Genetec Inc., a globally renowned technology provider of unified security, public safety, operations, and business intelligence solutions, has announced that a patent infringement lawsuit initiated by a non-practicing entity (NPE) was withdrawn by the NPE, at an early stage of the proceedings. “We don’t negotiate payment with patent trolls,” said Pierre Racz, President of Genetec Inc. In a rare result, the NPE paid an undisclosed sum to Genetec Inc. In patent litigation in th...
Cozaint Corporation, manufacturer of ‘smart’ physical security platforms, has announced the launch of the BOBBY-W wall-mounted physical security kiosk. Available immediately, this ‘Video Surveillance as a Service’ (VSaaS) device has been designed to augment human security guard environments that need additional eyes and ears on their premises. BOBBY-W physical security kiosk BOBBY-W is based on a custom, Cozaint-built expandable platform that allows for the integration...
CertiPath, an innovator and renowned company in high-assurance identity, credential and access management services for highly regulated environments, has announced the appointment of industry veteran, Jack L. Johnson, Jr. as Advisor to CertiPath’s Board of Directors, effective immediately. Johnson has over 30 years of industry experience that includes executive positions with Guidehouse Consulting and its legacy firm, PricewaterhouseCoopers, the Department of Homeland Security as it...
STANLEY Security, a global integrator of comprehensive security solutions and an electronic security company, has announced its investment in Evolv Technology, the globally renowned company in artificial intelligence (AI)-based touchless security screening. This investment, backed by STANLEY Ventures, the venture capital arm of Stanley Black & Decker, forms a strategic partnership between the two companies. Evolv Express Evolv Express, the company’s touchless security screening syst...
The National Security Inspectorate (NSI) announces its accreditation from the Living Wage Foundation as a Living Wage Employer. NSI endorses the Living Wage Foundation’s principles recognising this independent movement of businesses, organisations and people campaigning on the simple ethic that ‘a hard day’s work deserves a fair day’s pay’, an integral part of many organisations’ corporate social responsibility. Living Wage Foundation The Foundation celebra...
Check Point® Software Technologies Ltd., a provider of cybersecurity solutions globally, has introduced its Internet of Things (IoT) Protect solution to secure both IoT devices and networks in smart building, smart city, healthcare, industrial and critical infrastructure environments against all types of advanced Gen VI cyber-threats. The solution delivers threat prevention and security management capabilities to block even unknown cyber-attacks at both IoT network and IoT device level, usin...
SALTO Systems, a globally renowned manufacturer of electronic access control solutions, has appointed Scott Smith as Regional Sales Manager for the Great Lakes Region. Based in Kentucky, Smith will oversee sales activity and territory growth in Kentucky, Ohio, Indiana, Illinois, Michigan, and Eastern Wisconsin. He reports to SALTO Senior Vice President of Commercial Sales, Michael J. Mahon. Valuable security experience “Scott has a great deal of experience in sales in the Great Lakes area which is a very important region for SALTO as we continue to build and grow in the area,” said Michael J. Mahon, adding “We’re excited to have Scott on our team and representing SALTO as his valuable security experience will serve our end users and dealers in the area very well.” While at Aiphone Corporation, Smith served as a Senior Sales RepresentativeSmith comes to SALTO from Aiphone Corporation, one of the most respected and reliable security communication systems brands worldwide. While at Aiphone Corp., Smith served as a Senior Sales Representative for building and maintaining relationships with dealers, architects and engineering firms, distribution partners, and integrators throughout Ohio, Kentucky, and Indiana. Senior sales expert Prior to becoming a Senior Sales Rep., Smith served in the role of Regional Sales Representative for Aiphone Corporation for more than five years. “I’m excited to have joined the SALTO family,” said Smith, adding “Having been in the security industry for over a decade, I am very familiar with SALTO’s innovation and delivery of best-in-class technology. When the opportunity to join SALTO was presented, it was an easy decision to make.” He further said, “The recent weeks spent with the SALTO team have only confirmed what I already know – I’m working with the best. I look forward to sharing the wide variety of SALTO’s innovative solutions with clients I’ve known for years as well as with new organisations that will be better served by the trusted and reliable SALTO brand.”
Sonitrol of SW Ohio has acquired Sonitrol of Butler County and their non-Sonitrol company Southwestern Ohio Security. The acquisition officially closed effective July 6th, 2020. The firm, that operates an independent franchise of Sonitrol, has served the Greater Cincinnati and Northern Kentucky areas since 1971. Business expansion The expansion is reflective of both their ongoing commitment to local and surrounding communities as well as a market need in both the residential and commercial security sectors. Strategically, the acquisition affords consolidation, uniform local monitoring from their proven Central Station, and will establish additional market penetration in Southwest Ohio and Northern Kentucky. “We’re excited about the opportunity to do what we do best for even more people and businesses across Southwest Ohio and Central Ohio,” said Chip Shiver, President of Shiver Security Systems and Sonitrol of SW Ohio, adding “Our technology, our local monitoring station, and our ever-important partnership with local police are the key factors in our continued growth.” Strategic acquisition It’s always about people and we believe we have the very best talent in the region when it comes to professional security" Chip adds, “It’s always about people and we believe we have the very best talent in the region when it comes to professional security. Combining two organisations with a very similar footprint in relatively the same market makes this acquisition very exciting for us. Simply put, we are merging two longtime Sonitrol families, which create additional market penetration for the organisation.” Mike Pope, President of Sonitrol said, “The merger of our staffs will provide our clients with a local U.L. central station and an increased number of technicians to provide a level of service unmatched in Southwest Ohio and Northern Kentucky. Many of our family members over the decades have been a part of our organisation.” He adds, “Our dedicated and professional staff, which has been dependable and loyal for 48 years, is family too. Rex Shiver and Jim Pope built the foundation for both companies. I am sure that Rex and Jim are looking down and saying, Congratulations sons!" Sonitrol of Butler County Sonitrol of Butler County was established in the early 70’s by Mike Pope’s father, Jim Pope. Mr. Pope stepped in to take over from his father several years ago to grow and run their organisation. Pope and Shiver share a similar story of family leadership. The two also recount a bit of nostalgia as Shiver’s father sold Pope’s father his Sonitrol franchise nearly fifty years ago. Sonitrol of SW Ohio continues to add local security professionals to their roster making them one of the largest security firms in the region.
SALTO Systems, a globally renowned manufacturer of electronic access control solutions, has received carbon-neutral declaration for its factory headquarters in Spain and across all of its operations. Edge electronic access control Carbon neutrality is achieved by calculating a carbon footprint and reducing it to zero through a combination of efficiency measures in-house and supporting external emission reduction projects. SALTO’s renowned edge electronic access control hardware and software technologies are in use in more than 15,000 installations worldwide, with an estimated 14 million daily users. SALTO has local offices in 25 countries including the United States and Canada. Carbon-neutral certification Receiving the carbon-neutral declaration is a great honour for SALTO as one of the company’s primary missions is to deliver electronic access control in an environmentally responsible manner. SALTO has focused on achieving carbon neutrality through ambitious reductions in emissions across all stages of the product life cycle including design, production, energy efficiency, and recycling. We want to lead the way in the delivery of sustainable keyless and smart access control solutions" "We want to lead the way in the delivery of sustainable keyless and smart access control solutions by providing our customers with smart lock products and services that reflect their own values,” said SALTO Chief Executive Officer (CEO) Javier Roquero. He adds, “We are very conscious of our responsibility to consider the environmental, social, and economic impact of our organisation and today’s news about our carbon neutral achievement is just the latest stage in this journey." Sustainable and green energy generation One hundred percent of SALTO’s electricity is generated by either on-site solar panels or purchased as certified green electricity. All emissions that cannot be eliminated are compensated with the Madre de Dios Amazon Forest Conservation Project. This verified carbon offsetting project reduces deforestation and helps to establish sustainable forest management practices. “This achievement reflects almost two decades of work to make SALTO Systems as energy and carbon-efficient as it can be,” said Roquero, adding “The initiatives that SALTO has undertaken to achieve carbon-neutral certification demonstrate our company’s commitment to becoming more sustainable. We are very proud of our success!”
