Week 5
Running head: SECURITY PLAN FOR PHYSICAL MOVEMENTS WITHIN COMPANY 1
SECURITY PLAN FOR PHYSICAL MOVEMENTS WITHIN COMPANY 11
SECURITY PLAN FOR PHYSICAL MOVEMENTS WITH COMPANY
Kevin Schoof
Security Plan for Physical Movements within Company
Introduction
The development of an overall security plan in an organization has to consider the individual plans that each of the segments in security has. Even though an effective security plan could take months to plan, it’s important to plan it right. With security technology improving every day we are benefiting from protecting our facilities with the very best.
Among the segments in XYZ computer manufacturing company’s security plan, is physical movements of personnel customers, and other visitors. The security takes into consideration the security demographics in Tennessee State. The security plan in physical movements is divided into preparedness, prevention, response, and recovery sub-sections (Karen, 2009).
The security issues and risks that may be caused by or associated with physical movements
The movement of physical movement of staff, customers and visitors is an important factor while developing a security plan for the organization. The following issues are involved while considering the security plan for physical movements;
· Accessibility of areas that are restricted to sections of employees
· Allowing persons into the facility without knowledge on their intentions
· Contact with equipment that may harm, injure, or cause injury on others where the person does not have ample knowledge on how to operate such equipment (June, 2009)
· Malicious damage of equipment and other assets
· Theft of small office gadgets like staplers, stationery (Karen, 2009)
· Accidental access to vital information
· Curiosity of what is held in restricted areas.
Each of the above factors is important since it may lead to great liability by the company. Thus, as the company develops the security plan, it is also its objective to reduce the liability that may accrue due to security breaches in the company.
Preparedness
First, the company shall develop a blueprint on the physical movement security within the facility. All the staff members shall be taken into training that induces them on the areas that are vulnerable to security breaches and how to deal in each case. The blueprint shall consider that many of the vulnerabilities that the company faces are salient in their nature and thus they must be dealt with independently (Karen, 2009). The first contact of every person who enters the facility is the gate keeper. The gate keepers shall be trained on who to allow and who not to allow in the facility. This shall include need for self identification; prove of identity, identification of the need for visit, and the specific person being visited in the institution. This shall be complemented by records of every person visiting the facility and exit time from the facility (June, 2009).
The perimeter wall also comes in handy in managing the persons who access different sections of the facility. The perimeter wall helps in condoning off any other place that can be used by any person as entrance into the facility. Any person who tries to access the building by climbing over the wall can be easily identified by both the security staff and bystanders. These mean that the persons raising alarm on such intruders is high. The security perimeter wall shall be fitted with electric barbed wire on top. The wire shall electrocute any intruder who is in contact with it. The company shall disclaim any damages that may be caused by the electric barbed wire on any intruder (June, 2009).
(Karen, 2009)
Thirdly, the different locations within the facility shall be properly and correctly marked. The marking shall include; directions within the facility, restrictions for visitors, restrictions to different types of staffs, emergency and exit doors, and, areas perceived to contain dangerous items and/ or equipment (Giles, 2008). The markings shall be used to guide the visitors who could be visiting the facility on how and where to get to the exact office they are visiting. Also, this would allow, the company to deal with the staff members who allow visitors to restricted areas against the company code. The same code of conduct shall be used to deal with staff members who access areas that they are not allowed to access (Karen, 2009).
Another preparedness measure that XYZ Computer Manufacturing Company shall use is installation and tracking CCTV footages. CCTV cameras (positioned strategically in the organization) help in identifying the exact location of the staff, consumers and visitors within the facility at any given time (Sams Publishing, 2003). This is important since the management would not wish to depend on hearsay that may change or be compromised. The CCTV camera footage may be important to the security plan especially if the company may wish to take a legal against any person who breaches the security within the facility (June, 2009). The footage is firsthand evidence which is foolproof since it is directly sent to datacenters outside the facility on real time basis. The following areas must have CCTV cameras
· The entrance
· The cash office
· The computer room
· CCTV monitoring room
· Printing room, and
· Power control room (Karen, 2009)
Each of the above areas holds importance to the security monitoring team. For example, the power control room can be easily be tampered with by persons who have ill intentions of damaging or stealing from the company. Identifying persons who enter the power rooms at any given time would be important in identifying suspects if the electricity is tampered with (Sams Publishing, 2003).
The other precautionary measure that if employed would help in beefing up security is frisking of staff members while leaving the facility (Giles, 2008). It is easy for the staff members to pass at the exit door with company property than for non-staff members passing with such property unknown. Thus, nothing should be left to chance. The gatekeeper should ensure that staff members do not carry items which are not registered or authorized to carry (June, 2009). Where necessary this shall be complemented by a requirement to register personal items that may be confused with company equipment on entrance and verification that they leave with them on exit. In order to increase strictness, serial number of such items should be recorded and counterchecked when the staff member is leaving the facility (Sams Publishing, 2003).
The management shall hire permanent officers from the department of internal security to the facility. The role of these officers shall be to complement the work of the internal security team. As the paper explains in further sections, these officers shall also be used in response cases (Sams Publishing, 2003).
Prevention
Most of the factors that have been identified in the preparedness section above are applicable also in this section. However, this section contains of measures that are used as auxiliary to the preparedness measures already in place (Karen, 2009). One of the measures that is available and highly recommended to the staff members and any other visitors to the facility is use of electronic identification cards that are used to allow and/ or disallow person to different areas within the facility. The cards are as below
The top face of the card shall hold data of the bearer, if the bearer is a staff member within the facility. This shall include name, ID number, rank, and expiry date among other things. However, the strip that shall be readable by the card reader shall contain all this data and shall also be configured to either allow or disallow the bearer into different sections. Cards held by visitors shall only bear the name visitor on top and shall not be allowed past the visitors lobby in the facility (Giles, 2008).
