RiskUKOctober2017

October 2017
www.risk-uk.com
Security and Fire Management
Visual Hacking
Protection Regimes for Confidential Information
Data Centres: Security and Fire Safety Risk Management
Access Control: Developments in the Biometrics Arena
Counter-Terrorism: HVM, Physical Security and Screening
Healthcare Sector: System Solutions for Risk Managers

“
MY PASSION IS
ALWAYS GOING THAT
EXTRA MILE -
WHATEVER THE JOB
”
Steve Lang, CNC Programmer/Operator, 3 years with Jacksons
OUR PASSION
IS YOUR SECURITY
We combine the highest quality
perimeter security fencing and
gates with seventy years of expertise
to provide you with the right solution
for your project, large or small.
www.jacksons-fencing.co.uk
0800 953 3730
Jacksons
Fencing

October 2017
Contents
33 In Search of Recognition
The benefits of biometrics described in detail by Shaun Oakes
Security in the Built Environment (pp22-23)
5 Editorial Comment
6 News Update
Industry reports from SRI. BSI resilience benchmarking study.
Biometrics Commissioner’s 2016 Annual Report. Cyber skills gap
8 News Analysis: UK-EU Security Partnership
Brian Sims observes the latest political developments at
Westminster relating to UK-EU security co-operation post-Brexit
11 News Special: Cortech Open Innovation Events
Brian Sims reviews last month’s successful COIE in Glasgow
12 News Special: BCI World Conference 2017
The BCI’s 2017 Conference and Exhibition previewed by Risk UK
13 News Special: NAHS Conference and Exhibition
Brian Sims on the programme for the 2017 NAHS Conference
14 Opinion: Crowded Places Risk Management
Andrew Mortimer outlines why he believes the way in which
large crowds are protected from harm merits reconsideration
16 Opinion: Mind Your Own Business
Dan Hardy offers timely advice about what companies can do to
protect themselves from the threat of commercial burglary
19 BSIA Briefing
James Kelly discusses Health and Safety issues for businesses
and various initiatives operational in the private security sector
36 Risk Management for Counter-Terrorism
Hostile Vehicle Mitigation (p36), physical security solutions
(p38) and screening techniques (p40) under the microscope
42 A Touch of Retail Security Therapy
Cardinal Security working in partnership with Dixons Carphone
44 Security Solutions in the Healthcare Sector
Body-worn cameras (p44), the benefits of access control (p46)
and an overview of next month’s UHEI Conference (p48)
53 Signed, Sealed, Delivered
Jason Wakefield addresses risks posed to today’s Mail Rooms
56 Meet The Security Company
Risk UK shines the spotlight on Securi-Guard Fire and Security
59 The Security Institute’s View
62 In The Spotlight: ASIS International UK Chapter
64 FIA Technical Briefing
66 Security Services: Best Practice Casebook
68 Cyber Security: Visual Hacking in Focus
70 Training and Career Development
72 Risk in Action
74 Technology in Focus
77 Appointments
80 The Risk UK Directory
22 SBD and CPTED: Built Environment Security
Philip Strand argues why security professionals must be
included in the construction process at the very earliest stages
24 Left To Their Own Devices
BYOD provides a new challenge for security professionals and
one that’s not entirely avoidable. Adam Jaques has the detail
27 Coping With ‘Information Overload’
Chris Edwards evaluates protection measures designed to
ensure Data Centres are safe, secure, resilient and sustainable
ISSN 1740-3480
Risk UK is published monthly by Pro-Activ Publications
Ltd and specifically aimed at security and risk
management, loss prevention, business continuity and
fire safety professionals operating within the UK’s largest
commercial organisations
© Pro-Activ Publications Ltd 2017
All rights reserved. No part of this publication may be
reproduced or transmitted in any form or by any means
electronic or mechanical (including photocopying, recording
or any information storage and retrieval system) without the
prior written permission of the publisher
The views expressed in Risk UK are not necessarily those of
the publisher
Risk UK is currently available for an annual subscription rate of
£78.00 (UK only)
www.risk-uk.com
Risk UK
PO Box 332
Dartford DA1 9FF
Editor Brian Sims BA (Hons) Hon FSyI
Tel: 0208 295 8304 Mob: 07500 606013
e-mail: brian.sims@risk-uk.com
Design and Production Matt Jarvis
Tel: 0208 295 8310 Fax: 0870 429 2015
e-mail: matt.jarvis@proactivpubs.co.uk
Advertisement Director Paul Amura
Tel: 0208 295 8307 Fax: 01322 292295
e-mail: paul.amura@proactivpubs.co.uk
Administration Tracey Beale
Tel: 0208 295 8306 Fax: 01322 292295
e-mail: tracey.beale@proactivpubs.co.uk
Managing Director Mark Quittenton
Chairman Larry O’Leary
Editorial: 0208 295 8304
Advertising: 0208 295 8307
3
www.risk-uk.com

Connect your life to your
home and your security
Interact, control and integrate your Texecom security system like never before
The Texecom Connect App allows you to control your security directly from your compatible
system events and monitor cameras or activity from anywhere in the world.
www.texe.com
Sales: +44 (0)1706 220460
Watch the Texecom
Connect App video

Texecom Connect App
New smartphone application for
iOS operating systems
Texecom Connect SmartCom
Texecom Connect ethernet
communicator
Texecom Connect SmartPlug
Ricochet ® enabled
wireless plug
Falling Fraud
Editorial Comment
Figures just released by UK Finance reveal financial fraud
losses of £366.4 million in the first half of 2017 to be 8%
lower year-on-year (the comparable figure for 2016 being
£400.4 million). The data, which covers payment card, remote
banking and cheque fraud, also highlights that the finance
industry prevented over £750 million of fraud during the same
period (or 67% of attempted fraud). This compares with £678.7
million of prevented fraud in the first six months of last year.
