to allow a little extra orientation time. Place user education ‘quick steps’ posters next to the door/turnstiles for a few weeks to help employees remember the basic steps and guidelines, e.g., ‘stand in front of the turnstile, swipe badge, wait for green light, proceed.’ Ask your manufacturer to provide these or artwork. While there are always going to be people who are resistant to change, by communicating clearly and openly with your population you can greatly facilitate adoption and satisfaction. Your responsiveness to any issues and complaints that arise during and after the implementation is equally fundamental to the ultimate success of the installation.

With the coming of a New Year, we know these things to be certain: death, taxes, and… security breaches. No doubt, some of you are making personal resolutions to improve your physical and financial health. But what about your organisation’s web and mobile application security? Any set of New Year’s resolutions is incomplete without plans for protecting some of the most important customer touch points you have — web and mobile apps. Every year, data breaches grow in scope and impact. Security professionals have largely accepted the inevitability of a breach and are shifting their defense-in-depth strategy by including a goal to reduce their time-to-detect and time-to-respond to an attack. Despite these efforts, we haven’t seen the end of headline-grabbing data breaches like recent ones affecting brands such as Marriott, Air Canada, British Airways and Ticketmaster. App-level threats The apps that control or drive these new innovations have become today’s endpoint The truth of the matter is that the complexity of an organisation’s IT environment is dynamic and growing. As new technologies and products go from production into the real world, there will invariably be some areas that are less protected than others. The apps that control or drive these new innovations have become today’s endpoint — they are the first customer touch point for many organisations. Bad actors have realised that apps contain a treasure trove of information, and because they are often left unprotected, offer attackers easier access to data directly from the app or via attacks directed at back office systems. That’s why it’s imperative that security organisations protect their apps and ensure they are capable of detecting and responding to app-level threats as quickly as they arise. It’s imperative that security organisations protect their apps and ensure they are capable of detecting and responding to app-level threats as quickly as they arise In-progress attack detection Unfortunately, the capability to detect in-progress attacks at the app level is an area that IT and security teams have yet to address. This became painfully obvious in light of the recent Magecart attacks leveraged against British Airways and Ticketmaster, among others. Thanks to research by RiskIQ and Volexity, we know that the Magecart attacks target the web app client-side. During a Magecart attack, the transaction processes are otherwise undisturbed Attackers gained write access to app code, either by compromising or using stolen credentials, and then inserted a digital card skimmer into the web app. When customers visited the infected web sites and completed a payment form, the digital card skimmer was activated where it intercepted payment card data and transmitted it to the attacker(s). Data exfiltration detection During a Magecart attack, the transaction processes are otherwise undisturbed. The target companies receive payment, and customers receive the services or goods they purchased. As a result, no one is wise to a breach — until some 380,000 customers are impacted, as in the case of the attack against British Airways. The target companies’ web application firewalls and data loss prevention systems didn’t detect the data exfiltration because those controls don’t monitor or protect front-end code. Instead, they watch traffic going to and from servers. In the case of the Magecart attacks, the organisation was compromised and data was stolen before it even got to the network or servers. Today’s proven obfuscation techniques can help prevent application reverse engineering, deter tampering, and protect personal identifiable information and API communications Best practice resolutions The Magecart attacks highlight the need to apply the same vigilance and best practices to web and mobile application source code that organisations apply to their networks—which brings us to this year’s New Year’s resolutions for protecting your app source code in 2019: Alert The key to success is quickly understanding when and how an app is being attacked First, organisations must obtain real-time visibility into their application threat landscape given they are operating in a zero-trust environment. Similar to how your organisation monitors the network and the systems connected to it, you must be able to monitor your apps. This will allow you to see what users are doing with your code so that you can customise protection to counter attacks your app faces. Throughout the app’s lifecycle, you can respond to malicious behavior early, quarantine suspicious accounts, and make continuous code modifications to stay a step ahead of new attacks. Protect Next, informed by threat analytics, adapt your application source code protection. Deter attackers from analysing or reverse engineering application code through obfuscation. Today’s proven obfuscation techniques can help prevent application reverse engineering, deter tampering, and protect personal identifiable information and API communications. If an attacker tries to understand app operation though the use of a debugger or in the unlikely event an attacker manages to get past obfuscation, threat analytics will alert you to the malicious activity while your app begins to self-repair attacked source code or disable portions of the affected web app. The key to success is quickly understanding when and how an app is being attacked and taking rapid action to limit the risk of data theft and exfiltration. Protecting encryption keys is often overlooked but should be considered a best practice as you forge into the new year with a renewed commitment to app security to ensure your organisation’s health and well-being in 2019 Encrypt Finally, access to local digital content and data, as well as communications with back office systems, should be protected by encryption as a second line of defense, after implementing app protection to guard against piracy and theft. However, the single point of failure remains the instance at which the decryption key is used. Effective encryption requires a sophisticated implementation of White-Box Cryptography This point is easily identifiable through signature patterns and cryptographic routines. Once found, an attacker can easily navigate to where the keys are constructed in memory and exploit them. Effective encryption requires a sophisticated implementation of White-Box Cryptography. One that combines a mathematical algorithm with data and code obfuscation techniques transforming cryptographic keys and related operations into indecipherable text strings. Protecting encryption keys is often overlooked but should be considered a best practice as you forge into the new year with a renewed commitment to app security to ensure your organisation’s health and well-being in 2019. Protecting applications against data breach According to the most recent Cost of a Data Breach Study by the Ponemon Institute, a single breach costs an average of $3.86 million, not to mention the disruption to productivity across the organisation. In 2019, we can count on seeing more breaches and ever-escalating costs. It seems that setting—and fulfilling—New Year’s resolutions to protect your applications has the potential to impact more than just your risk of a data breach. It can protect your company’s financial and corporate health as well. So, what are you waiting for?