Confiscation shall be another preventive measure that shall be used by XYZ Computer Manufacturing Company in managing physical movement related security issues. The gateman shall be directed to confiscate any items that are deemed, harmful, intended to cause harm, explosive or usable should there arise a conflict from any person entering the facility. For this to be operational, the management must ensure that the cases of gender proliferation and undue treatment may arise (June, 2009). To deal with proliferation, the gatekeepers shall ensure that both male and female admissions are subjected to same checking. Also, only male gatekeepers shall be assigned to check male admissions while female gatekeepers shall be used to check female admissions (Sams Publishing, 2003).
Different items confiscated shall be dealt with differently. Any explosives discovered shall be handed over to the department of internal security officers in the nearest state police post. Where necessary, the officers from the department of internal security shall be called in to detonate any explosives (Karen, 2009). Persons who are caught with such equipment shall be handed over to the law enforcement officers. On the other hand, Items that are deemed to be less harmful shall be taken back to the owners upon exit. These may include pen knives, and, other sharp objects. Any person who shall be noted to carry such objects consistently (however minimal risk they could pose) shall be monitored for intent to commit crime (Sams Publishing, 2003).
Assets that have high risk of being store shall be placed such that it shall be hard to move them without attracting attention. For example, the plant used to manufacture the power supply components and the assembly table shall be fixed to the ground using hard and tight nuts. With such, it shall be hard for any person to remove them since they shall require great force and also time to dismantle them (Giles, 2008).
Response
The contracted officers from the department of internal security shall be vital in dealing with any person who has or is deemed to have explosives, guns or other severe damage weapons and/ or equipment. If such a person is identified as aiming at causing death of other staff and/ or employees, the officer from the department of internal security may open fire to prevent the damage that may have been causing (June, 2009). Persons who are deemed to pose less danger shall be directed to surrender themselves and be taken to the nearest police station. Incase the person who had accessed the facility opens fire or touches explosive equipment; the staff shall use the script to open the emergency doors and evacuate the affected rooms shouting the name of the incident (Sams Publishing, 2003). For example if the explosive has caused fire, the staff members shall be shouting fire! Fire! Fire!
Any member of staff who shall be found guilty of accessing or trying to access areas that are strictly forbidden for staff member in their category shall be reprimanded internally and where possible externally. This may include measures like
· Termination of their employment contract without claim for any benefits
· Demotion to lesser post and job group within the company (June, 2009)
· Withdrawal of keys and other access equipment for other places that the employee was earlier allowed alone.
· Reporting the employee to the department of internal security (Karen, 2009)
Where it is verifiable that the employee breaches security innocently and unknowingly, the management shall give them warning letters and place such employees under watch. It is expected that most employees would claim innocence even when they had ample knowledge on the vice in their actions. Thus, the company shall be extra careful in identifying innocent wrong doers and intentional ones (Giles, 2008).
Another response that the company shall have is locking of electronically recognizable staff cards and/ or visitors cards that attempt to access restricted areas. This may leave the staff member and/ or visitor stranded in same place until they are collected by the security officers. This is especially because movements are mainly facilitated by the electronic access. Locking the card on first attempt shall help in preventing further damage or access by the perpetrator (June, 2009). Thus this measure is both preventive and response. For the card to be reopened by the IT manager, consultations shall be made and enquiry on the attempted access.
The IT staff shall always be on the lookout on the vulnerable channels that are regularly used by staff and / or visitors in breaching contract. As a response to such security effort, such areas shall be rectified on first notice. Some of the areas that are prone to breach include;
· Retrieval of data from electronic cards fitted with magnetic strips.
· Electronic keys that are used, consistently or in an identifiable series
· Multiple use of electronic key by different sections of staff (Giles, 2008)
· Doors that may have multiple entries once one card has been chipped in.
· Leniency on any person entering the facility in the evening since the gatekeepers is already tied and assumes that persons visiting at those hours pose no risk to the facility (Sams Publishing, 2003).
Recovery
In case there are items that are lost due to physical movements, there are different methods that shall be used to recover the items. The first step however shall be identification of the person and/ or the location of the item that has been lost. Two primary sources shall be used to identify the persons who have the greatest chances of having the items (Sams Publishing, 2003). The first source shall be the CCTV camera footage while the second source shall be the data recorded on the movements of staff, visitors and customers within the security. Where these two sources march, then recovery shall be easy since the suspect will be presented with the sources and dared to tell the truth about the whereabouts of lost items (Karen, 2009). The officers from the department of internal security and the judicial process shall come in handy in such recovery.
As noted previously in the paper, there are some members who may try to sneak out small assets from the company. The items shall be recovered at the gate by the gatekeeper. Thus, the gatekeeper must be keen on what the employees and visitors alike take with them from the facility (Sams Publishing, 2003). On the other hand, there may be some assets which are entrusted to a group of employees in the company. If such items are lost and, no one takes responsibility, no evidence is gotten from then and the group members can identify the person who stole the gadget, the group shall be required to pay for the gadget (Giles, 2008).
Conclusion
The details in the physical movement of persons are critical since, as noted in the paper, they are used as first hand evidence in case physical damage is done. However, this security detail cannot be used in isolation and required combination with other security plans (June, 2009). This includes information, security from environmental hazards and security from impersonation.
References
Giles, T. (2008). How to Develop and Implement a Security Master Plan. New York: Willey
June, D. (2009). Protection, Security, and Safeguards: Practical Approaches. London: ICI
Karen, S. (2009). Guide to General Server Security. Mason: Sage
Sams Publishing, (2003). Maximum Security. New Jersey: Author