Drilling down into the fine detail, the industry helped to
prevent over £500 million in attempted card fraud. Actual fraud
losses on cards are down 11% on the same period the year
before to £287.3 million.
Card spending increased by 8.4% year-on-year across the sixmonth
period, meaning that card fraud as a proportion of
spending equates to 7.5 pence for every £100 spent. That’s down
from 8.7 pence in the first half of 2016. This figure peaked in
February 2002 when it was 18.9 pence per £100.
In addition, no less than £160.2 million of remote banking
fraud was prevented. This covers criminals gaining access to an
Internet, phone or mobile banking account to make an
unauthorised transaction. Episodes of such fraud totalled £73.8
million, representing a 3% rise from £71.5 million in 2016.
£88.8 million of cheque fraud was prevented, with fraud
losses in this category falling to £5.3 million. That totals a 28%
drop on the same period in 2016 and, indeed, is the lowest halfyear
total on record. Progress is clearly being made here.
Overall, there were 937,518 cases of financial fraud. This is a
figure that has remained flat compared with the year before.
The data emerges as the banking industry and Government
join forces to launch the next phase of ‘Take Five to Stop Fraud’ –
the national campaign that offers advice aimed at helping
customers to protect themselves from fraud. Launched on
Monday 2 October, the next phase of the campaign is focused on
educating the general public to recognise scams and confidently
challenge any requests for their personal or financial details by
remembering the phrase ‘My money? My info? I don’t think so’.
Katy Worobec (head of fraud and financial crime prevention,
cyber and data sharing at UK Finance) observed: “Tackling fraud
is a top priority for the entire industry, but we must remember
that financial fraud isn’t just an issue for the banking sector. Its
harmful effects stretch far and wide. This is why, when it comes
to prevention, protection or deterrents, the industry is committed
to taking a collaborative approach to curb such crimes and is
now launching the latest strand of the ‘Take Five’ consumer
campaign. Whether it’s banks refining their own security systems
or a retailer holding customer data securely, it must be stressed
that everyone has a part to play.”
UK Finance’s figures serve to illustrate the positive impact that
partnerships between industry and policing can exert in fighting
fraud. There’s still much work to be done, of course, and
particularly so in relation to identify theft and the criminality it
enables. It’s beholden upon us all to be extremely careful about
the degree of personal detail we share in the public domain.
Brian Sims BA (Hons) Hon FSyI
Editor
December 2012
5
www.risk-uk.com

Security Research Initiative focuses on key
considerations for security business sector
The Security Research Initiative (SRI) has just
published two excellent reports addressing key
considerations for the security industry.
Together, these comprehensive documents seek
to understand and highlight the ways in which
private security can help protect the public – in
both private and public space – and how
security’s vital role may be enhanced. They call
upon various stakeholders to consider how, as
an underused and largely capable resource,
private security can best be used, not least in
times of austerity.
The 42-page report entitled Towards ‘A
Strategy for Change’ for the Security Sector
aims to provide a foundation for thinking about
and developing a ‘Strategy for Change’ for the
security business sector. It seeks to provide a
rationale for why private security is important
and suggests ideas (for wider debate) about
how its potential might be realised.
The document is based on three overarching
aims: Government must be encouraged to
develop a strategy for harnessing the enormous
contribution of the private security sector when
it comes to preventing crime, the private
security sector must commit to developing an
ability to talk with a more united and coordinated
voice and the private security sector
must commit to highlighting the enormous
benefits it generates – including those for the
public good – and also commit to ways of
enhancing them. Much of what it currently does
is unheralded and underacknowledged.
The second SRI report, entitled Police Views
on Private Security, runs to 66 pages and
discusses findings from responses provided by
1,361 serving police officers to an online survey
focused on attitudes towards the private
security sector (ie private security suppliers and
corporate security departments). This is
designed to inform the strategy for better
engaging private security.
“Overall, it’s evident that the police officers
surveyed view the private security sector as
useful in some of the aspects of the work that
the police service conducts, and even necessary
in some cases,” stated PRCI’s director Professor
Martin Gill CSyP FSyI (pictured).
Professor Gill continued: “That said, there
appears to be a lack of appetite in the private
security sector for taking a greater role in
supporting or otherwise working in partnership
with the police, and especially so where this
would amount to private security undertaking
‘policing’ tasks in public space.”
Close to six-in-ten respondents believe
private security plays a minor role in protecting
members of the public, while corporate security
departments are seen as being important in
helping the police in their work by 62% of
respondents, but security officers much less so
(with a result of 36%).