ASIS International, the globally renowned association for security management professionals, has announced that General Stan McChrystal, US Army (RET), will present a Global Security Exchange Plus (GSX+) keynote address on Military & Law Enforcement Appreciation Day at GSX+. The presentation, titled Leading in a New World, will take place on Wednesday, 23 September. Global Security Exchange Plus “GSX+ offers a unique opportunity to share the insights and guidance from global thought leaders,” said Godfried Hendriks, CPP, 2020 President, ASIS International, adding “We are thrilled to have General McChrystal on our lineup to share his insights on leadership in an ever-changing global landscape on Military & Law Enforcement Appreciation Day at GSX+.” A retired four-star general, McChrystal is the former commander of US and International Security Assistance Forces (ISAF) Afghanistan and the former commander of the nation’s premier military counter-terrorism force, Joint Special Operations Command (JSOC). He is best known for developing and implementing a comprehensive counterinsurgency strategy in Afghanistan, and for creating a cohesive counter-terrorism organisation that revolutionised the interagency operating culture. Crisis management and strategic operations McChrystal will provide practical and actionable guidance on what it takes to lead in a rapidly shifting world landscape In his GSX+ presentation, highlighting lessons from his crisis management and strategic operations playbook, McChrystal will provide practical and actionable guidance on what it takes to lead successfully in a rapidly shifting world landscape. In this insightful keynote, he will address such key leadership principles as transparency and inclusion, leveraging the power of teams through relationships, leading by influence, relentless mission focus, and sharing a clear vision with everyone who must execute against it, all against the shifting backdrop of the ever-evolving remote workplace. Military services veteran Throughout his military career, he commanded a number of elite organisations, including the 75th Ranger Regiment. After 9/11 until his retirement in 2010, he spent more than 6 years deployed to combat in a variety of leadership positions. In June 2009, the President of the United States and the Secretary General of NATO appointed him to be the Commander of US Forces Afghanistan and NATO ISAF. His command included more than 150,000 troops from 45 allied countries. On 1 August 2010 he retired from the US Army. Military & Law Enforcement Appreciation Day He is the New York Times bestselling author of My Share of the Task, Team of Teams: New Rules of Engagement for a Complex World, and Leaders: Myth and Reality. A passionate advocate for national service and veterans’ issues, McChrystal is the Chair of the Board of Service Year Alliance. He is a graduate of the United States Military Academy at West Point and the Naval War College. GSX+ is a new online experience that delivers the industry-renowned education sessions, robust marketplace, and unique peer-to-peer networking opportunities that security professionals have come to expect from the live GSX event. During Military & Law Enforcement Appreciation Day, all military, law enforcement, and first responders receive free one-day admission to GSX+.
Patriot One Technologies Inc., is pleased to announce a development partnership with ecoMine Technologies Corporation (ecoMine) to advance ecoMine’s innovative, low-cost, on-the-spot pathogen screening technology, ecoScreen. ecoScreen screening technology ecoMine’s technology platform, ecoScreen has significant potential in this current pandemic, (especially when it comes to enabling the safe return to work across multiples sectors of the economy) as well as a broad range of other pathogen detection applications beyond COVID-19. ecoMine has been selected by Canada’s Digital Technology Supercluster (the ‘Supercluster’) as a feasibility project under its recent COVID-19 program, to enable the proof of concept development and prototyping of COVID-19 antigen screens, integrated into a secure digital assurance platform to provide a holistic approach to workplace health and public safety. On-the-spot pathogen screening solution We are delighted to be working with ecoMine, which is allowing us to carry out our mission to create safer communities" “We are delighted to be working with ecoMine, which is allowing us to carry out our mission to create safer communities by detecting threats facing our global citizens,” expressed Martin Cronin, CEO of Patriot One. He adds, “This on-the-spot screening solution, ecoScreen is highly innovative and has the potential to become a significant element within our expanding PATSCAN Platform and will assist our resellers and their end client users to build safe environments within their facilities.” Creating secure data architectures “Partnering with Patriot One Technologies on this COVID-19 Program was ideal,” said Rob Greene, CEO of ecoMine. He adds, “Patriot One is an AI-driven technology firm that has the deep technical expertise to help us create secure data architectures based on our on-the-spot-screening solution, and they have a powerful network of security system integrators able to work with property owners to create safe, secure locations for their staff, customers and partners.”
Research carried out by a renowned Cyber Security company, Intruder has revealed that on average, an exposed Mongo database is breached within 13 hours of being connected to the internet. The fastest breach recorded was carried out 9 minutes after the database was set up. MongoDB database program MongoDB is a cross-platform document-oriented database program that consistently ranks in the top 5 most-used databases worldwide. It is used by a wide range of organisations all over the globe to store and secure sensitive application and customer data. There are 80,000 exposed MongoDB services on the internet, of which 20,000 were unsecured. Of those unsecured databases, 15,000 are already infected with ransomware. Honeypots to check on data breaches Intruder set up a number of unsecured MongoDB honeypots across the web, each filled with fake data. After seeing how consistently database breaches were occurring, Intruder planted honeypots to find out how these attacks happen, where the threats are coming from, and how fast it takes place. Intruder set up a number of unsecured MongoDB honeypots across the web, each filled with fake data. The network traffic was monitored for malicious activity and if password hashes were ex-filtrated and seen crossing the wire, this would indicate that a database was breached. Countering rising cases of cyber-attacks Intruder's latest research shows that Mongo databases are subject to continual attacks when exposed to the internet. Attacks are carried out automatically and indiscriminately and on average an unsecured database is compromised less than 24 hours after going online. At least one of the honeypots was held to ransom within a minute of connecting. The attacker erased the database’s tables and replaced them with a ransom note, requesting payment in Bitcoin for recovery of the data. Cyber-threat from unknown global sources Attacks originated from locations all over the globe, though attackers routinely hide their true location, so there’s often no way to tell where attacks are really coming from. The fastest breach came from an attacker from Russian ISP ‘Skynet’ and over half of the breaches originated from IP addresses owned by a Romanian VPS provider. Chris Wallis, Founder and Chief Executive Officer (CEO) of Intruder stated, “It's quite possible that some of the activity recorded was from security researchers looking for their next headline or data for their breach database. However, when it comes to a company’s security reputation, it often doesn’t matter whether the data is breached by a malicious attacker or a well-meaning researcher.” He adds, “Even if security teams can detect an unsecured database and recognise its potential severity, responding to and containing such a misconfiguration in less than 13 hours may be a tall order, let alone doing so in less than 9 minutes. Prevention is a much stronger defence than cure.”
