Internal Building Security Proposal Internal security or the inner layer of security is an important aspect in any physical protection system and may contain several layers within. The placement of internal security addresses intruders or adversaries who could penetrate the outer and middle layers of the system, also known as the perimeter and external layer. Controls found within this layer include windows, protective lighting, intrusion detection systems, signs, barriers, locks, access control, and surveillance, all of which protect organizational assets (ASIS International, 2008). The value of the assets protected will determine the internal security protection required. An organization’s security plan will primarily address their perimeter security, external security, and access control. During this process internal security is often not addressed and no security measures are put into place (Curtis & McBride, 2011). To ensure an organization has a comprehensive security plan they must implement protective measures into their internal security plan. These protective measures include access requirements, reinforced walls and doors, biometric locks, safes and vaults, closed circuit television, and intrusion detection systems (ASIS International, 2008).
Access/Entry Control and Recommendations Access control, just like any other security layer, is an important function of any security plan. It is also important to any business, especially those in the design, development, and construction phases. Access control is part of the detection and delay functions found within the physical protection systems (PPS). The object of access and entry control as describe by Garcia (2008) is to permit authorized personnel to enter and exit, detect and prevent the unauthorized movement of valuable assets, detect and prevent the entry of contraband, and provide information to security personnel, thus allowing them to assess and respond.
Access Control Defined
Internal access control is the use of procedures and practices used by organizations to allow employees, clients, and the public to access their facility or building while denying the access of intruders, adversaries, and contraband (Curtis & McBride, 2011). ASIS International (2008) defines access control as the control of materials, vehicles, and persons through the application of security measures in protected facilities or areas.
Access Control Considerations
Access control systems include the use of materials in and out of a facility, vehicles, technologies, procedures, databases, and security personnel. When designing and developing access and entry control it is important to understand consider these questions:
• Can this system be integrated with other systems, to include alarms and CCTV?
• Will all components of the access control system operate together?
• Is the throughput rate realistic and acceptable at each access control point?
• Should surveillance be set up to record those entering and exiting?
• Is this system in compliance with all applicable local, state, and federal statutes and fire codes?
Access Control Point Attacks Intruders and adversaries will have several ways in which they will attempt to attack and defeat an organizations access control point. The first is through deception, in which an adversary utilizes false pretenses to attempt and convince security personnel and measures to permit their entry. The next method of attack is direct physical attack, which is simple the use of tools and various resources to force entry into the facility or area. Finally, the last method of attack is a technical attack, during which time the adversary forges credentials, guesses personnel identification numbers, or obtains another person’s credentials (ASIS International, 2008).
Access Control Barriers Many times access control barriers are applied in multiple layers, access control barriers focus on allowing certain individuals to remain within confines of security while keeping the rest out. This includes the used of doors, turnstiles, locks, gates, and even elevators. Locks will vary by mode of opening, application, and physical type. Lock types are identified as mechanical, electrified, electromagnetic, card-operated, combination, biometric, rapid entry systems, and key systems. Locks are easily compromised and must be complemented with other security measures (Garcia, 2008).
Personnel Entry Control with Recommendations In the access control system the personnel entry control is designed and utilized to authorize entry and verify the authorization of those wishing to access the controlled area. Recommendations for entrance and verification include the use of valid credentials, the use of personal identification numbers (PIN) or biometric identification. These are known as the following concepts: what you have, what you know, and what you are (Garica, 2008). A combination of these protects high value assets, thus making it harder to defeat.
Contraband Detection with Recommendations Contraband is any unwanted or prohibited item from an area. This process is to be completed before entering a secure area and used to identify unauthorized weapons, explosives, recording devices, and tools used to gain access or damage vital equipment. For this reason all personnel, material, and vehicles should be searched for contraband be for they are permitted to enter. In addition to manual searches contraband detection must utilize the use of explosive detectors, X-ray machines, and metal detectors (ASIS, 2008).
Physical and Administrative Procedures and Controls As with any security plan the use of access control policies, procedures, and controls is a must. Policies and procedures will address wearing of badges, sharing PINs and access cards, piggybacking, challenging personnel without badges, access attempts allowed, search and seizure of packages and contraband, calibration of detection equipment, contraband, accommodation for disable and physically impaired personnel, and preventive maintenance of equipment (ASIS International, 2008). Administrative procedures will complement the technologies mentioned so far and are essential for employee training and defining who gets access to the facility, during which hours, the level of access required, and where the facility may be accessed (Garcia, 2008). Visitor access is very important to address in the administrative procedures and must establish and track visitor credentials and assign a time for their use. For example, visitor access should be requested by security officer or trained employee. The information provided will include date and time of visit, point of contact, and purpose for the visit (ASIS International, 2008).