Reputation tops list of business priorities in Organisational Resilience study
Protecting reputation tops business leaders’ lists of priorities ahead of financial achievements and
business leadership. That’s according to the world’s first benchmarking study of Organisational
Resilience published by the British Standards Institution.
The study finds that reputation is seen as the most important element in relation to the longterm
success of a business, even more so than financial aspects, leadership and vision and
purpose. Despite this, 43% of those professionals interviewed as part of the global study believe
their organisation is strongly susceptible to reputational risk.
No fewer than 1,250 senior leaders of organisations across the globe participated in the study,
which covers ten sectors across three regions: the UK and Ireland, the USA and the Asia Pacific
region. The magnitude of reputational risk was found to vary by geography. Globally, 62% rate their
organisation’s current reputation as ‘Excellent’ or ‘Very good’, but this figure rises to 75% in the US
and falls to 55% and 56% in the UK and Ireland and Asia Pacific respectively.
Out of the 16 elements that make up Organisational Resilience, the study found that the most
and least important are as follows: Most important Reputational Risk, Financial Aspects,
Leadership, Vision and Purpose and Information and Knowledge Management Least important
Horizon Scanning, Alignment, Community Engagement, Culture and Adaptive Capacity.
The study also investigated how these elements ranked in terms of perceived performance. It
found the following: Highest performing Financial Aspects, Alignment, Leadership, Vision and
Purpose and Governance and Accountability Worst performing Supply Chain, Innovation, Horizon
Scanning, Information and Knowledge Management and Awareness, Training and Testing.
6
www.risk-uk.com

News Update
Biometrics Commissioner’s third
Annual Report scrutinised by Big
Brother Watch
The 2016 report of the Commissioner for the
Retention and Use of Biometric Material was
submitted to Home Secretary Amber Rudd on
14 March this year and has now been
published for public consumption.
The role of the Biometrics Commissioner
was established by the Protection of Freedoms
Act (PoFA) 2012, with Paul Wiles appointed as
the second Commissioner on 1 June 2016.
Wiles’ role is to provide independent oversight
of the regime which was established by the
PoFA – and which came into force on 31
October 2013 – to govern the retention and
use by the police in England and Wales of DNA
samples, DNA profiles and fingerprints.
In addition to casework responsibilities in
relation to DNA and fingerprints, Wiles also
has a UK-wide oversight function as regards
their retention and use by the police service
on national security grounds.
Stretching to no fewer than 125 pages, the
detailed 2016 report deals primarily with
developments since the publication of the
Commissioner’s 2015 report. In essence, it
covers Wiles’ casework activities, the general
operation of the PoFA regime and a variety of
issues that have arisen in connection with its
operation in both the normal policing and
national security spheres.
In response to the report, Renate Samson
(CEO of Big Brother Watch) said: “We welcome
the Biometric Commissioner’s warnings and
concerns about the ongoing creation and
retention of facial biometrics and facial
recognition technology by police forces across
the country. It’s of very serious concern that
the Home Office appears to be so
unwaveringly set on embedding facial
biometric recognition technology into policing
without debate, regulation, legislation or
independent scrutiny.”
Samson continued: “Rather than throwing
millions of pounds at the building of such
intrusive capabilities, the Home Office should
be investing in updating police IT systems to
ensure that the hundreds of thousands of
innocent people’s custody images and facial
biometrics are deleted automatically as soon
as they’re released without charge, bringing
them into line with DNA and fingerprints.”
Professor Paul Wiles has spent much of his
career as an academic criminologist at a
number of UK universities and is currently a
governor at Sheffield Hallam University as well
as a trustee of the National Centre for Social
Research. Until 2015, Wiles served as an
advisor to the Sentencing Council and has also
worked as a local Government commissioner.
“Untrained and neglected IT staff
increasing cyber security skills
gap” warns (ISC)²
A survey of 3,300 IT professionals conducted
by (ISC)² has revealed that widespread
underfunding in training in-house IT talent is
contributing towards the critical cyber security
skills gap. The report shows that businesses
are exposing themselves to cyber threats by
ignoring and neglecting IT professionals, with
65% of IT workers reporting that their security
advice isn’t followed.
Almost half of IT workers state that their
firms don’t invest sufficiently in ensuring that
their IT staff are security-trained, despite a
shortage of cyber security workers across 63%
of businesses. This indicates that the cyber
skills deficit is rooted in businesses failing to
listen to advice from IT staff and upskill inhouse
talent.
The report suggests that this is a leadership
issue, with 49% of respondents accusing
business leaders of a failure to understand
cyber security requirements. According to the
report, the end result is that the majority of
companies are even less able to cope with a
cyber attack than they were last year.
In February this year, (ISC)² suggested that
the cyber security skills gap will grow to 1.8
million by 2022 if current hiring and training
trends continue.
The latest research is based on responses
given by practising IT professionals from
around the world who participated in the 2017
Global Information Security Workforce Study.
Key findings from surveyed IT professionals
include the following: 43% said their
organisation doesn’t provide adequate
resources for security training, only 35%
agreed that their security suggestions are
acted upon, 55% stated their organisation
doesn’t require IT staff to earn a security
certification and 63% said their organisation
has too few security-focused workers.