In my coverage of China Tariffs impacting the security industry over four recent articles, products on the tariff schedules routinely integrated into security solutions included burglar and fire alarm control and transmission panels, video surveillance lenses, HDTV cameras used for broadcast use cases and fiber optic media converters. The general ‘callout’ of ADP (Automatic Data Processing) devices and peripherals technically includes servers, workstations and microcomputers, all of which are commonly used to support security solutions. The underperformance, from June 15 to August 24, of U.S. stocks with high revenue-exposure to China, and that of Chinese stocks with high revenue-exposure to the United States was significant and almost identical at 3.2%, significant losses to some investors already involved in security industry M&A activity. Significant public safety Facial Recognition (FR) vendors leveraging AI expanded their market focus to retail and public safety While it was not apparent that practitioners’ security program budgets kept pace with the growth of the more popular solution providers like video surveillance and cyber security, the ICT industries supporting the security economy continued to expand, especially in wireless and wired infrastructure, including preparations for 5G wireless rollouts. These omnipresent technologies drove significant public safety, smart city and public venue projects in 2018. Facial Recognition (FR) vendors leveraging AI expanded their market focus to retail and public safety. In 2018, virtually every public presentation, webinar and published Q&A on social media monitoring and facial recognition technologies I worked on, involved significant pushback from privacy advocates, almost to the point of alarmism. Massive risk reduction Several solution providers in these areas have made significant strides on data protection, accuracy, powered by AI and documented crime reduction cases; however, this real news is quickly shadowed by privacy advocates, seemingly ignoring massive risk reduction, especially in the case of active assailants and gang-related crime. Will FR become mainstream? The cautious security industry may take a cue from the maverick retail industry, sports venue and VIP verification solution providers that grew in 2018. 2019 trends: presupposition or repudiation; winners and losers. Chinese tariffs have had a huge impact on the security industry, which can be seen from changes to U.S and Chinese stocks  Although technology adoption forecasting is inexact, there are definitive opportunities in the security industry born on necessity. With the widespread problem of false alarm transmission and inability for first responders to ‘be everywhere,’ developers of solutions that provide automated verification and alternative security incident detection are expected to become mainstream. Promising detection systems The use of AI, NLP, LiDAR, UAS (Unmanned Aerial Vehicles aka drones) with surveillance and thermal imaging will grow, mostly due to higher acceptance in other industries like autonomous vehicles, rail safety, terrain and post devastation mapping/rescue. However, legacy ‘listing’ or certification organisations will be forced to make an important decision for their own survival: work toward integrating these promising detection systems into acceptance by insurance, licensing and standards development organisations. 2019’s ‘true’ Industrial Philanthropists will be needed to fund early warning tech for firefighters and the presence of active assailants 2019’s ‘true’ industrial philanthropists will be needed to fund early warning tech for firefighters and the presence of active assailants. For these use cases, 5G infrastructure rollouts, FR acceptance, lower cost perimeter detection and long range object and fire recognition by LiDAR and Thermal imaging will all be watched closely by investors. Should public agencies and philanthropical solution providers in the security industry cross paths, we may just yet see a successful, lifesaving impact. Cyber risk profile The ‘Digital twin’ refers to a digital replica of physical assets (physical twin), processes, people, places, systems and devices that can be used for various purposes. Your ‘Security Digital Twin’ has a similar physical and cyber risk profile, either through common threats, similar assets or both. Good news: managing your risk, protecting assets and securing your facilities in 2019 will get easier as security digital twin profiles will grow in maturity, while keeping their data sources private. This will be accelerated by the maturity of AI-based, auto-generated visualisations and image recognition, that happens to also drive the FR solutions. The 5G wireless infrastructure market is emerging as far more of a quantum leap in connectivity, like ‘wireless fiber optics’ performance, than an upgrade to 4G LTE. The 5G infrastructure market will be worth $2.86 billion by 2020 and $33.72 billion by 2026, growing at a compound annual growth rate (CAGR) of 50.9%. Intelligent applications The explosion of ingested voice, video, and meta-data, the interconnectivity of devices, people and places, and the integration of intelligent applications into expanding ecosystems all require faster communications. To be more accurate, 5G rollouts will accelerate in 2019; however, current project funding will include and be impacted by future enterprise security connectivity: 5G and FWA (Fixed Wireless Access). 5G rollouts will accelerate in 2019; however, current project funding will include and be impacted by future enterprise security connectivity Quite simply put, larger solution providers are gently coaxing practitioners into seemingly ‘open systems;’ the negative discovery during an M&A process, audit or integration with a smart city’s public/private partnerships will continue to be revealed, and related industries will force reform. Autonomous things will be enabled by AI and image recognition. With few affordable rollouts of security robots and outdoor unmanned ground vehicles (UGV) that leveraged platforms popular with research and even NASA, the autonomous security robot was mostly MIA from a security practitioner’s program in 2018. Perimeter intrusion detection One platform was even accused of intimidating homeless people in a public place, at a major city. Industries mutually beneficial are often unaware of each other; this will change gradually: one major domestic airport is currently evaluating a UGV platform performing perimeter intrusion detection, runway weather conditions and potential aircraft taxiing dangers. The platform is being used largely in transportation research, yet offers significant opportunities to the security industry. Research firm Gartner estimates that 70% of today’s technology products and services can be enhanced with ‘multi-experience’-based VR/AR/MR The ‘immersive experience’ of virtually any security or threat detection is a twist on virtual/augmented/mixed reality (VR/AR/MR) with additional sensory features. Although VR/AR/MR is well underway in other industries, there are several companies with solutions like VR-based active assailant training that could provide a fighting chance for practitioners, employees, visitors, faculty and children. Research firm Gartner estimates that 70% of today’s technology products and services can be enhanced with ‘multi-experience’-based VR/AR/MR. Security ecosystem members Not necessarily MIA, but of special mention is the need of security and safety practitioners to prioritise communications systems over ‘nice to have’ expansive video surveillance systems for mass casualty threats. This will eventually improve with 5G for Enterprise solution rollouts. At the past GSX and upcoming CES Technology trade shows, a new roundup of technologies is discovered: a wider diversity of protection promise to save ASIS members on their technical security program is realised. With each of the ‘winners,’ (5G, AI, NLP, LiDAR, UAS [Unmanned Aerial Vehicles aka drones], thermal imaging, digital security twins and smart-city-friendly technologies) it is both exciting and challenging work for both security practitioners and solution providers. All things equal and with the necessary technology acceptance testing processes, this is a truly great time for security ecosystem members.