We are slowly returning to normal after the COVID-19 pandemic that has swept the world. The journey to normality is going to see a large number of changes, and the physical security arena is set to be front and center in both implementing changes to keep the rest of the organisation safe and within their own policies and procedures. Our return to work journey can be broken down into a number of areas for consideration. This is by no means an exhaustive list but will highlight the areas in which a security team can offer valuable insight and direction, and also some areas that end users may wish to consider as security leaders. Processes and procedures Employees returning to a site is going to be a major step for any organisation, and this is where security leaders are going to be called upon to help. In these times of enforced social distancing, lockdown procedures, deep cleaning and personnel interaction protocols, each COVID protection program has a process to follow and this is the first place a security operations team may lend their experience. Physical security is built upon and relies on procedures and processes that must be strictly followed to be successful. These processes may be translated into the wider organisation to help minimise confusion as the site becomes more populated. It is also a good time to review your own policies and procedures to ensure that they are adapted to meet the needs of the organisation as people return to work. It is likely that you will have to increase the number of patrols or guards at access points, and you may have a new investigative process to consider for track-and-trace requirements, should there be a positive COVID-19 result. Monitoring The Security Operation Center (SOC) is likely to become an even more important part of the day-to-day operations on site. It acts as the centralised point for monitoring and incident management and may be subject to greater strain, incidents and demands than before. Ensuring that your SOC is suitable and equipped to handle these operations is key. While you may not have enough security staff to actively monitor your entire camera estate, video analytics provide a key ally. Many VMS manufacturers have simple video analytics built into their software, but there are specific tools available to help detect infractions around social distancing: people counting in a specific area to avoid over-crowding and a de facto fail on the social distancing measures; mask or PPE wear detection to ensure that people are appropriately dressed for their own protection; and people movement monitoring makes sure your employees aren’t bypassing the one-way system that you’ve implemented. An alert can be set up to identify when employees get within 6 feet of each other A particularly useful technique here is object distancing, where an alert can be set up to identify when employees get within 6 feet of each other for an extended period of time, aiding you in social distancing requirements. A second is built on wrong direction monitoring and will ensure that the one-way systems you create are being followed by staff and public alike as the analytic is capable of determining direction of travel for a pedestrian. A more advanced analytic may be the detection of PPE and ensuring that staff are wearing the appropriate masks and protective gear, although this is relatively dependent on strong camera positions and ensuring that the field of view is appropriately configured. There are a number of options to integrate with your access control systems, both physical and technology based. Thermal cameras and temperature probes may be used at entry points to ensure that anyone with a fever isn’t admitted to a location (although be careful when selecting a thermal camera and do thorough research on the temperature variation that it is able to detect). Human-to-human interaction Your physical security team is often the first human point of contact for your employees and often the most important. It may be necessary to increase your patrol and guard workforce temporarily to ensure that all entrances are covered and that entry procedures are tightened up or enhanced. I am confident that employees won’t mind an extra minute or two at the entrance for the improvement in their own health and wellbeing. If you do have an incident, perhaps where an employee is felt to be breaking the rules by not distancing appropriately, or ignoring mandated procedures, then your guard and patrol teams become vital peacekeepers in defusing and de-escalating the incident. Those same team members should also be trained in incident control and investigation, and with a well configured security environment (surveillance, electronic access control, personnel checks, etc.), they should form the basis of the track and tracing process of all staff that were on site and in contact with an infected employee should the worst happen and you have a positive COVID test returned. Protecting your security personnel Physical security operations team should be fully equipped with appropriate PPE This leads to my final point: your physical security operations team should be fully equipped with appropriate PPE, both while on patrol and in the SOC. Installing plexiglass panels between monitoring stations and spacing the monitoring stations appropriately should be the minimum first step. If your team is large enough, implementing a split A and B team is another possibility, with no interaction or risk of cross contamination between the teams, and a deep cleaning of the SOC and each guard station at the end of every shift. This ensures that you’ve covered at least 50% of your personnel in case of a COVID-positive event to keep operations moving, but also helps to create a contained working environment for this critical security function. If you have the space and the equipment, creating a secondary SOC, or engaging a remote GSOC (Global SOC) provider will improve your monitoring capabilities (GSOC companies are usually equipped with the latest video monitoring technologies) and reduce the risk of cross contamination. As you’ve read, there are many ways in which your physical security operations team can aid you in a successful return to work, playing a vital function in monitoring, managing and interceding in your organisation. One final note: thank you to those front-line personnel for their tireless efforts in keeping us safe and healthy.
The oil and gas market is driven by a number of technology trends, political issues, waves of supply and demand, and regulations. At times, it seems like the market is in a constant state of ebb and flow, with business affected by traditional drivers, such as government mandates and operational efficiencies, and other non-traditional markers, like challenging weather conditions (consider the 2017 hurricane season as an example). Additionally, the global economy continues to grow, propelling increased energy demand. But like nearly every other market today, the oil and gas market is on the brink of a sea change. According to Deloitte’s 2018 outlook on oil and gas, “the digital revolution is here.” The sheer volume of information and data generated by digital devices, such as those associated with the Internet of Things, will allow producers to leverage rich data and combine it to deliver smart, efficient solutions. The rise of digital technologies is unleashing new ideas across the oil and gas industry and even though we are in the beginning stage of being able to harness the power of these types of technologies, innovative ideas are emerging — all designed to support the core business, reduce internal investments, deliver products faster, boost efficiencies, and enhance safety. Maximised operations and increased ROI This ongoing growth propels energy producers to embark on extensive exploration and production activities to meet increased demand This is welcome news because there are a number of challenges facing the oil and gas industry, from improving reserve replacement and ensuring workplace safety to reducing operating costs and limiting downtime. All of these objectives must be achieved while maximising operations and increasing overall return on investment. Never has it been more crucial for critical infrastructure organisations to demonstrate a focus on safety, security, and collaboration. Here's why: Growth and demand According to the U.S. Energy Information Administration, world energy consumption will grow by 56 percent between 2010 and 2040. This ongoing growth propels energy producers to embark on extensive exploration and production activities to meet increased demand. As energy-centric organisations look to emerging markets or remote regions to source production, safety becomes even more mission-critical to their success. Compliance Continuous demand is only one challenge; compliance with industry and government regulations is another significant hurdle that must be maintained or there is risk of production shutdowns. For example, the Department of Homeland Security’s Chemical Facility Anti-Terrorism Standards (CFATS) impose comprehensive federal regulations for high-risk chemical facilities, requiring organisations to conduct vulnerability assessments. This is just one of many regulatory procedures sites must follow to conform to environmental protections, safety precautions, and safe handling of hazardous materials. As energy-centric organisations look to emerging markets or remote regions to source production, safety becomes even more mission-critical to their success Threat protection, mitigation, and collaboration In addition to meeting the requirements of regulatory procedures, mitigating risk in this industry propels leaders to develop stringent strategies to ensure robust protection of people, property, and assets, effective and efficient response to incidents when they occur, and procedures and protocols to ensure business continuity in emergency situations. Energy providers require comprehensive safety planning and technology systems that can augment the capabilities of on-site and remote personnel. In recent years, video solutions have become the standard for monitoring facilities, assets, and employees, and now these organisations require enterprise-class solutions that can help gather intelligent data that allows for enhanced security and safety efforts but also focus on processes that enhance operational efficiencies. Cyber-attacks are becoming increasingly more complex and sophisticated in the oil and gas market IT security is also a concern. Cyber-attacks are becoming increasingly more complex and sophisticated in the oil and gas market. An IT breach can cause operational havoc, risk to the public, and damage to an organisation’s brand. Adopting a continuous improvement approach to a security strategy safeguards and helps protect valuable company information and reduces the likelihood of an incident. Also, collaboration between IT and physical security leaders and the correlation of both departments' data makes it much easier to identify a potential breach before havoc ensues. The digital age With the rise of the digital revolution and the demand for data to improve insight, oil and gas producers and businesses need to find new ways to capture data, correlate it as needed, and then leverage it to make the most informed decisions. Software platforms are being used in a wide variety of applications to provide a single pane-of-glass