“Our findings suggest that too many
organisations are so fixated on their inability
to attract top cyber security expertise that
they often overlook a tremendous pool of
talent already on staff and intimately familiar
with their infrastructure and processes,” said
(ISC)² CEO David Shearer CISSP. “The quickest
way for many organisations to protect
themselves against cyber threats is through
continuous education and empowerment of
their IT team’s constituent members.”
7
www.risk-uk.com

Britain seeks “comprehensive” post-Brexit
security partnership with European Union
through agencies such as Europol to bring
criminals to justice and prevent crime from
taking place.
Britain will remain committed to the security
of the European continent after Brexit. The
Government states that: “Our determination to
protect the safety and security of EU citizens as
well as UK citizens will not diminish.”
Britain will look to
agree on a
comprehensive new
security, law
enforcement and
criminal justice
partnership with the
European Union (EU)
after Brexit to fight
what the Government
calls “our shared
threats from terrorism
and organised crime”.
Brian Sims reports on
the latest political
developments at
Westminster
The Government’s most recent future
partnership paper, which lays out the UK’s
vision for a “deep and special partnership”
with the EU, stresses the need to build upon
and enhance the internal security co-operation
that already exists. Leaving the EU will change
the nature of that co-operation, but it will do
little to change the threats we all face or reduce
the value of the UK as a security partner.
According to the Government, that’s precisely
why it’s in the interests of Britain and the EU to
continue to work together and develop a new
framework for preventing, detecting,
investigating and prosecuting criminal and
terrorist activity across our borders.
The paper calls for a comprehensive model
for co-operation between the UK and the EU on
security, law enforcement and criminal justice,
reflecting the fact that Britain’s operational
processes and data sharing systems are
already uniquely aligned with the EU.
The Government’s three core objectives for
these new arrangements are protecting the
safety and security of citizens and upholding
justice in the UK and across the EU,
maintaining the closest and most co-operative
partnerships between Britain and the 27 EU
Member States and continuing to co-operate on
the basis of shared democratic values and
respect for the rule of law.
The UK has been one of the leading
contributors to the development of effective
information sharing and law enforcement cooperation
at an EU level, all the while working
Ongoing co-operation
The EU also recognises the importance of cooperation
in this area and has stated that it’s
firmly committed to the fight against terrorism
and international crime.
The paper says there should be a new
security treaty between the UK and the EU
post-Brexit to provide a legal basis for
continued working. In moving towards any new
agreement, it’s important to ensure there are
no operational gaps created by the transition
from one set of arrangements to another.
David Davis, Secretary of State for Exiting the
European Union, said: “With the shared threats
facing us evolving faster than ever before, it’s
vital that the UK and the EU maintain and
strengthen the close security collaboration
that’s in place. Together with the EU, we’ve
developed some of the world’s most
sophisticated systems in the fight against crime
because cross-border co-operation is
absolutely crucial if we’re to keep our citizens
safe and bring criminals to justice. We want to
build a new partnership with the EU that goes
beyond any existing relationship it has with
non-Member States such that we can continue
countering cross-border threats together.”
Home Secretary Amber Rudd added: “The
recent terror attacks in London and Manchester
and, indeed, across other parts of Europe have
served as stark reminders of the shared and
evolving threat the UK and our EU partners face
in this day and age. That’s why it’s crucial for
the security of the UK and the continent that we
continue to enhance our co-operation after we
leave the EU. This position paper is the first
step towards reaching an agreement designed
to ensure that we continue to protect millions
of people across Europe.”
Speaking on behalf of the National Police
Chiefs’ Council, Commander Richard Martin
stated: “Law enforcement co-operation
between the UK and other EU countries keeps
citizens on both sides of the Channel much
8
www.risk-uk.com

News Analysis: UK-European Union Security Partnership
safer. Any degradation in our ability to work
together and share information as we leave the
European Union gives advantage to criminals
and terrorists. We’ve worked with Government
to explain our operational requirements, the
benefits they bring and the risks of losing them.
We’re assured that this paper reflects those
requirements. It’s now for the negotiators to
work through the fine details. We’re on hand to
support the process by sharing our operational
advice and experience. In the meantime, we
continue to work closely with our EU partners.”
Boost for CT policing
Amber Rudd has also announced that an extra
£24 million is to be pumped into counterterrorism
policing in the wake of this year’s
terror attacks. The entirely new funding, which
is in addition to £707 million already
announced to support counter-terrorism
policing in 2017-2018, will be used to bolster
protective security measures in crowded places.
This will include helping to protect the public
from the specific threat of vehicles being used
as weapons.
The extra funding will go to counter-terrorism
police including the Metropolitan Police Service
and the Greater Manchester Police to assist
with their response to the threat of terrorism
and help in meeting costs relating to the recent
terrorist attacks.
“We’ve seen several devastating terrorist
attacks in quick succession this year, most
recently in Parsons Green, and the police have
responded to this challenge outstandingly,”
explained the Home Secretary. “The threat we
face from terrorism is becoming more complex
and diverse. That’s why we’re reviewing our
counter-terrorism strategy to ensure the
authorities have the powers they need to halt
terrorist activity. I’m grateful to the police
service and the Security Services for all that
they’re doing to keep us safe.”