How’s this for a simple access control scenario? You walk up to a door, wave your hand in front of a button, the button lights up, and the door opens. That’s the simplified user experience that startup Openpath is promoting as it enters the crowded and mature market for physical access control. Openpath says a simple user experience provides the extra boost needed for mobile credentialing to gain momentum. In this case, it’s even simpler than using a card credential (no searching in a bag or purse for the card). And there’s no personal identification number (PIN) code to remember; no “intrusive” biometric element that can concern some users. James Segil, President and Co-Founder of Openpath, says the simplified process “uses fewer thought cycles.” Reliability of the system comes from Openpath’s SurePath triple-connect technology “We wanted to make mobile access control that people want to use and can use safely and with ease,” he says. “We wanted to make using a smart phone for access control easier and more reliable than using a keycard.” Simplified user operation In the simplified scenario, the mobile credential resides on a smart phone that can remain tucked away in the user’s purse or pocket. The credential remains active without the user needing to open an app. The wave of the hand signals intent, which causes the button to light up, activate and the door is ready to open. Segil says the simplicity of operation has contributed to the system seeing an unheard-of 94% adoption rate among users. Reliability of the system comes from Openpath’s SurePath triple-connect technology. The smart phone credential is delivered using Bluetooth, WiFi or LTE (cellular) – whichever signal reaches the reader first enables the door to be opened. So even if a company’s WiFi is down or Bluetooth proves unreliable, there is still a third option. Openpath deploys “seamless” cloud integration and makes it easy for landlords and tenants to integrate Openpath with other systems Seamless cloud integration Segil is a serial entrepreneur who has had experiences as a frustrated user, dealing with many different offices, people and access control deployments over the years – subletting office space, changing PIN codes, dealing with 10 different offices using 10 different cards. Based on that experience, Openpath’s founders saw a need for a more user-centric approach to access control, and a chance to improve the office experience to be more aligned with employees’ experiences in their smart homes. Segil says he also saw “significant lethargy” among incumbent players in the access control space, and a market in which mobile and cloud technologies had still not taken hold. In addition to a simplified user experience built around mobile credentialing, Openpath deploys “seamless” cloud integration and makes it easy for landlords and tenants to integrate Openpath with other systems. The “elegant” readers, including a flush-mounted version, fit in well with high-end office environments. The company launched in May 2018. Openpath has been signing up national and regional channel partners all across the U.S. Openpath is focused on the commercial real estate market, where they have already seen significant adoptions, especially among mid-sized companies. Larger deployments as part of new construction are in the pipeline. National system integration In the past six months since its launch, Openpath has been signing up national and regional channel partners all across the U.S. and now has a nationwide footprint and is able to service customers all over the U.S. They are not yet disclosing any specifics about the number of partners they have signed up and who they are. “I can share that we have a number of large national system integration and security brands on board as channel partners and many more regional and local system integrators,” says Segil. They are looking for additional integrator partners. “There is a cohort of folks out there who say ‘I get it,’ and I want to offer it to my customers,” says Segil. The cloud element of the system can provide recurring monthly revenue (RMR). Openpath’s system offers flexibility in terms of meeting each customer’s security needs. In addition to the “super convenient” scenario described above, the system can also be configured to be “super secure,” using two-factor authentication and other measures, says Segil. There are multiple “flavors” between the two extremes. It can also be integrated with elevators to enable the buttons on allowed floors. Integration with existing systems Cloud software simplifies operation for both tenants and landlords. The system is backwards-compatible to existing systems and can be used to retrofit and mobile-enable a legacy system, providing the benefits of mobile features and cloud operation to multiple sites. The software can interface with enterprise applications such as Active Directory, and an application programming interface (API) facilitates integration with other systems and building components. It operates with marketing automation platforms such as Flack and visitor management systems such as Envoy. The system is backwards-compatible, providing the benefits of mobile features and cloud operation to multiple sites Open standards make the system easy to install in new or existing buildings using RS485, or Cat 5 or Cat 6 wiring, whatever is in place. Retrofit installations can use existing panels, servers, software, etc., or they can be replaced. The Openpath panel is installed right next to an existing panel in a retrofit and preserves all legacy integrations of the previous system. Access credentials compatibility In its simplest configuration, the Openpath system consists of single or four-door panels wired using standard ports, Wiegand ports and REX ports, each connected to software in the cloud. Each panel works offline if the internet connection is down. Various key fobs, cards and other credentials are available in addition to mobile credentials. Openpath was one of the new exhibitors at last fall’s GSX show in Las Vegas, occupying a large-sized booth for a startup company. The “beautiful” hardware drew a lot of attention, says Segil. “The channel loves us, and we signed a lot of people,” he adds. “We were excited by the response.”