view that allows operators to gain critical insight into operations. By collecting intelligence from digital sensors, such as video surveillance cameras, open-source Web intelligence, building systems, crowdsourcing, weather sensors, mobile devices, and more, operators can detect potential risks and manage and respond to situations more efficiently. Furthermore, information can be shared easily with multiple agencies, employees, citizens, and first responders — especially valuable in the event of a safety incident where rapid response is paramount. By creating a single enterprise-wide view across disparate systems and technologies, organisations experience improved response times, lowered operational costs, and increased employee safety. Cyber, traditional security, digital devices, and situational awareness technologies combine to deliver an integrated, automated, and adaptive architecture to efficiently mitigate advanced threats in real time or forensically Traditional command centers Intelligent solutions, such as those derived from the idea of artificial intelligence, help organisations make sense of vast amounts of data. These integrated applications, such as advanced video analytics and facial recognition, can automatically pinpoint potential breaches and significant events, and send alerts to the appropriate personnel, departments, and agencies. These solutions can be powerful in unifying disparate command center technologies within the oil and gas industry, fusing critical data input from emergency calls and responder activity to enhance situational awareness. With traditional command centers relying mostly on call and radio updates, visibility can be limited, but new digital platforms enable operators to oversee a situation and engage with and direct the response force. Overall, these types of automated functions deliver a simplified and modernised operating environment. The future is the Intelligent SOC Oil and gas facilities can implement a proactive approach to safety and better mitigate threats and protect assets All of these digital solutions are designed to take center stage within the Intelligent Security Operations Center (ISOC). To combat advanced, multi-stage threats, oil and gas facilities are transforming the traditional SOC into the next-generation unified ISOC with an integrated platform for detection, investigation, communication, and response. Cyber, traditional security, digital devices, and situational awareness technologies combine to deliver an integrated, automated, and adaptive architecture to efficiently mitigate advanced threats in real time or forensically. Energy providers operate in challenging, fast-moving environments in which opportunities, requirements, and regulations can vary widely, change quickly, and evolve significantly over time. As the idea of the digital age continues to transform this market, new technologies will be more widely used to improve business operations from exploration and extraction to transportation and distribution. With the right technology, strategic partnerships, and enhanced situational awareness, oil and gas facilities can implement a proactive approach to safety and better mitigate threats and protect assets, while continuing to focus on achieving business goals that will sustain supply and demand for years to come.
According to the reports of not-for-profit organisation Gun Violence Archive, the year 2018 has seen 323 mass shooting incidents as of November 28 in the United States. This number is 346 for the year 2017 and 382 for 2016 (more statistics are available here), with “mass shooting” defined as cases where four or more people are shot or killed in the same time period and location. While definitions of mass shooting vary with organisations in the US, the count of over 300 incidents per year, or about once per day on average, is simply alarming. It raises public safety concerns, ignites debates and protests, which in turn lead to public unrest and potentially more violence, and increases costs for governments from the regional to federal level. Most importantly, the loss of lives demands not only improvement in post-incident handling and investigation, but also new prevention technologies. Gunshot detection solutions AI weapon detection offers a more efficient alternative to prevent active shooting There are several gunshot detection solutions in the security market, commonly used by law enforcement agencies to detect and locate gun fires. These systems function based on acoustic recordings and analyses and often in combination with signals detected by sensors of the optical flash and shockwave when a gun is fired. However, gunshot detection by nature dictates that the law enforcement can only react to a shooting incident that has occurred. With fast action, law enforcement can prevent the incident from escalating, but lives that are lost cannot be recovered. With the development of artificial intelligence in object recognition, AI weapon detection offers a more efficient alternative to prevent active shooting: AI can visually detect guns based on their shapes before they are fired. The AI is trained to recognise firearms in different shapes, sizes, colours, and at different angles in videos, so that the AI weapon detector can be deployed with existing cameras systems, analyse the video feeds, and instantly notify security staff when a gun is spotted. Comparison of the advantages for law enforcement and public security agencies Legacy gunshot detection using sensors AI weapon detection Reactive measure: detect after guns have been fired Proactive measure: detect before guns are fired Time to action: within 1 second Time to action: within 1 second Unable to provide visual data about shooter(s) Can provide data about shooter(s) based on the camera recording: clothing, luggage (backpack, handbag, etc.), facial features, vehicle Unable to track the location of the shooter(s) before and after shooting because of the lack of sound Can track the shooter(s) using AI Person & Vehicle Tracking, AI Face Recognition, and AI License Plate Recognition False detection caused by similar sound such as fireworks and cars backfiring Minimal to no false detection, as AI can distinguish different types of handguns and rifles from normal objects (umbrella, cellphone, etc.) Require physical deployment of gunshot detection sensors Can be used with existing camera systems, do not require special hardware Complicated to deploy, require highly trained professional Easy to deploy as an add-on to existing video surveillance system - Can integrate with gun-shot detection to create a “double knock” audio and video active shooter alert system Gun-shot detection advantages In addition to advantages for law enforcement and public security agencies, this type of visual-based pre-incident detector has three-fold advantages for the public: Save lives by spotting the shooter before the shooting event. Minimise the chaos entailing an incident: panic and chaos caused by a shooting incident often adds to injury, as people run, fall, trample on others… With an AI weapon detector, when a gun is spotted, the system sends an alert to security staff, who can quickly control the situation in an organised manner and apprehend the intending shooter. Can be added as a SaaS (Security as a Service) component to small business and home surveillance systems, e.g., intrusion detection alerts (home invasion incidents with firearms number over 2500 per year nationwide). For a complete active shooter detection system, video-based AI detector can operate in conjunction with gunshot detectors for enhanced security. Traditional X-ray based weapon detection or metal detection entrance systems are complicated and expensive; with AI video technology, active shooter detection system can be cost-effective, and after all, what price tag can one put on a life? Written by Paul Sun and Mai Truong, IronYun
The Private Security Industry Act of 2001 gives the Security Industry Authority (SIA) the function of setting standards of conduct in the United Kingdom’s private security industry. Time is winding down to provide input during the SIA’s six-week consultation on a new draft code of conduct for SIA licence holders and applicants for SIA licences. The authority is inviting the industry, licence holders, and anyone with an interest in private security to have their say on the draft code of conduct by taking part in a survey. The consultation will end on 23 February. “The ethos of the code of conduct is that it will improve standards and public safety by setting out the standards of conduct and behaviour we expect people to uphold if they are entrusted with protecting the public, premises and property,” says Ian Todd, Chief Executive, Security Industry Authority (SIA). Security's Code of Conduct A code of conduct sets out what standards of behaviour professionals have to meet in order to work in the profession In security as in many professions, a code of conduct sets out what standards of behaviour professionals have to meet in order to work in the profession. SIA is suggesting Six Commitments of behaviour that will apply to all licensed security operatives and to applicants. If the code of conduct is sanctioned by the U.K. Home Office, it would become mandatory and incorporated into SIA’s licensing criteria Get Licensed. A commitment to certain standards of behaviour is fundamental to what it means to be fit and proper, and to being part of a profession. The six commitments are: Act with honesty and integrity Be trustworthy Protect the people and property you are entrusted to protect Be professional at work Act with fairness and impartiality at work Be accountable for your decisions and actions “We will review the comments from the consultation once it concludes on 23 February, analyse the results and publish a report on our findings,” says Todd. “The SIA will then use the comments it has received to write a final version of the code of conduct. The introduction of a code of conduct will be subject to final approval by Home Office Ministers.” SIA’s current Standards of Behaviour provide guidance on professional behaviour but are not mandatory. The draft code of conduct builds on the Standards of Behaviour. Upholding SIA's Standards The SIA’s Partnership and Interventions team is the unit that enforces the Private Security Industry Act “The majority of licence holders uphold the standards of behaviour that the SIA, their employers and the public expect of them,” says Todd. “Their professionalism and dedication keep the public safe and tackle crime. However, there are incidents in which some licence holders do not behave in this way. This minority lower the standard of service the public receives, harm public safety, and bring themselves and the rest of the private security industry into disrepute.” The SIA’s Partnership and Interventions team is the unit that enforces the Private Security Industry Act. It is likely that they will be required to enforce the code of conduct should it become mandatory. The draft code of conduct is currently out for consultation and the proposal has been shared widely to licence holders, private security businesses, and enforcement partners encouraging them all to take part. “Once the consultation has concluded, we will analyse the findings from the feedback, produce a report and publish it on our website and share this widely via social media,” says Todd.