The new funding comes in addition to the
Government’s commitment to increase
spending on counter-terrorism by 30% (from
£11.7 billion to £15.1 billion). The Government
has also provided £144 million over the
Spending Review period for a national uplift in
armed policing capability as well as funding for
an additional 1,900 officers at the Security and
Intelligence Services.
Arrests made by counter-terrorism officers in
the UK have risen by more than 50% in the year
to the end of June 2017 as the police and the
Security and Intelligence Services have
continued their efforts to make the UK a hostile
place for terrorists. The arrest figures released
by the Home Office reflect the increasing pace
“With the shared threats facing us evolving faster than
ever before, it’s vital that the UK and the EU maintain and
strengthen the close security collaboration that’s in place”
of activity by police right across the UK’s
counter-terrorism network as they tackle the
current threat.
A total of 379 arrests were made in the year
to June 2017, compared to 226 in the preceding
year. This represents a 68% increase.
Metropolitan Police Service Deputy Assistant
Commissioner Neil Basu, the Senior National
Co-ordinator for Counter-Terrorism Policing,
stated: “There’s no doubt that, since March,
and following on from the attacks in London
and Manchester, we’ve witnessed a sea change
in momentum. While the terrorist threat has
increased in recent months, so too has our own
activity, as is reflected by this significant
increase in arrests.”
Basu continued: “We’re taking every possible
opportunity to disrupt terrorist activity, be it by
making arrests for terrorism offences,
intervening where there are signs of
radicalisation or working with communities to
prevent terrorists from operating in their area.
The police service, together with the Security
and Intelligence Services, is determined to
make the UK as hostile an environment for
terrorists as possible.”
Since the Westminster attack back in March,
there have been six terrorist plots foiled on the
mainland by the police and the UK’s
intelligence community, bringing the number of
foiled plots to 19 since June 2013.
Extremism Commissioner
The Home Office has just launched a
recruitment campaign to appoint a Lead
Commissioner for Countering Extremism.
Confirmed in the Queen’s Speech, the
Commission for Countering Extremism will have
a clear remit to identify extremism and advise
the Government on new policies, laws and
other actions that may be required to tackle it.
It will also support communities and the public
sector to confront extremism wherever it exists
and promote British values.
The successful candidate for Lead
Commissioner will advise the Home Secretary
on the Commission’s future role and agree its
priorities in unison with the Home Office.
Given that there’s a strong correlation
between extremism and the poor treatment of
women and girls, the Commission will also have
a specific responsibility to ensure that the
rights of females are upheld.
David Davis: Secretary of State
for Exiting the European Union
Home Secretary Amber Rudd
9
www.risk-uk.com

ENCRYPTED HIGH SECURITY
CLASS 5
Encrypted High Security
End of Line Modules Are Only the Beginning
Inner Range’s Infiniti Integriti Class 5
is High a complete Security Hardware/Software
System
solution is a complete designed Hardware/Software
specifically for
Class solution 5/Zone designed 3 installations. specifically for
High Security installations.
Our range includes:
Our All range Software includes:
Hardware All Software Controllers
End Hardware of Line Controllers Modules
Power End of Supplies Line Modules
Keypads Power Supplies
Enclosures Keypads
Communications Enclosures Devices
Access Communications Control Readers Devices
Credentials
Access Control Readers
Why Credentials take chances?
Full
Why
End
take
to End
chances?
Encryption
compliant Full End to with End AS/NZS Data Encryption 2201.1:2007
Class Externally 5 Externally Certified Certified
BEST NEW PRODUCT
OF THE YEAR
MEMBER
AUSTRALIAN SECURITY INDUSTRY
ASSOCIATION LIMITED
T: +44 +61 3 (0)845 9780 4300 470 5000
E: integriti@innerrange.com
IREnquiries@innerrange.com
W: innerrange.com
T: 1300 319 499 W: csd.com.au

News Special: Cortech Open Innovation Events 2017
COIE: Spotlight on Industry Challenges
Cortech Developments (the specialist in risk
mitigation and dedicated provider of
integrated software solutions for Critical
National Infrastructure and high security
environments) was joined at the Glasgow COIE
by leading manufacturers Avigilon, Commend,
Harper Chalice and Paxton. Delegates
comprised an even split between end users and
consultants, while sector representation was
made up of professionals from local authorities,
custodial operations and the banking,
education, healthcare and utilities sectors.
Reflecting on the value of the event for
visitors, Jason Blundell (head of sales at
Cortech Developments) stated: “A key objective
of the COIE series is to provide a platform for
engagement around industry challenges faced
in the management and operation of
technology. We then take this a step further by
addressing many of these challenges through
the live smarter interoperability demonstration
and one-to-one discussions with technology
experts during the course of the day.”
Some of the challenges put forward by
delegates included combining legacy and new
technology, the remote monitoring and control
of technology, closed protocols, futureproofing,
lockdown capability and
understanding the differences between a
Security Management System (SMS) and a
Video Management System (VMS).
Blundell explained that the SMS versus VMS
comparison is largely about education and the
specific strategic objectives and operational
requirements of an organisation. “There seems
to be some confusion among many end users
on the differences between an SMS and a
VMS,” said Blundell. “A VMS platform relies on
ONVIF for third party CCTV integration and is
primarily designed as a video management
solution that markets itself as ‘open’. This
openness is partly due to the reliance on ONVIF
and third party interfaces which are sometimes
not everything that they might seem.”