One factor aggravating concerns about workplace violence in corporate America is the easy availability of firearms. In many states, citizens, including employees, have the right to carry firearms onto a company’s property even though firearms are prohibited in the workplace. In effect, an employee prone to violence may have a firearm as near as their vehicle in the company parking lot. Currently, 23 states in the U.S. have so-called “parking lot storage” laws, which enable employees to store firearms in their vehicle’s trunk or glove box despite any corporate ban on weaponry. The laws have evolved as an expression of the Second Amendment “Right to Bear Arms” in the last decade or so. There is some variance in the laws from state to state, but they generally allow a citizen to carry a gun to and from work and keep it stored out of sight in their vehicle. Global Security Exchange (GSX) is the new branding for ASIS International’s annual conference and trade show Employee Second Amendment rights “The laws contend that employees should not have to give up their Second Amendment rights between home and the workplace and should be able to have a gun with them for protection from their front door at home to the front door of the workplace,” says Eddie Sorrells, Chief Operating Office/General Council of DSI Security Services. Sorrells will speak about the current state of the laws, how they came about, the nuances of state-to-state differences, and the possible impact on overall corporate security in a session titled “Employees Who Carry: Preventing Workplace Violence” at the upcoming GSX conference in Las Vegas, 23rd - 27th September. Global Security Exchange (GSX) is the new branding for ASIS International’s annual conference and trade show, attended by more than 22,000 security professionals from 100-plus countries. Sorrells’ session will be Sept. 24 from 10:30 to 11:45 a.m. Restrictions on gun visibility Employees may think the “right to carry” extends to the workplace, but the right only extends to the parking lot. The company still has the right to ban guns inside the premises. However, it is unlawful in some states for companies to search vehicles in parking lots, and companies who do so are violating the law, says Sorrells. Among the various state laws, some exempt public education institutions and other public venues. Depending on how the laws are written, there may be other exemptions, too. In Florida, for example, the law exempts any organisations that have explosives on site. With weapons on a company's property, a high-risk termination could potentially become violent Most laws require weapons to be stored securely out of sight. However, in Alabama, for example, it is legal to store validly permitted guns in full view during hunting season, Sorrells says. A resident of Alabama himself, Sorrells has been in the contract security business for 27 years, working mostly in multi-state operations. He has worked for 500 or so corporate security organisations throughout the country and is a practicing attorney who has studied issues of workplace violence and active shooters. “There is a political element to these laws, which were created with the goal of protecting Second Amendment rights,” says Sorrells, who says he sees arguments on both sides of the issue. However, political opinions aside, “if you’re a business owner, you have to contend with dozens of weapons on a company’s property,” he adds. “That could be an issue if a high-risk termination could potentially become violent. You have to assume there is a weapon in that person’s vehicle.” Sorrells' session will dive into the case law and illuminate some of the legal issues and how courts have addressed them GSX education program After the session, Sorrells hopes attendees will take away a good working knowledge of the state of the laws, how to comply with the laws, and issues such as posting of signs. The session will dive into the case law and illuminate some of the legal issues and how courts have addressed them. The timely session is an example of the valuable information attendees can gain by attending GSX. Sorrells has been attending the yearly ASIS International Conference and Exhibits for more than 20 years, at least since the mid-1990s. As the pre-eminent security organisation around the world, ASIS International provides unrivalled educational and networking opportunities at the yearly conference, he says. “There is a vast amount of networking and educational offerings on a wide variety of topics, including technology, legal issues, risk management, workplace violence, consulting, and anything under the sun,” says Sorrells. The newly branded GSX education program is led by subject matter experts from ASIS International, InfraGard (a public-private partnership between U.S. businesses and the Federal Bureau of Investigation), and ISSA (Information Systems Security Association). Sessions will deliver valuable, actionable takeaways to help attendees shape their security strategies. There will also be an exhibition of 550-plus suppliers and manufacturers highlighting the latest security solutions.

Security is more-than-ever linked to consumer electronics, especially in the residential/smart home market. CES 2018 in Las Vegas is therefore brimming with news that will have a direct impact on the security market, today and especially looking into the future. Products for the future of security   CES is a giant trade show for consumer electronics with 2.75 million net square feet of exhibitor space and featuring more than 3,900 exhibitors, including 900 startups - in contrast, ISC West has some 1,000 exhibitors. During the week-long show welcoming 170,000-plus attendees from 150 countries, more than 20,000 new products are being launched. The products incorporate ingredient technologies such as artificial intelligence and 5G that will also be familiar elements as the future of the security industry unfolds. Familiar players at security shows also have a presence at CES, and many consumer technologies on display offer a glimpse of what’s ahead for security The areas of consumer electronics and security are closely intertwined. For example, Apple recently expanded near-field communication (NFC) support to include the NDEF (NFC Data Exchange Format), which will likely accelerate the adoption of smartphones for access control credentialing. In another recent development, Amazon acquired Blink, a home security camera startup that offers wireless home security systems. The acquisition aligns with Amazon’s effort to offer more home devices. Key security technologies at CES 2018 Familiar players at security shows also have a presence at CES. For example, Bosch is highlighting its “Simply. Connected” portfolio of smart city technology to transform security as well as urban mobility, air quality and energy efficiency. Many consumer technologies on display offer a glimpse of what’s ahead for security. Are Panasonic’s 4K OLEDs with HDR10+ format or Sony’s A8F OLED televisions a preview of the future of security control room monitors? At CES, Johnson Controls is announcing support for Apple HomeKit now offered in their DSC iotega wireless security and automation solution. Consumers can manage both their security system and also other home automation abilities using Apple’s Home app, or Siri on their iPhone, iPad or Apple Watch. Interlogix is announcing new features and components of its UltraSync SmartHome system, including hands-free voice control, high-definition cameras, an LTE cellular module and soon-to-be-released doorbell camera. The areas of consumer electronics and security are closely intertwined Developments in crime awareness ADT has a high profile at CES, including the launch of its ADT Go mobile app, equipped with 24/7 emergency response from ADT’s live monitoring agents and backed by Life360’s location technology, providing emergency response, family connectivity, safety assistance and crime awareness.  