The task of protecting shared spaces, such as offices and schools, has become increasingly complex, particularly with ever-rising political tensions and the difficulties of assessing threats for schools, workplaces and law enforcement. Given the randomness of when and where a violent person may strike, those who manage facilities need an emergency plan, as well as robust training, detection and awareness. To gain more insights into dealing with such threats, we interviewed John Torres, President of Security and Technology Consulting, Guidepost Solutions. Guidepost Solutions is a global team of investigators, security and technology consultants, and compliance and monitoring experts. They provide security design and consulting, investigations, and compliance and monitoring leadership for critical client needs. Torres has extensive investigative and security experience. Previously, he served as the Special Agent in Charge for Homeland Security Investigations in Washington, D.C. and Virginia. His background includes more than 27 years of experience providing investigative and security management for the U.S. Departments of Homeland Security and Justice, including serving as the Acting Director and the Deputy Director of U.S. Immigration and Customs Enforcement. Q: Why is it difficult for schools, workplaces and law enforcement to assess threats of violence? How can they differentiate between a threat and a non-threat? Torres: With mobile technology and social media, threats are more than just physical. Schools are often not screening student social media accounts and are restricted in what they can and cannot monitor due to privacy laws. Proactive business and educational institutions are working closely with law enforcement, providing training and increasing awareness of potential threats or abnormal behaviour. Proactive business and educational institutions are working closely with law enforcementEmerging tools include software that allows monitoring of students’ school-issued email and file storage accounts. Communications software and apps provide real-time notification of emergency messages to students, parents, employees and the community to provide critical instructions during an emergency. The combination of training and new tools has enabled trends and threatening language to be identified and appropriate authorities notified. Q: What tools and/or insights can Guidepost Solutions add to the mix? What are the elements of a “comprehensive risk assessment?” Torres: Comprehensive risk assessments include adopting a tiered approach to assessing the school or office and the surrounding environment. A typical approach includes site perimeter review, identifying gates, fencing, vehicle barriers etc., the parking lot, building exterior, interior paths of travel and individual classroom measures. Review and observation of systems including mass notification, video surveillance, access control, intrusion and visitor management, etc. are critical to ensure that they are equipped to maintain functionality in the event of power loss etc. As an insight, always engage with people, they have the knowledge of each unique facility. Elements we can add to the mix include assessments, physical security improvements and mass notification systems, as well as emergency response training, operational policies and procedures, and behaviour analysis. Q: How can the elements of a risk assessment be translated into recommendations of specific technologies or processes (such as video surveillance and/or access control)? Torres: Risk assessments often drive and identify the need for technologies to be implemented into the security programs of schools, business or places of mass gathering, such as stadiums, convention centers and houses of worship. Risk assessments often drive the need for technologies to be implemented into places of mass gatheringRisk assessments help identify weaknesses in security procedure and then often support phased security enhancement programs as funds become available for investment. Each entity is different, and stakeholders should be included. For example, video surveillance may be a priority at one location but controlling the main point of entry may be more important at another. Technology and process recommendations must meet the operational needs and support the goals of the security team and operational managers. Q: How can the risk of an incident be mitigated and lives protected? Torres: While multiple steps are helpful, all of them in combination are key to implementing a comprehensive security plan. They include: Assessments – physical, cyber and procedural Physical Security Improvements – visitor management, fencing and barriers, locks and cameras Emergency Response Training – law enforcement coordination; muscle memory response Mass Notification Systems – current software, clear concise directives, testing Operational Policies and Procedures – termination, evacuation, communication, intervention Behavioural Analysis. Q: What are the elements of behaviour analysis? Torres: They include things like changes in appearance and behaviour, including social media behaviour, and isolation from family or friends. They also include studying or taking pictures of potential targets, and real or perceived bullying. An individual may advocate violence or hate, and/or consume violent extremist information/propaganda. He or she may talk about traveling to places that sound suspicious, and/or have an obsession with weapons. Q: What is the role of training? Torres: Training is critical regarding emergency situations in schools, be it a fire drill, earthquake, lockdown, active shooter situation, etc. Training and drills educate those present, including employees and staff, with information about actions that may save lives and reduce casualties in a real emergency. Training is critical regarding emergency situations in schoolsTraining should hold people responsible and set standards for acceptable behaviour. There should be a plan that is implemented, including practice and drills. You should also provide training and communication skill building classes. Develop intervention strategies. Work with HR and legal (and others as appropriate). Finally, document everything. Q: What challenges still remain? Torres: Cultural and behavioural change remains at the forefront of schools and businesses when addressing safety and security measures. A large percentage of violent acts may be preventable if a bystander shares his/her concerns with the proper authorities. According to the FBI, perpetrators exhibited behavioural indicators in 93% of incidents. And bystanders had prior knowledge in 81% of school attack incidents and 80% of terrorist-inspired behaviours or activities before an attack. Q: What progress are you seeing? Torres: With each tragedy that occurs, leaders are engaging with safety and security head on. There is a shift in schools and businesses to engage with professionals that can help them understand what they do not know. Simple things such as improved communication and enforcement of policies and procedures can have a tremendous positive impact on an organisation’s security posture. Assessments and technology upgrades are important and effective, but it all starts with acknowledging the need to provide and maintain safe and secure environments for students, employees and the community.