Blundell continued: “They’re generally lowlevel
integration and suitable for many
applications, but not necessarily suitable for
high-end, mission-critical remote monitoring
and control where the management of the site,
its systems, events and alarms are a
prerequisite. It’s also worth noting that ONVIF
isn’t currently viable for the replay of video.
Therefore, replay would always be via the VMS
manufacturers’ recorders, which could incur an
additional expense. That’s different to the
The Cortech Open Innovation Event (COIE) series returned to
Glasgow on 26 September, bringing into sharp focus industry
challenges, smarter interoperability, innovative technology,
the EU’s General Data Protection Regulation (GDPR) and
cyber security resilience measures. Brian Sims reports
scenario realised when integrating via an SMS
using the manufacturer’s SDK.”
Monitoring and control
An SMS is designed to be the overall Graphical
User Interface (GUI) for all security, fire and
building systems. Operators use 3D maps of
local and remote buildings showing devices
and alarm locations.
Blundell observed: “SMS integration offers
monitoring and control of these security, fire
and building systems, alarm or event
management, measurable response that can
change depending on the time of day or day of
the week, for instance, full audit trail and
management reporting, cause and effect and
situational awareness of all the other systems.”
Blundell added: “Therefore, rather than
being part of one control system interfacing
with others, it’s a separate ‘layer’ that sits over
any manufacturer’s system. The client is free to
choose the ‘Best of Breed’ systems with which
to interface and operate a control platform
that’s truly manufacturer agnostic.”
As with previous COIE events, there was also
a focus on the future and what’s topical and
relevant for the industry moving forward.
Guest speaker Scott Simpson, CEO of The
Security Circle, addressed attendees on GDPR
compliance and the cyber security implications.
“The GDPR provides organisations with an
opportunity to enhance their information
security practice from technical, governance
and legal perspectives,” explained Simpson.
COIE Knutsford
The final COIE of 2017 – for which Risk UK is the
Official Media Partner – will be hosted at
Cortech Developments’ headquarters in
Knutsford, Cheshire on Tuesday 7 November.
Attending manufacturers on this occasion
include Commend, Geutebruck, Grosvenor
Technology and Intech Solutions.
Steve Pilkington (technical director of IT
consultancy Italik) will deliver a Keynote
presentation to delegates offering an insight
into the current cyber crime landscape and the
ten steps towards cyber risk management.
Jason Blundell: Head of Sales
at Cortech Developments
*Join Cortech Developments
and its partners at COIE
Knutsford. Visit
www.coie.uk.com for details
11
www.risk-uk.com

News Special: BCI World Conference and Exhibition 2017
Working Together on Common Objectives
The Business
Continuity Institute’s
annual BCI World
Conference and
Exhibition 2017 takes
place at the Novotel
London West Hotel in
November. Risk UK is
an Official Media
Partner for the event,
previewed here by
Brian Sims
*The online Registration Form
for BCI World 2017 is
available at
www.bciworld2017.com
**Exhibitors at the 2017 event
include Daisy Group, Sungard
Availability Services,
Everbridge, Regus, Fusion
Risk Management, Anvil
Group, Buckinghamshire New
University, Intertek and The
Emergency Planning College
Sir Bernard Hogan-Howe QPM:
Former Commissioner of the
Metropolitan Police Service
BCI World is the largest business continuityfocused
conference and exhibition in the
UK and, indeed, one of the biggest on the
global scale. This year, the event – which runs
across Tuesday 7 and Wednesday 8 November
at the Novotel London West Hotel in
Hammersmith – features a packed conference
programme, an exhibition hall promoting the
latest business continuity-centric products and
services, a themed Gala Dinner and the BCI
Global Awards Ceremony designed to showcase
the best in the industry.
The conference programme includes thought
leadership discussion and debates, detail on
new research, practical demonstrations and
Case Studies centred on the real-world
application of business continuity activities.
The programme is suitable for all levels of
practitioners (be they new to the discipline or
harbouring experience) from a wide range of
sectors. In years gone by, this event has been
attended by heads of emergency management,
business continuity managers, company
directors, senior executives, business
continuity and risk consultants, operational
specialists and risk managers representing –
but not exclusive to – the oil and gas,
Government, financial, manufacturing, retail, IT,
utilities, transport and telecoms sectors.
Those with responsibility for business
continuity, risk management, emergency
management, crisis or incident management,
disaster recovery, security, information security,
Health and Safety, change management,
procurement or facilities management will find
much of interest at this event.
Attendees will be able to share good practice
in business continuity and resilience with
experts and improve both their knowledge and
understanding with a view towards enhancing
professional development.
It’s a golden opportunity for practitioners to
place themselves at the heart of global thought
leadership, gain practical insights and then
apply them to their organisation. They can
benefit from excellent networking opportunities
and view, compare and experience first-hand
the very latest business continuity-related
products, solutions and services.