ADT is also unveiling a video doorbell and expanding its monitoring to cybersecurity. IC Realtime is introducing Ella, a cloud-based deep-learning search engine that augments surveillance systems with natural language search capabilities across recorded video footage. Ella enables any surveillance or security cameras to recognise objects, colours, people, vehicles and animals. Ella was designed using the technology backbone of Camio, a startup founded by ex-Googlers who designed a simpler way to apply searching to streaming video feeds. It’s a “Google for video:” Users can type in queries such as “white truck” to find every relevant video clip. Smarter homes and smarter computers Do-it-yourself smart home security company Abode Systems announces iota, an all-in-one system giving customers more freedom and flexibility to build out and monitor their smart home. The new form factor has a built-in full-HD resolution camera enabling customers to see and hear what’s going on in their home 24/7 while a built-in gateway supports hundreds of devices to make homes more convenient, safer and more secure. There is also support for Apple HomeKit. Highly programmable and high-performance platforms will no doubt play a role in the future of video surveillance systems in our market  The Z-Wave Alliance will host 30-plus leading smart home brands in the Z-Wave pavilion at CES. A full walk-through home will demonstrate different brands working together to create one cohesive smart home experience. Sigma Designs unveils its 700-Series Z-Wave platform, including numerous performance and technology enhancements in energy-efficiency and RF performance. Personal protection in attendance Self-defence product company SABRE will debut a combination pepper spray with dual sound-effect personal alarm that “alternates between the traditional wailing sound and a primal scream, while a strobe blinks 19 times per second to disorient assailants.” SABRE’s Modern Fake Security Camera includes “sleek, realistic design to deter would-be thieves.” Chip maker Ambarella is introducing the CV1 4K Stereovision Processor with CFflow Computer Vision Architecture. The chip combines environmental perception with advances in deep neural network processing for a variety of applications, including video security cameras and fully autonomous drones. At CES, applications will focus on automotive uses, including advanced driver assistance systems (ADAS), self-driving, electronic mirror and surround view systems. The highly programmable and high-performance platform will no doubt play a role in the future of video surveillance systems in our market. A full walk-through home will demonstrate different brands working together to create one cohesive smart home experience Extending home security and efficiency  The Ring whole-house security ecosystem creates a “Ring of Security” around homes and neighbourhoods. Products include “Stick Up” indoor/outdoor security cameras, integrated LED lighting, a “Ring Alarm” integrated bundle for $199 including a base station, keypad, contact sensor, and Z-Wave extender. “Ring Protect Plans” include 24/7 professional monitoring. The “Streety” phone app, from Vivint Smart Home, extends home security into the neighbourhood. Streety makes it easy for neighbours to monitor neighbourhood activity through a network of shared residential cameras. They can keep an eye on kids, cars and property through live video feeds and use recorded video clips to investigate incidents. A new device making its debut at CES is the Walker “commercialised biped robot,” from UBTECH Robotics, which provides a complete home butler service and is designed to ease the day-to-day operations of a busy home or office. The varied of functions includes video surveillance monitoring, security patrol monitoring, motion detection and “instant alarm,” as well as dancing and playing games with children. The company says Walker will “bridge the gap between technologies that were once only available in scientific research institutions and everyday people.”

H-Farm has a strong track record supporting innovation and creativity in European start-ups. The company focuses on skills development, new approaches to education and digital transformation. Its most recent transformation project involved an access control system — for its own offices. H-Farm needed a solution to streamline access management for lots of people at a growing portfolio of sites and buildings. H-Farm experiences rapid turnover of users, both because new businesses join regularly and because they organise up to 300 events every year. Battery-powered locks Any new locks would need to extend an existing Axis system, but without adding complexity for day-to-day administration. To meet their needs, H-Farm selected a combination of Aperio® handles, security locks and escutcheons, each easy to retrofit, so day-to-day work at their busy offices would not be disrupted by intrusive installation. So far, 40 Aperio® Online H100 wireless door handles, 6 Aperio® Online L100 wireless locks and 4 Aperio® Online E100 wireless escutcheons have been fitted across multiple H-Farm locations in northern Italy. All Aperio® battery-powered locks are wireless, so no ugly cabling runs to H-Farm’s doors. Because Aperio® offers wide range of battery-powered devices, H-Farm can choose the precise wireless lock for every application: the L100 lock protects doors with high security demands; robust H100 handles suit interior doors with high traffic. Wireless access control Aperio® H100 enables customers to add doors to their access control solution because cost per door is lower H-Farm interior doors are mostly secured with the new Aperio® H100 wireless handle — Intersec’s Access Control Product of the Year in 2018. The Aperio® H100 packs the flexibility and affordability of Aperio® wireless access control into a slim, cleverly designed door handle. Its standard battery slots inside the handle, ensuring a minimal footprint. ASSA ABLOY’s device design team incorporated electronics into the handle lever on the outside of the door, without jeopardising security. Design has become a major feature of the H100’s appeal. H-Farm wanted devices to blend with the contemporary architecture of their new €101m H-Campus development. “Aperio® wireless access control hardware is solid, nice looking and perfectly fits our environment — solving our access problem,” says Alberto Aldrigo at H-Farm. The H100 and other Aperio® devices are easy to install; for the H100, basically two screws complete the job. Going forward, this will enable H-Farm to quickly bring new buildings into the same access system as they expand to fresh locations. The H100 fits around 90% of target doors with two main models: one for left-handled doors, the other right-handed. “The Aperio® H100 also enables customers to add more doors to their access control solution because the cost per door is lower,” says Tania Amico, Aperio® Sales Manager at ASSA ABLOY Italy. Seamless integration H-Farm managers want to control access to site doors, or bring entirely new premises into their access system The open architecture underpinning Aperio® devices enabled easy online integration with their existing Axis system via PRYSM AppControl. Remote operation from a single, central software interface is seamless, which makes administering the system easy. “The PRYSM AppControl software utilizes the integration Axis completed with Aperio®,” says Piergianni Marana, Key Account Manager at Axis. “And the AXIS A1001 Door Controller is based on open hardware, which makes installing and configuring an Aperio® wireless lock easy and seamless.” An Aperio® RS-485 Hub coordinates up to 8 Aperio® locks within a typical range of 15 to 25 meters, communicating with the admin system via the powerful AXIS A1001 IP Network Controller. One AXIS A1001 Door Controller can manage one wired door and one Aperio® hub, up to 9 doors per hub. AES 128-bit encryption ensures communication between lock and system is secure. Online Aperio® integration gives facility managers real-time status information about their premises. Aperio® locks are wireless, so there was no expensive or time-consuming cabling. The AXIS A1001 uses Power over Ethernet (PoE), which eliminates the need for power cables to the controllers, too. If needs change at a facility — perhaps H-Farm managers want to control access to more site doors, or bring entirely new premises into their access system — it’s quick, efficient and easy for an installer to fit Aperio® locks and integrate the doors with the AXIS Entry Manager control panel. To discover whether your existing security system is ready for wireless Aperio® locks, download a free, fast Compatibility Checker at https://campaigns.assaabloyopeningsolutions.eu/aperio-upgrade