Hikvision and Dahua have been added to a U.S. government list of entities “reasonably believed to be involved, or to pose significant risk of being or becoming involved, in activities contrary to the national security or foreign policy interests of the United States.” In effect, inclusion on the list restricts the export of equipment to the two companies because of their alleged involvement in “human rights violations and abuses” related to a Chinese government campaign of repression, mass arbitrary detention, and high-technology surveillance against minority groups. Hikvision and Dahua have contracts to sell equipment that provides video surveillance capabilities in the Xinjiang Uighur Autonomous Region (XUAR) of China. The minority groups targeted are Uighurs, Kazakhs and other Muslim minorities. Hikvision and Dahua have contracts to sell equipment that provides video surveillance capabilities in the Xinjiang Uighur Autonomous Region of China The decision to add Hikvision and Dahua, among 26 other “entities,” to the list was made by the United States End-User Review Committee (ERC), composed of representatives of the Departments of Commerce, State, Defense, Energy and (where appropriate) Treasury. A majority vote of the panel is required to add an entity to the list, and a unanimous vote is required to remove or modify an entity. The 26 other entities include the Chinese government’s bureau in XUAR, 18 subordinate municipal and county public security bureaus and one other subordinate institute. Specific licenses (government approval) are required for any transaction in which items are exported, reexported, or transferred (in country) to any of the entities on the list; or in which the entities act as purchaser, consignee or end user. Loosely speaking, inclusion on the list prevents Hikvision and/or Dahua from buying any component parts from U.S. manufacturers. Indirectly and more broadly speaking, the measure affords a new downside to the Dahua and Hikvision brands in the U.S. market. Anyone concerned about human rights abuses might hesitate to buy from the two companies, although the entity list does nothing to prohibit sales of the company’s products. Dahua and Hikvision statements In a company statement, Dahua has “express[ed] strong protest to such decision, which lacks any factual basis, and call[ed] on the U.S. government to reconsider on it.”’ Indirectly and more broadly speaking, the measure affords a new downside to the Dahua and Hikvision brands in the U.S. marketThe Dahua statement continues: “As a global business entity, Dahua adheres to the business code of conduct, and follows market rules as well as international rules. Dahua is actively working to ensure our investment and business operations around the world comply with all applicable laws and regulations. Regarding the decision of U.S. government, we have actively taken various measures, and we will continue providing outstanding products and services to our customers.” Hikvision has released the following statement: “Hikvision strongly opposes [the] decision by the U.S. Government and it will hamper efforts by global companies to improve human rights around the world. Hikvision, as the security industry’s global leader, respects human rights and takes our responsibility to protect people in the U.S. and the world seriously. Anyone concerned about human rights abuses might hesitate to buy from the two companies "Hikvision has been engaging with Administration officials over the past 12 months to clarify misunderstandings about the company and address their concerns. In January 2019, Hikvision retained human rights expert and former U.S. Ambassador Pierre-Richard Prosper to advise the company on human rights compliance. Punishing Hikvision, despite these engagements, will deter global companies from communicating with the U.S. Government, hurt Hikvision’s U.S. businesses partners and negatively impact the U.S. economy.” “The U.S. Government and Department of Commerce cannot and will not tolerate the brutal suppression of ethnic minorities within China,” said Secretary of Commerce Wilbur Ross in making the announcement. “This action will ensure that our technologies, fostered in an environment of individual liberty and free enterprise, are not used to repress defenseless minority populations.”
Generally, the Less Than Load (LTL) industry is always looking to increase the amount of product shipped per truck. A lesser amount of product on a truck equates to a lower amount of billable product per trip. Raw Load Average (RLA) Raw Load Average (RLA) is the percentage of product on a truck – 100% is a completely full trailer. As the name implies, LTL averages less than 100%. In the fast- paced world of logistics, delivering millions of packages per day, than how do companies maximise the RLA? Most shipping managers are responsible for inspecting each trailer, before it leaves for several additional items. They make sure that the packages are secure and then evaluate whether the truck can handle any more inventory. There might be 200+ dock doors in a 400,000 sq. ft. facility and dozens of trucks waiting to leave and get on with their trips. At peak times, inspections will require several individuals running all over the facility. Less Than Load (LTL) Industry experts estimate that only about 80% of trucks are actually inspected Industry experts estimate that only about 80% of trucks are actually inspected. The missed trucks are now at risk for unsecured packages arriving damaged. More importantly, they are leaving 74% full. If the truck had waited another 30 minutes for inspection, they could have added another one skid of products to increase the load to 75%. That 1% difference does not sound like much. However, considering the volume of shipments that the top 10 LTL companies deliver, the 1% will amount to somewhere between US$ 6 million and US$ 12 million per year, which goes directly to the bottom line. Role of video security systems So, what is the role of security video systems here? Well most people say that security video does not have a real Return on Investment (ROI) in its traditional role. It’s hard to disagree. One exception might be when security companies have used video systems to reduce the number of guards. Using video, one guard can see as much as 3 or 4 guards could see in the past, without ever having to leave their post. This certainly reduces cost, but at the end of the day, guarding is still an overall cost to the bottom line. This case study will highlight how a couple of Salient’s very resourceful customers have transformed video into cash generating systems. Operational efficiency with video In the guarding scenario, video can put one person in several places at once. This operational efficiency can also be applied to how many people are needed to inspect trailers. But the ROI doesn’t come from removing a couple of salaries from the payroll. The real money comes into play because now inspecting 100% of the trailers leaving the dock are possible versus 80% and get that RLA up by 2 or 3%. Then, it’s about the big bucks. And that’s just the tip of the iceberg, when looking at the overall operational efficiencies available by utilising video. Using video for misclassified products or shipment validation In logistics, there is a huge revenue miss every year when it comes to products being ‘accidentally’ misclassified In logistics, there is a huge revenue miss every year when it comes to products being ‘accidentally’ misclassified when shipped. All products being shipped have a classification, and each classification has a specific associated cost. These per-pound costs fluctuate based on the value of the product, required insurance, risk and other factors. An example would be a sporting goods manufacturer shipping ammunition and firearms, under the code for clothing. In this example, a 200-pound load would be billed at about US$ 100, when it should be billed at closer to US$ 300. Multiply this by hundreds of packages a day and the total of the missed revenue is astronomical. So how would a video surveillance system correct this problem? Certainly, security cameras cannot see though a box, but one would expect a box with 200 pounds of clothes to be a fairly large box. But if the box were full of firearms or ammunition, the video would reveal a much smaller box. This anomaly when noticed would prompt an operator to investigate the contents of the box and contact the manufacturer to rectify the billed amount. This process might seem a bit hypothetical, but already a current customer of Salient Systems is capturing over US$ 40 million a year with the right system components. Using video to reduce OSHA violations and false claims The logistics industry requires a tremendous amount of labour in order to operate. The more labour hours, the greater the propensity for on-the-job injuries, OSHA violations, insurance payouts, lawsuits and business interruption. False claims are also a consideration. Let’s look at some real-world examples of using video to reduce or eliminate these issues: OSHA reports that 5,250 workers died on the job in 2018 (3.5 per 100,000 full-time equivalent workers), on average, more than 100 a week or more than 14 deaths every day. The loss of an employee is one of the most emotionally devastating situations a business can encounter. There are several benefits of video that can increase safety. One result of a fatality is typically an OSHA investigation. An action item that could result from this investigation would be to increase security guards. This is a perpetual cost that could continue for several months to years. Video systems enhance guards’ efficiency Video systems have been shown to improve the efficiency of guards, allowing them to have eyes on multiple areas Video systems have been shown to improve the efficiency of guards, allowing them to have eyes on multiple areas at the same time. The systems can be coupled with the use of video analytics to alert guards to specific situations such as motion in areas that should be unoccupied or traffic proceeding in an unauthorised direction. In these ways, video systems can reduce the quantity of physical guards, thereby reducing the cost. One of Salient’s customers is saving almost US$ 20,000 per month with the reduction of two guards and it has OSHA’s approval. The end result is that the safety of the employees has been increased and operational cost is lowered by implementing technology. Inadvertently, this same type deployment at another facility helped mitigate a US$ 900,000 slip-and-fall lawsuit, which could have also been a possible cause for an OSHA investigation. Validation of safety policy Validation of safety policy can also be a drain on resources. Auditing seatbelt use for forklift drivers, pedestrians using appropriate marked walking paths, and proper social distancing in work spaces are a few examples among many. Assigning an individual to monitor this activity is costly and people typically obey the rules only when that individual is present. However, video can capture this information all the time without huge labour cost. This information can then be audited and used for education processes. OSHA statistics indicate that there are roughly 85 forklift fatalities and 34,900 serious injuries each year, with 42 percent of the forklift fatalities from the operator's being crushed by a tipping vehicle. The safest place for the driver to be is strapped. A facility that used video to audit seatbelt usage showed a 65% compliance rate. After the information was presented to the manager and employees, the next audit resulted in a jump to 87% compliance rate. In the event of an injury, this type of verifiable data can go a long way to prove that the employer is serious about employee safety and investing in ways to improve the safety culture within the company. Using video to increase sales LTL is a very competitive business and it is viewed primarily as a commodity type operation LTL is a very competitive business and it is viewed primarily as a commodity type operation. A few pennies per pound can typically sway a decision-maker. Already some great operational efficiencies and benefits from video to lower cost and to making LTL more competitive has been discussed. But these ideas still don’t move LTL out of the ‘dog-eat-dog race to the bottom on price’ world. Now, let’s look at how to use the implementation of these same video systems to provide value propositions and competitive advantages for customers. Many LTL customers have sensitive merchandise for which the safety and security of its delivery might outweigh cost differences. An example is freight regulated by government agencies, such as Drug Enforcement Agency (DEA), Alcohol, Tobacco and Firearms Agency (ATF), and Dept. of Energy (DOE). For example, the DEA reported ‘The overall trend of incidents of Controlled Prescription Drugs lost in transit increased in 2018 with the highest number since 2010.’ Extra layer of security And the ATF’s Interstate Theft Program states that ‘Under the program, hundreds of reports of thefts and losses from interstate shipments are received each year’. With statistics like these, customers in these categories have a heightened sense of vulnerability. Offering systems such as surveillance video can add that extra layer of security and added confidence. This is a marketable differentiator to help LTL companies set themselves apart from the traditional companies that only offer a lower cost. This, bundled with some of the other cost-saving measures outlined above, could be the icing on the cake needed for security departments to convince C-Level executives in their organisation to invest in video.