Keynote Speakers in 2017
One of this year’s Keynote Speakers is Sir
Bernard Hogan-Howe QPM, former
Commissioner of the Metropolitan Police
Service. In this role, which he left in February
this year, Sir Bernard presided over an
organisation of 50,000 people with a budget of
£3.2 billion providing a service for the 8.6
million inhabitants of London. He also held
national responsibilities, including leading
counter-terrorism policing throughout the UK
and protecting the heart of Government.
In the Keynote Plenary at conference, Sir
Bernard will focus on three major themes: the
importance of business continuity planning and
training in order to realise enhanced resilience,
the overriding importance of working in
partnership and also building enough capacity
into the system to make sure that, when a
continuity plan doesn’t quite survive initial
contact with a disruptive event, there’s enough
leadership and resources on hand to ensure an
effective and efficient response.
There’s also going to be a Keynote Speech
from a senior figure at the all-new National
Cyber Security Centre.
‘Bio-Hacking’ and data security
On Day Two, the Keynote Speaker is Kevin
Warwick, Emeritus Professor at Coventry
University and the University of Reading.
Warwick is a world-renowned scientist and
engineer, with his key areas of research being
Artificial Intelligence, control, robotics and
biomedical engineering.
Warwick became the world’s first ‘Cyborg’ in
a set of scientific experiments involving the
surgical implanting of a device into his arm to
link his nervous system directly to a computer.
At BCI World 2017, Warwick will consider the
implications of the potential for microchipping
employees, the advantages of linking a human
brain to a computer, the types of implants that
are being used today (known as ‘bio-hacking’)
and the questions this raises for the security of
data and people.
Readers of Risk UK should note that the first
morning of conference features a particularly
interesting session on designing credible
terrorism threat scenarios to inform business
continuity exercises. An informative
presentation from Richard Bond (senior
consultant at Arup) will address techniques
delegates could apply to monitor changes in
the terrorism threat to their organisations.
Further, delegates will learn how the outputs
from such targeted activity can be used to
inform the design of credible threat scenarios
that underpin exercises intended to validate
business’ ongoing continuity plans.
12
www.risk-uk.com

News Special: NAHS Annual Conference and Awards 2017
Making Sure Security’s in Good Health
The NAHS was formed back in 1994 as a notfor-profit
professional organisation in the
UK. In essence, it exists to support and
enable healthcare provision through the
delivery of professional security, ultimately
enhancing the healthcare environment.
As a stakeholder in healthcare security, the
NAHS supports NHS Protect as the latter
continually develops the strategic direction and
development of NHS healthcare security. This is
duly reflected in NAHS membership of NHSP
Working Groups as a key stakeholder.
One of the NAHS’ key roles is to promote
education and the professional development of
healthcare security practitioners. Nowhere is
this better illustrated than by the organisation’s
Annual Conference. Organised by All Security
Events, this year’s conference and exhibition
runs on Thursday 9 November at The Studio, 7
Cannon Street, Birmingham B2 5EP, with Risk
UK serving as Official Media Partner.
Platinum Sponsor for the day is B-Cam, with
sponsors Carlisle Support Services and Paxton
also in attendance. Also exhibiting at the
conference are Gunnebo, Deister, Skyguard,
Corps Security, Volunteering Values and Lesar.
The event will feature the NAHS’ 2017 Annual
General Meeting and a networking drinks
reception (sponsored by Paxton).
Wealth of knowledge
Jayne King – chairman of the NAHS and head of
security and site services at Guy’s and St
Thomas’ NHS Foundation Trust – is set to chair
the conference proceedings which feature a
Keynote presentation from Tony Porter QPM
LLB, the Surveillance Camera Commissioner.
Porter was appointed Surveillance Camera
Commissioner in March 2014. He harbours a
combination of business and law enforcement
expertise and is an intelligence specialist (most
recently within the financial sector). Porter’s
experience spans community and business
engagement, international counter-terrorism
and serious and organised crime.
As an experienced specialist consultant on
soft restraint and the use of force, Doug Melia
speaks regularly at a multitude of events. In
times past he has written for The Guardian and
The Times’ Education Supplement as well as
Safety Management magazine.
A Security Industry Authority (SIA)-approved
trainer, Melia sits on an Advisory Panel for the
use of mechanical restraints, holds an SIA close
protection licence and, operationally, spent
The National Association for Healthcare Security (NAHS)
works to continually improve security in healthcare facilities
through training and the exchange of information and
experiences, all the while aiming to promote co-operation
and development among its members. Brian Sims previews
the organisation’s Annual Conference and Awards 2017
many years in his teens and early 20s as a door
supervisor working in the North West region.
At the NAHS Conference, Melia will be
delivering a thought-provoking discourse on
‘Reasonable Force – The Taboos’.
Making her presentation under the heading
‘Freedom to Speak Up’ is Georgina Charlton,
deputy Freedom to Speak Up guardian at Guy’s
and St Thomas’ NHS Foundation Trust. Charlton
is responsible for running the ‘Showing We
Care By Speaking Up’ campaign at Guy’s and St
Thomas’. Her role involves ensuring that staff
have a number of safe mechanisms to raise
concerns and working with the Board to create
an open and honest culture for speaking up.
Charlton provides leadership for the London
region of Freedom to Speak Up guardians as
their dedicated chairperson.