With roots dating back to the year 1948, Italian pharmaceutical company Alfasigma is dedicated to advancing the state of healthcare under the company motto, ‘Pharmaceuticals with Passion’. Headquartered in Bologna, the multinational corporation was created in 2017 by the merger between Alfa Wassermann and Sigma-Tau. As a result, Alfasigma now employs about 3,000 people and markets a wide range of therapeutic drugs in 18 countries including the US, China, Russia and several European countries with annual revenues of EUR 1.06 billion. In order to keep up with the company’s ongoing evolution while emphasising building protection, Alfasigma decided to update the infrastructure of its corporate offices in Milan and Bologna. This large-scale remodelling project also required updating the fire alarm, intrusion detection and video security systems at both facilities to the highest standards. Security cameras for outdoor surveillance On the exterior of the buildings, FLEXIDOME IP starlight 7000 VR cameras were installed to provide 24/7 securityAssuming a long-term perspective, Alfasigma management headed into the project with three key requirements: First, saving cost by refurbishing already installed system components such as intrusion and fire alarm detectors. Second, accommodating for future building expansions and saving additional costs by installing a future-proof and scalable system. And third, adding around-the-clock security to the building’s exterior through modern security cameras built for outdoor use. For this reason, Alfasigma commissioned Bosch as the one-stop provider to equip the Milan office – home to the International Division – as well as corporate headquarters in Bologna with an IP-based solution. The video security set-up includes high-definition DINION IP 5000 HD cameras connected to recording stations and offering 1080p resolution images at 30 fps. On the exterior of the buildings, FLEXIDOME IP starlight 7000 VR cameras were installed to provide 24/7 security. Recording at 1080p and 60fps, the cameras incorporate starlight technology to deliver relevant images even in challenging light conditions. Extremely weather-resistant, water-tight and able to withstand high impacts, the cameras are highly suited for outdoor use, confirmed by IP66, NEMA type 4X and IK10 rating and installation in mission-critical environments such as airports and government buildings worldwide. MAP 5000 installed with LSN detectors The new fire alarm system is interfaced with the voice alarm system Plena via Smart Safety Link“The video surveillance products are excellent and have impressed me the most. We are very satisfied, above all, with the high quality of the products,” said Stefano Borsarini, Facility, Maintenance and EHS Manager at Alfasigma facilities in Bologna and Milan. The cameras are supplemented by the intrusion panel Modular Alarm Platform MAP 5000 installed with LSN detectors – a large portion refurbished from the legacy system – to safeguard Alfasigma’s offices at night. Fire alarm is provided by the Modular Fire Panel 5000 Series with four loops, processing signals from 190 fire alarm detectors and 28 manual call points. The new fire alarm system is interfaced with the voice alarm system Plena via Smart Safety Link thus optimising the operational security via a monitored connection. Successfully installed and customised according to client specifications, the Bosch fire alarm, intrusion detection and video security solution maintains the safety of Alfasigma’s employees and property at both sites. It also fulfils the key customer requirement of accommodating for future expansions in a modular, IP-based system that is able to keep pace with Alfasigma’s rapid evolution as an innovative multinational company.

3xLOGIC, Inc., a provider of integrated, intelligent security solutions, and a three-time Deloitte Technology Fast 500 winner, announces that the Bradley Business Center, located in Chicago, has installed a 3xLOGIC infinias CLOUD access control system throughout the redevelopment project. HTML Global, an IT Managed Services Provider (MSP), oversaw system installation and continues to provide remote system management. Bradley Business Center (BBC) is the largest redevelopment project on Chicago’s north side, comprising over 500,000 square feet, spread over 22 acres. The BBC offers a unique shared office environment for entrepreneurs and professionals and boasts a wide array of features and amenities. Controlling common areas Both organisations do the day-to-day administration of the system, with HTML Global providing back-up and higher-level functions At present, the 3xLOGIC infinias system manages a total of 43 internal doors throughout the complex, split between BBC-managed doors and those for a tenant company, Compass Health Center. The two organisations manage their own access separately but use some of the same network and PoE switches. BBC doors managed are mainly those controlling common areas and shared amenities— parking, fitness facility, rooftop terrace, and others—but also data rooms and other sensitive areas within the office space. Both organisations do the day-to-day administration of the system, with HTML Global providing back-up and higher-level functions when requested. “When we started with BBC, they were looking to us for our knowledge base, and we installed a few doors at that time. Then, we built out the system as they added new offices and common areas to be managed,” explained William Hunt, Managing Director, HTML Global. Cloud-based system “The distributed Ethernet network can easily handle all the doors and that simplified installation and on-going management. The BBC property management staff don’t want a server onsite, so a cloud solution nicely fits their needs. Another advantage for BBC is our RMR services and the fact that a cloud-based system is mainly operating expenses, not hardware capital expenses—that’s economically advantageous for a property management business.” “There are so many other advantages to a cloud-based system, especially our ability to add doors when any of the resident companies want to join the system, or to expand the number of doors for existing customers—we can add one door or hundreds of doors upon request,” said Hunt. “Compass likes the system functionality and ease-of-use so much, they recently expanded it to their Northbrook location, too. That way, when staff move between the two facilities, they only need one set of credentials.” Access control system Such high-level control and ease of use is accomplished with minimal hardware on site BBC controls access by zone and/or amenity for each credential holder, administrators can add zones and close access to other zones with a few keystrokes. Door control is granular, making it easy to provide all-areas access to senior staff and highly-limited access, for example, for contractors and temporary workers. Such high-level control and ease of use is accomplished with minimal hardware on site. Many administrators were up and running on the infinias system with very little training, if any. With a cloud-based access control system, new tenants can join the system with ease, or a tenant can be removed from the system in a matter of minutes. Fix things remotely Hunt again, “As an MSP, we are overseeing a system that updates itself automatically, and because BBC management doesn’t have a full-time IT person, that’s where we come in.” The future looks bright for HTML Global with the Bradley Business Center. Current office space is nearing fully-leased status, and BBC management is looking to expand their property offerings into additional buildings located on the same parcel. Hunt is impressed with another feature of the cloud-based system, “The network is set up on PoE switches, so if a door isn’t acting properly, we can fix things remotely, we don’t need to roll a truck—that’s very cost-effective.”