Samson Security has adopted SmartTask to support the rapid growth of the business, which has seen the company treble in size in less than a year. The workforce management software is initially being used for electronic proof of attendance, across more than 400 security officers and engineers that deliver a wide range of services, including manned guarding, mobile patrol, alarm response and FM services. Advanced guarding management and monitoring “We needed an advanced guarding management, monitoring and reporting solution that could adapt and expand to our changing requirements as we grow,” explains John Richards, Operations Director at Samson Security Ltd. John adds, “Our mobile and manned services now span the North West, the Midlands and North Wales, so SmartTask will give us the visibility and control needed to coordinate and protect our team, while maintaining our excellent service standards.” SmartTask workforce management software Samson Security selected SmartTask because of the simplicity and flexibility of the system SmartTask will replace a previous time and attendance solution, which no longer met the needs of the business. Having undertaken a review of the marketplace, Samson Security selected SmartTask because of the simplicity and flexibility of the system. The app-based nature of the system means that employees can use the software via a personal or work smartphone, while providing the opportunity to use additional functionality such as patrol monitoring and electronic forms. Security guards are using either a SmartTask-enabled smartphone or an onsite landline to accurately record the start and end times, as well as any required check calls. The app captures a timestamp and GPS location for accurate customer reporting and SLA monitoring for alarm responses. Controlled access Samson Security also uses the control room dashboard at its National Command Centre to gain complete visibility of any exceptions, while mobile and office managers have controlled access for their individual areas of responsibility. John adds, “We are already exploring other ways of using SmartTask, which will enable us to consolidate much of our employee scheduling and workforce management requirements into a single system. We have set up bespoke smart forms, so will shortly be rolling out electronic incident reporting to our team, replacing our existing paper-based process.” Scalable, flexible solution He further said, “The scalable and flexible nature of SmartTask means we can take a phased approach, avoiding operational disruption and not overburdening our internal resources.” Paul Ridden, Chief Executive Officer of SmartTask commented, “We have developed our software to meet the precise needs of security and FM companies now and in the future. Possessing high levels of configurability and scalability, backed by first-rate service and support, SmartTask can support the long-term success of our customers in-line with their business and operational priorities.”
The Office for Students (OfS) is the independent regulator of higher education in England, responsible for ensuring that all undergraduate and postgraduate students, whatever their backgrounds, have a fulfilling experience of higher education which enriches their lives and careers and delivers value for money. They are headquartered in Bristol, United Kingdom with a workforce of around 450 people. GDPR Data Privacy Management Higher Education Funding Council for England (HEFCE), Office for Students’ predecessor, became a client of SureCloud back in 2017, implementing the GDPR Data Privacy Management Suite to support and enhance their GDPR programme. As a new organisation and a successor of HEFCE, Office for Students has been looking to mature its approach to risk management. The focus of this for the team was initially to improve risk policies and procedures, to develop internal capability, enhance reporting to show transparency and allow challenge, and to identify and manage risks enterprise-wide systematically. Effective Risk Management approach Office for Students needed a single, seamless, enterprise-wide solution to manage all aspects of risk management These improvements established a highly effective risk management approach, but the organisation soon hit the ceiling in terms of their process supporting risk systems, with technology being a limiting factor rather than an enabler. The organisation was relying on numerous disparate spreadsheets to assess and monitor different types of risk, these were inconsistent, time-consuming and error-prone. Office for Students needed a single, seamless, enterprise-wide solution to manage and monitor all aspects of risk management. Data privacy Risk Management solution Office for Students has been a SureCloud client for cybersecurity services since March 2017 and began deploying SureCloud’s governance, risk and compliance (GRC) solution in July 2017 to assist with their responsibilities under GDPR. Knowing that SureCloud also offered a comprehensive risk management solution (recognised on Gartner’s IRM Magic Quadrant), which could be tailored to their precise needs, Office for Students opened a conversation with SureCloud about how best to configure their existing SureCloud Data Privacy Risk Management solution to enable enterprise risk management. SureCloud’s Risk Management solution delivers: A central view of risk across the organisation via a single intuitive dashboard Risks organised across divisions, legal entities, business functions, and geographies The ability to provide a central repository for enterprise risk, allow the organisation to show the entirety of the risk environment and consider overlaps and interdependences A range of risk management methodologies to understand the likelihood, impact and overall risk rating Configurable drillable dashboards and reports to provide a real-time snapshot of risk at any time Centralised, cloud-based platform SureCloud’s centralised, cloud-based platform underpins the Risk Management product SureCloud’s centralised, cloud-based platform underpins the Risk Management product, allowing anyone from across an organisation deploying the application to add information at any time, from anywhere. Office for Students worked with SureCloud to configure the Risk Management application to their precise needs and was ready for rollout ahead of schedule. Rapid implementation services “SureCloud got to grips with our requirements incredibly quickly,” said Ben Whitestone, Head of Governance at the Office for Students, adding “As the only independent regulator for higher education in England, we regulate in the interests of hundreds of thousands of students, and we take that responsibility very seriously.” Ben adds, “Managing the risks we face is an important part of our governance. But with our legacy systems, we were focused more on updating spreadsheets than actually managing risk. SureCloud’s platform is enabling us to take a far more agile approach to risk management, focusing on taking action to mitigate threats and exploit opportunities, with substantial time and cost savings as a result.” Streamlined, centralised Risk Management “SureCloud’s Platform has moved us away from using a series of disparate spreadsheets and countless emails for recording risk, with all of the potentials for errors that entails, to a single, centralised source of risk information for every member of staff,” said Whitestone. He further adds, “It’s dynamic and agile, if we want to get a snapshot of risk for a particular department or function, we can.” Intuitive, user-friendly platform We are very pleased with how quickly staff can get to grips with the SureCloud Platform" “Despite us being at the start of our risk management journey, we are very pleased with how quickly staff can get to grips with the SureCloud Platform, this was a key factor for us” commented Whitestone. Whitestone adds, “They can more or less log on and go – it’s extremely intuitive and easy-to-use. In turn, this means that it frees up a huge amount of time spent manually inputting or transferring information, which is a great advantage for us.” Systems and culture working in-sync “We undertook a great deal of work to evolve our culture of risk management, to one that was far more consistent and proactive.” stated Whitestone He adds, “With SureCloud’s Risk Management solution in place, we have the systems to underpin that culture, and enable us to take a far more streamlined, agile and accurate approach to help manage risk across the organisation.”