Surveillance
Security surveillance helps protect an organization form vandalism and theft. Internal security surveillance ensures organizational resources are being used correctly and their assets are protected (Security World News, 2010). Surveillance is a valuable component in the physical protection system and used in multiple layers. Surveillance is part of two to three primary functions of the PPS; deterrence, detection and response. It is critical for detecting activities that require a security response. Surveillance also can be used as evidence or used to collect images of incidents, or for incident assessments. Surveillance such as CCTV can provide and assist in alarm assessment and instruction detection systems (Garcia, 208).
Video Surveillance Implementing a video surveillance system is a valuable recommendation for organizations to visual assess and document incidents. Video surveillance allows and supports live surveillance, post event reconstruction, and assesses of alarm activation, which determines cause, as well as initiate a response (ASIS International, 2012). When designing and implementing the video surveillance system it is important to remember these main elements as describe ASIS’ Internationals (2008) Facilities Physical Security Measures Guideline:
• Field of View –locations will be visible through the lens
• Scene – locations or activities observed
• Lens- determines clarity and size
• Camera- including hardware and protection systems
• Transmission medium- the generation and transfer of the signal
• Monitor- displays image(s)
• Recording equipment- used to capture images may be analog or digital
• Control Equipment- controls view of video, its storage, and alters field of view
Primarily, camera functions in security surveillance system identify targets and activity. Targets include persons, packages, vehicles, or traffic. Activities monitored include assault, vandalism, trespassing, robbery, or unattended packages and vehicles. The use of security surveillance at the internal layer not only protects the organization from outside threats but also from internal threats. Protection of High-value Areas Using today’s advanced technologies that combine delay and response a security system can develop and deploy protection used for high-value areas and high-value assets. There are other methods and tools used to protect high-value assets, which include intrusion detection systems and security personnel. Each plays a vital role in the internal security layer and the physical protection system.
One way to ensure the protection of high-value assets is through qualitative analysis, which is used for high-value assets with a high consequence loss and were immediate response is a requirement. During the qualitative analysis probabilities are assigned a descriptor of probability. One method used in this is to compare delay time predictions to response force reaction times, which helps assign probability of interruption (Garcia, 2008).
Intrusion Detection System Another recommendation for internal security and specifically high-value areas is the use of Intrusion Detection Systems (IDS). The presence of an intrusion detection system helps security deter, detect, delay, and respond to an intruder. Organizations and their security must ensure the IDS meets the needs of the facility, that it operates in conjunction with other security systems, that it will not interfere with day-to-day business, and that it is cost-effective. IDS may be used in many applications and will vary, depending on the protection needed; these devices come in many forms and include position detection devices, motion detectors, sound detectors, vibration sensors, heat sensors, temperature sensors, capacitance devices, impact sensors, glass break sensors, and panic alarms (ASIS International, 2012).
Security Personnel A great way to protect a high-value area is through the use of security personnel. To improve response time these personnel need to be located close to the high-value asset or area. This increases their performance and response time by allowing them to interrupt and neutralize intruders. Security personnel are important because they manage these internal security systems, policies, procedures, and other security personnel. They provide, complement, and supplement control measures through the human presentence and decision-making process (ASIS International, 2009).
Conclusion
Internal security is an important layer of security in the physical protection system as it is the last layer of protection. A comprehensive intern security will address security issues by implementing entry and access controls measures, security surveillance systems, and measure to protect high-value areas. With the security considerations mentioned within this paper any organization can create the framework for a layered and effective internal security system. References
ASIS International. (2008). Facilities Physical Security Measures Guideline. Retrieved from http://www.asisonline.org/toolkit/toolkit.xml
ASIS International. (2012). Security Management Standard Physical Asset Protection. Retrieved from http://www.asisonline.org/toolkit/toolkit.xml
Curtis, G., & McBride, R. (2011). Proactive Security Administration (2nd ed.). Boston, MA: Prentice Hall.
Garcia, M. L. (2008). The Design and Evaluation of Physical Protection Systems (2nd ed.). Boston, MA: Elsevier/Butterworth-Heinemann.
Security World News. (2010). Advantages of Security Surveillance Systems in Organizations. Retrieved from http://www.securityworldnews.com/2010/11/04/advantages-of-security-surveillance-systems-in-organizations/