IDF Aluminium has installed transom closers, solenoid locks and hook locks from Alpro Architectural Hardware at a building in a historic section of London’s Finsbury Square. 4 Chiswell Street backs onto the Artillery Ground which has seen archery in Tudor times, some of the first organised games of cricket in the 1730s and even a hot-air balloon flight in 1784. The four-storey structure was refurbished by main contractor Parkeray to a design by Ben Adams Architects that created column-free office space with exposed concrete soffit and a signature golden mesh & grille facade based on curtain walling with bold circles. Automatic voltage regulation The glazing is unusual since the Reynaers’ curtain walling for the double-height reception uses innovative bracketry to support massive panes from Euroview Architectural Glass. The Alpro closers are on the distinctive gilt exterior doors and the client is also benefiting from solenoid bolts in the door heads. Alpro transverse action deadlocking bolts offer high levels of physical strength with holding forces of up to 2,000kg Alpro transverse action deadlocking bolts offer high levels of physical strength with holding forces of up to 2,000kg, a bolt throw of 14mm and models with oversize pins. The advanced microprocessor module provides power reduction allowing for continuous operation without heat generation as well as automatic voltage regulation, dual monitoring and access control features to fully monitor and control movement. Installers can use housings from the same series for surface mounting which facilitates the securing of glass doors. Dress plates are offered for a clean finish. Public sector environments The 4 Chiswell Street refurbishment was carried out with tenants in occupation and even involved use of abseiling techniques to replace glazing. A temporary reception was created for access and egress. Daylight has been maximised and floor-to-ceiling height is used wherever possible in a design that meets the Equality Act and includes a revised fire strategy. IDF specialises in the design, manufacture and installation of aluminium doors. The door projects are often in business and public sector environments where usage may be high but maintenance costs must be minimised. IDF has 30 years’ experience in the shop front and commercial door market. The company ensures a quality service by designing and fabricating all of its doors and shop fronts in-house with no use of sub-contractors. The client portfolio covers transport, local government, healthcare and education from schools through to universities.

An integrated security system that includes new IP cameras and two-way audio technology has seen the rate of injuries as a result of attacks on Post Office staff decline by 36% in just three years. This follows the deployment of a sophisticated monitoring and intelligent threat detection platform from Morphean, a Video Surveillance-as-a-Service (VSaaS) innovator, which has not only helped to keep staff safe but has also protected ATMs from attack, helping to keep Post Office doors open. Post Office is responsible for the safety and well-being of 14,500 workers in 11,600 branches. The very nature of their combined service offering and the fact they are often located in rural areas, means branches are prime targets for thieves. Threat intelligence Opportunistic attacks on staff and equipment, and the use of expanding gas to break open ATM machines is not uncommon Opportunistic attacks on staff and equipment, and the use of expanding gas to break open ATM machines is not uncommon. In rural communities, attacks on equipment can leave branches out of operation for long periods. In the last year alone, there were 13,437 violent attacks on convenience store workers, 27% of which involved a weapon and 39% led to injury, according to The Association of Convenience Stores (ACS) annual Crime Report. The Post Office security team wanted to build on its existing threat intelligence and response system, Grapevine, with a network of IP cameras and two-way audio into branches. Axis Communications cameras, microphones and speakers, connected to the Morphean Platform and hosted in the cloud, were installed in pilot branches by Kings Secure Technologies. Security automation Now that trial implementations have been completed successfully, the security team plans to expand coverage rapidly. In addition to the cameras, the networked speakers enable control centre staff to speak directly to customers and suspected criminals, alerting them to the fact they are under surveillance. The solution is also optimised to use low bandwidth dataFurther integrations are under way to bring security automation to other branches, such as providing the ability for remote agents to lock on-site safes in the event of an attack. Because of the challenges around connectivity in the areas where the most vulnerable branches are situated, the solution is also optimised to use low bandwidth data and is capable of streaming video over a 3G mobile network. Built-in intelligence The built-in intelligence of the Morphean Platform means staff are able to monitor footage for suspicious behaviour, such as individuals loitering near an ATM, and issue an alert to security teams who can then decide on the appropriate course of action. If it’s someone trying to find their wallet, no action is taken; if a crime is in progress, police will be notified along with video footage. In addition, staff are able to trigger an alert manually using an under-the-counter activation button, which can be investigated immediately by control centre staff at the alarm receiving centre (ARC). “The safety of our staff is our number one priority,” says Physical Security Manager for Post Office, Mark Dinsdale. Make significant differences Footage goes straight to the Morphean cloud, and the platform compresses video and is fully encrypted end-to-end" “We’ll never completely eliminate crime in our branches, but we are also not powerless against it and we are able to make significant differences to the safety of our people, as demonstrated by the new technology we are deploying.” “Post Officers, particularly those in remote areas without access to a nearby police station, value the easy access to help and now report feeling much safer at work,” he concludes. Paul Ottley, Account Director at Kings Secure Technologies, says there are more subtle benefits to the Morphean Platform. “Footage goes straight to the Morphean cloud, and the platform compresses video and is fully encrypted end-to-end. This means that even if criminals attempt to destroy cameras or on-site storage appliances, recordings of any incidents are secured in a manner that is admissible as evidence. This eliminates the challenge of sending out an engineer to collect footage. It’s a simple solution that is flexible and fully compliant with regulations such as the GDPR.”