Crossword Cybersecurity plc, has announced that Stevenage Borough Council, Peterborough City Council and East Hertfordshire District Council (‘the Councils’), will use Rizikon Assurance to manage compliance with the GDPR (General Data Protection Regulation) with their suppliers and for wider information governance. GDPR compliance GDPR makes many requirements of organisations, including taking adequate steps to ensure data is both encrypted and anonymised, so that in the event of a breach, the data cannot be exploited. Infringements under GDPR can lead to fines of €20 million, or 4% of annual global turnover for an organisation. Data breaches can be accidental, through the loss of a laptop for example, or as a result of an intentional breach or cyber-attack With a combined residential population of over 430,000, the Councils have a duty to ensure that the personal information of all residents is adequately protected against the risk of data breach, either by the Councils themselves or the third-party suppliers and agencies with which they work. Data breaches can be accidental, through the loss of a laptop for example, or as a result of an intentional breach or cyber-attack. GDPR risk exposure Using Rizikon Assurance, the Councils will improve the process and accuracy of securing third party assurance. This will support compliance with GDPR, and establish a way to manage on-going assurance checks when needed at regular intervals. Additionally, the Councils will be in a position to identify GDPR risk exposure across their supplier portfolio, so that remedial action can be taken to improve the protection of citizen data. Jake Holloway, Director responsible for Rizikon Assurance, commented, “The role of every public service organisation is to serve its citizens, often holding personal information about them on many sensitive topics such as health, benefits and education. With that comes the responsibility of ensuring that information is protected, especially when it needs to be shared with partner organisations.” Rizikon Assurance Jake adds, “Rizikon Assurance will help any organisation dramatically improve the speed and reliability of its third-party assurance processes, covering areas such as GDPR, health & safety, the Modern Slavery Act and any other requirements that they may have. It moves third party assurance from a siloed and reactive activity, to a connected, proactive continuous process that delivers a complete view of third-party risk.”
Deliveroo, a tech businesses, has chosen AEOS access control by Nedap to protect its staff across the world. Nedap’s UK Expert channel partner, Hunter Group, completed the installation at the first site, in Dubai, and an ambitious rollout will see Hunter install AEOS at around 50 more Deliveroo sites, plus new locations, over the next 12-18 months. Deliveroo was founded in the UK and is proud to export British-born technology around the world. Its ‘Frank’ algorithm is based on powerful predictive technology that evaluates the most efficient way of distributing orders based on the location of restaurants, riders and customers. Future-facing approach With 650% year-on-year growth, Deliveroo’s development has been explosive and the company now has at least 200 offices across 47 countries. Staff security is paramount for Deliveroo and it wanted a global security platform and technology partners capable of keeping up with its expansion. It will be able to manage its global security system from its London headquarters Naturally, Deliveroo is keen to embrace new technologies and innovations too, and wanted to move forward with companies like Nedap and Hunter that have the same future-facing mentality. AEOS will enable Deliveroo to centralise security. It will be able to manage its global security system, and closely monitor staff safety at each location, from its London headquarters. Access control reporting will, for example, show that drivers have arrived safely and CCTV footage will enable offices to be viewed from across the world. Flexibility for each site Some Deliveroo sites are in areas where staff need more robust protection. AEOS gives the flexibility to adapt security settings and solutions according to the site, while still adhering to a central security policy. Deliveroo can, for example, choose which identifiers its staff can use at each site, and can easily change this whenever it chooses to. AEOS also scales easily, both at individual sites and across new locations. So as Deliveroo continues to grow, its security system can too. Over the coming months, AEOS will be installed at Deliveroo sites in London, Paris, Amsterdam and Brussels, with sites in Madrid, Melbourne and Singapore following soon afterwards.
Manufacturer ROCKWOOL International A.S. has chosen Nedap’s Global Client Programme to secure its offices and factories worldwide. AEOS, the physical security platform by Nedap, installed during the programme, enables ROCKWOOL to establish a truly global security policy and unified work processes. An advanced project rollout, the Global Client Programme is developed for large multinationals and offers several benefits, including standardisation across sites, shorter implementation times and cost efficiencies. Standardising company’s security measures The Global Client Programme connects all of ROCKWOOL’s factories and office premises, and standardises the company’s security measuresROCKWOOL has 28 factories across the world. The Global Client Programme connects all of these factories and ROCKWOOL’s office premises, and standardises the company’s security measures throughout the world. Fokko van der Zee, managing director at Nedap Security Management, says: “The implementation of a standardised security solution across the world is a complex process. It involves a large project spanning many years and involving many stakeholders, and demands a high level of project management. In the absence of a structured program with defined guidelines, a global security rollout is likely to be a stressful execution. That’s why we set up our carefully designed Global Client Programme.” ROCKWOOL Digital Service Lead, Matthew Thorne, agrees: “We’ve worked with Nedap over the past few years and recently became a member of their Global Client Programme. Now we’re equipped with the people and tools we needed to standardise our physical security solution. The Global Client Programme also minimises risk and guarantees compliance. It really meets our needs in every possible way.” Central security platform saves money The programme helps achieve cost savings by avoiding initial setup costs per site and having one central security platform instead of severalThe Global Client Programme is designed to ensure monitoring and control during every step of the rollout process. Timon Padberg, responsible for business development at Nedap Security Management, explains: “The repetitive nature of local site deployments allows us to work with models and templates, such as standard proposal and calculation documents. We can therefore produce a scalable process that ensures uniformity and a consistently high quality of implementation across each site.” By using the Global Client Programme, ROCKWOOL is aiming for uniformity and alignment across all sites. The programme also helps achieve cost savings by avoiding initial setup costs per site and having one central security platform instead of several. Moreover, there are significant savings on operational and maintenance costs due to shared services and economies of scale.
Round table discussion
A standard is a document that establishes uniform engineering or technical criteria, methods, processes, and/or practices. Standards surround every aspect of our business. For example, the physical security marketplace is impacted by industry standards, national and international standards, quality standards, building codes and even environmental standards, to name just a few. We asked this week’s Expert Panel Roundtable: How have standards changed the security market as we know it?
The definition of a standard is “an authoritative principle or rule that usually implies a model or pattern for guidance, by comparison with which the quantity, excellence, correctness, etc., of other things may be determined.” In technology markets, such as physical security, standards are agreed-upon language, specifications or processes that are used across the board by multiple stakeholders to enable easier interconnectivity and smoother operation of systems. We asked this week’s Expert Panel Roundtable: How are standards shaping change in the physical security market?
Statistically speaking, incidents of terrorism are unlikely to impact most businesses and institutions. However, the mere possibility of worst-case-scenario attacks is enough to keep security professionals awake at night. Compounding the collective anxiety is the minute-by-minute media coverage when an attack does occur. The immediacy of the shared experience of global tragedy impacts us all – including security system decision-makers. We asked this week’s Expert Panel Roundtable: How is the rise in terrorism impacting the physical security market?