August 5, 2009- Albuquerque, NM- Robb Hamic says, "If you are a business owner- you are flying blind without a good risk assessment and security plan no matter the size of your business." If you invite people to your location, you are responsible in some way for their safety. Employee security is also a big concern for New Mexico business. In the event of lawsuit, you may pay the price if you don't have one. Security companies are also responsible for providing a good plan for their clients.
Security professionals have been struggling for years with the daunting task of designing operational procedures and protocols for their staff. The challenge of security protocol design lies in adapting operational and business considerations, with legal constraints into one effective, threat oriented procedure. Unfortunately, security and threat mitigation are not always the first issues to contend with in the design process. In fact, liability issues and business objectives, while extremely important, may overshadow the threat mitigation needs of the organization; a situation that can produce a reactive and ultimately ineffective security procedures.
This predicament dictates the design of a security procedures that includes the following:
- Highly articulated procedures that describe in detail: suspicion detection, threat assessment and threat mitigation
- A comprehensive decision making matrix that can accommodate liability constraints.
- Simple and easy-to-understand procedures that can be integrated smoothly into general operations.
- Mitigation procedures that have both a deterrence effect and a customer service value.
In order to design an effective threat oriented protocol we must first identify the aggressors’ capabilities, resources and methods of operation with regard to the specific environment being protected. Simulating the aggressors and their method of operation will help to compile suspicion indicators as they are derived from each terrorist or criminal scenario and integrate them into the protocol.
- Responsibility for detection of suspicion.
- Responsibility for assessment of threat.
- Responsibility for deployment of mitigation procedures.
The language of the protocols and procedure should be simple and articulated to reflect exactly the action required from the law enforcement officer or security guard. It is important to avoid legal vocabulary and keep the wording short and to the point. Creating a common terminology around the protocol facilitates the integration of the protocol and the training of personnel.
The mitigation procedures should have a deterrence effect for the aggressor, yet a customer service value for the innocent bystander. The biggest deterrence for terrorists and criminals is a security officer armed with all the right questions. The protocol should include who-what-where questions that can be used by personnel to assess threat and refute suspicion. A question such as “how can I help you?” is surprisingly effective in creating both customer satisfaction and terrorist and criminal deterrence.
The design and maintenance of a proactive threat oriented procedure is certainly a challenging task that requires attention to many different constraints and objectives. This newsletter covers only some of the issues concerning security protocol design. If you want more information on security and threat mitigation procedure design, please contact Robb Hamic, President of Summit Security & Investigation.
Comments