Interphone, the security systems and building technology integrator, completes an advanced project for Ardmore Construction at the high-profile Sutton Point development, a vibrant new community at the heart of the London Borough of Sutton. The company was appointed to design and install the integrated security systems, which includes fibre infrastructure, BPT door entry, PAC access control, IP-networked CCTV and an IRS communal aerial system with SKY Q. The installation has been recognised by the UK Outstanding Security Performance Awards (OSPAs) with Interphone nominated as a 2019 finalist in the Outstanding Security Installer category. Fibre backbone network The Interphone project team took the decision to move to fibre infrastructure to improve performance “Through the effort and commitment of our team the project was successfully completed on-time, within budget, and to the highest possible standards notwithstanding design changes in the building along the way, which required modification to our own design and approach to aspects of the installation,” explained Albert Dwek, Sales Manager at Interphone Limited. In particular, the Interphone project team took the decision to move to fibre infrastructure to improve performance and ensure it could deliver a high-specification security system. As a result, the company created a fibre backbone network, which allows CCTV images to be viewed in true 1080p/4k without compromising any other components of the system. Responsive working relationships Interphone worked closely with services engineers QuinnRoss Consultants Limited throughout the project. Michael Keenleyside, Electrical Engineer at Quinn Ross commented: “We pride ourselves on our ability to deliver the best possible service and solution for each of our clients, so it is essential to have highly responsive working relationships in place with key technology partners.” “Interphone was flexible and adaptive throughout the design and installation phases of the development, which ensure that any changes to system requirements were handled quickly and efficiently. Their team’s knowledge, understanding and commitment was essential to the success of the project.” The sophisticated CCTV solution incorporates a site-wide, IP-networked camera system and full-perimeter PTZ (Pan Tilt and zoom) camera system from HIKvision. Greater compression The full-perimeter system runs in real-time over three towers, three remote stations and two virtual concierge points with interlock ability The full-perimeter system runs in real-time over three towers, three remote stations and two virtual concierge points with interlock ability. The external PTZ camera images, recorded onsite, are also shared with the local police. This means the management company can keep the site secure for its residents, while allowing the police to protect the area in and around the development against crime. The PAC access control system enables all management tasks related to the tenants and staff to be administered from the central computer as and when required, ensuring the highest level of security around the site and added peace of mind. Meanwhile, BPT’s XIP door entry system offers significantly greater compression, providing the clearest and highest quality AV currently available, even with the significant background noise. Building communications The added PCS concierge facility also has improved switchboard software performance, delivering full control of building communications at two desks, so the system will never be engaged and never miss a visitor call. The primary focus when designing this project was the delivery of a system that could expand to meet changing requirements" “The primary focus when designing this project was the delivery of a system that could expand to meet changing requirements. As a result, we have implemented a system that not only uses the most up-to-date technology, but by its design, has been future proofed with the ability to grow. Therefore, the developer can meet all its internal requirements and ensure high levels of security for residents, visitors and members of the public,” commented Dwek. Technical capabilities David Dobouny, Operations Director at Interphone Limited added: “We are committed to the highest levels of service delivery. This project was selected to demonstrate our technical capabilities covering access control and CCTV systems for our NSI accreditation. We achieved a grade A rating, with zero faults and no negative comments regarding on-and off-site documentation, design and installation. This is a fantastic achievement for everyone involved, especially considering the size of the project.” Sutton Point is a large-scale mixed-use scheme located close to the town centre. The high-profile development included the full demolition of an existing tower, and the design and construction of 332 one-and two-bedroom apartments, prime three-bedroom penthouses, 21,000 square feet of retail space, 18,000 square feet of office space and an 80-bedroom hotel.

The concept of how security systems can contribute to the broader business goals of a company is not new. It seems we have been talking about benefits of security systems beyond “just” security for more than a decade. Given the expanding role of technologies in the market, including video and access control, at what point is the term “security” too restrictive to accurately describe what our industry does? We asked the Expert Panel Roundtable for their responses to this premise: Is the description “security technology” too narrow given the broader application possibilities of today’s systems? Why?

Sometimes customers expect more out of a security system. A brand new security system just doesn’t perform as the customer expected it would. In fact, one might argue that the many variables in today’s complex systems make it more likely than ever that some element of a system might not measure up to a customer’s expectations. What happens then? We asked this week’s Expert Panel Roundtable: What happens if a customer’s expectations of system performance are greater than what a physical security system can deliver?

What lessons, if any, are there to be learned from the recent attacks in Paris? Recent events in Paris highlight the deadly and changing face of terrorism in 2015. Two gunmen armed with Kalashnikov assault rifles attacked the Paris offices of satirical magazine Charlie Hebdo on 7 January, killing 12 people in all, including eight Charlie Hebdo employees and two national police officers. Two days later, the terrorism continued with a hostage crisis at a printing firm at Dammartin-en-Goel and at a kosher supermarket in Paris, where four hostages were murdered before the assailant was killed by police. The world has been shocked by the events, and many are evaluating what we can learn from them to help us prevent or minimise such future attacks. We asked our panel if there are lessons to be learned specific to the security industry.