Planning in advance of a terrorist or security incident is essential. In a crisis situation, confusion can be expected, communication links may be interrupted, and conditions may be generally chaotic. These stressful circumstances effect your ability to respond appropriately which puts your people and resources at risk and ultimately effects your corporate competitiveness. How can an organization prepare for this type of incident without knowing their vulnerabilities? The answer is by conducting a Threat - Risk - Vulnerability Assessment (TRVA).
As a terrorist or security incident will usually occur without any warning, there is usually no time for planning, organizing or training - all of which are necessary if a terrorist or security related situation is to be handled correctly. Senior management sometimes overlook the hazardous potential of this type of incident because this area usually does not appear to be an operations problem encountered during the normal business day. Therefore, little or no thought is given to completing a thorough TRVA. Failure to provide for the possibility of a terrorist or security situation might result in serious injuries and deaths, destruction of property and facilities, and even the inability of an organization to continue operating. In the highly competitive business environment of the new millenium, being able to respond to a Threat - Risk event gives a competitive edge of other companies that are operating lean and have not invested in these possibilities. Since the variety of Threat and Risk scenarios is so wide ranging and happening more frequently, it is not a matter of IF, but WHEN.
Threat - Risk - Vulnerability Assessment
The purpose of the Threat - Risk - Vulnerability Assessment is to identify specific weaknesses in structure, design, construction, security system and security manpower which could be exploited to increase the impact or probability of success of the threat event against the specific facility or organization. The data collected from carrying out a TRVA will be combined with the observations from the security audit to identify potential vulnerabilities that could be exploited to attack an organization or facility.
Prior to conducting any physical inspections, the background to the specific threat events and risk factors must be identified. Specific TRVA questionnaires will be developed to allow a rigorous assessment of the facility being reviewed.
The central focus of a TRVA is to identify areas of concern and then implement countermeasures to increase the level of efficiency in the protection of the organizations assets.
In addition, a well thought out and planned security program will help to decrease losses and may even lower the operating expenses of the program. Therefore, it is critical that the results of the changes implemented are closely monitored to ensure their effectiveness. Documentation of improvements will serve to allow an ongoing assessment of the security program, which in turn allows for ongoing improvements in the system over the course of the year.
The aim of a penetration exercise is to test the operational response of the security organization.
A penetration test is a research tool and is usually conducted during the investigation phase of a physical security audit or in depth security survey. The security deficiencies identified by the assessment team represent the penetration opportunities provided in relation to the activity at the site during the period of the test. Although different conditions will present different exploitation opportunities, the findings are representative of the overall state of access security within a facility.
The recommendations made by the Globe Risk Holdings Holdings team relate to issues involving human error, procedural deficiencies, security hardware defects and overall systemic failures.
Globe Risk Holdings Holdings, as part of its range of services, provides a comprehensive program of penetration testing. Globe Risk Holdings Holdings consultants have significant experience providing both public and private sector organizations domestically and internationally with this service offering.
Having conducted penetration security evaluations and provided recommendations and implementations based on prepared design basis threats, Globe Risk Holdings Holdings has some unique qualifications in this field.
Globe Risk Holdings Holdings consultants utilize their years of experience as counter-terrorist Special Forces operators to analyze a potential facility or infrastructure target from a terrorist's perspective. Years of training in terrorist methods and having a thorough understanding of terrorist attack methodology, our consultants develop terrorist attack profiles and then develop a comprehensive plan to prevent such an attack. Very few international security-consulting companies utilize this method of planning to protect facilities or critical infrastructure targets. It is the ability to think as a terrorist that sets Globe Risk Holdings Holdings apart from other similar organizations.