Charlton has a clinical background as a
senior diagnostic radiographer and has worked
at Guy’s and St Thomas’ for just shy of a
decade. Her areas of clinical expertise are
dementia awareness and delivering
compassionate care in radiology.
Prior to being seconded to the guardian role
in January, Charlton was responsible for
delivering the largest imaging accreditation
project in the UK collaboratively with Guy’s and
St Thomas’ and King’s College, London.
In addition, a representative from
Crimestoppers will be talking on the unique
public/private sector partnership that has been
forged between that organisation, Carlisle
Support Services and the NAHS.
Other speakers on the day are scheduled to
include sponsors B-Cam and Paxton.
NAHS 2017 Awards
This year’s NAHS Awards are sponsored by B-
Cam, with the categories as follows: Best
Healthcare Security Officer, Best Healthcare
Security Team, Best Contribution to Healthcare
Security and Best Security Supplier.
The special Chairman’s Award is reserved for
nominations of significant merit not covered
within the standard categories.
*For further information and
to register your place at
conference access
www.allsecurityevents.com/
event-pro/nahs/
13
www.risk-uk.com

Safety in Numbers: Risk Management
Regimes for Large-Scale Events
Terrorist attacks
against the public in
Western Europe and
North America have
been on the rise since
2011. According to the
Global Terrorism
Database, we’re
currently experiencing
the highest rate of
incidents since 1994.
Within that scenario,
both the methods and
motives of the
terrorists are evolving.
In the aftermath of
several devastating
events, Andrew
Mortimer observes
why he believes the
way in which large
crowds are protected
and managed merits
reconsideration
This year alone, terrorist attacks have
included the use of firearms, explosives,
bladed weapons and, increasingly, acids,
other chemicals and vehicles. Of late, we’ve
seen vehicles used as weapons against crowds
in London (Westminster, London Bridge and
Finsbury Park), Stockholm, Barcelona and
Charlottesville, Virginia. During the August
Bank Holiday, while a number of attendees at
the Notting Hill Carnival in London were treated
for injuries after being doused in an
unidentified liquid by an assailant.
Attacks at concerts and nightclubs have also
been on the rise in recent years. Gunmen and
suicide bombers have infiltrated venues in Paris
(The Bataclan, 2015), Orlando (the Pulse
nightclub, 2016) and Manchester (MEN Arena,
2017), tragically resulting in the deaths and
serious injury of hundreds of people.
While police forces and counter-terrorist
units have necessarily spearheaded changes to
their approach around such episodes, event
and venue managers, security teams and
facilities management leaders have also had to
address their own methods of operation.
Essentially, anyone with a professional
responsibility for keeping the public safe at
large events has been motivated to ensure their
events/premises are as secure as they can be.
Across the globe, fundamental reviews of
security, training and crowd safety have been
undertaken and put into effect. Overhauling
policies and procedures, however, will put
pressure on venues and their security partners
in terms of increased manpower and
equipment. Yet with strategic contingency
planning, clear communication and frequent
policy reviews, this pressure can be anticipated
and alleviated, at least to some extent.
For its part, the Metropolitan Police Service
holds regular Project Griffin briefings (ie events
for business owners to better equip themselves
when detecting and deterring terrorism). Other
bodies also issue regular advice and guidance.
Indeed, the Project Griffin programme has been
extended so that training can now be delivered
by in-house teams to the wider company
security network. Also, the National Counter-
Terrorism Security Office has widely publicised
its ‘Run, Hide, Tell’ campaign.
In addition to keeping abreast of the latest
advice from industry bodies and the
authorities, and conducting ongoing risk
assessments, security solution providers must
also proactively plan for emerging threats.
Sometimes, this can be as a result of specific
incidents, such as the above mentioned
vehicular attacks, which have led local councils
to review the vulnerability of public spaces and
install protective bollards and barriers.
In the case of sports and music venues,
where visitor experience can be more overtly
influenced by site design, more subtle solutions
can be adopted. For example, the famous
cannon statue at Arsenal FC’s Emirates Stadium
in north London essentially serves the same
purpose as a barrier.
In other instances, risk assessments may be
in response to emerging technologies and
trends, such as the development of ceramic,
plastic, fibreglass or carbon fibre weapons
which are undetectable by traditional metal
sensors, or drone technology (which now poses
a clear threat to open-air events).
Technology and human intelligence
To tackle these challenges, it’s crucial to have a
robust supply chain and trusted partners in
place who can supply rigorous solutions. For
example, anti-drone technology including
radars and GPS disablers is now being invested
in by security providers. For the detection of
weapons, more advanced, high frequency
scanners and x-ray machines are being
deployed in tandem with specially-trained staff.
This combination of technology and human
intelligence is of the utmost importance. While
technology develops at a relentless pace, the
experience and intuition of human beings
cannot be rivalled. Deterring reconnaissance by
would-be attackers is hugely important. Even
the mere presence of well-trained officers with
the ability to detect and identify ‘hostiles’ can
potentially disrupt reconnaissance activity.
Allied to this, new smart CCTV equipment can
recognise the silhouettes of individuals and
identify when their outlines change. This helps
to alert security if someone has left a bag
unattended, but human insight is needed to
assess the true threat – is it a genuinely
suspicious occurrence or an honest mistake?
Only a person can decipher that detail. For staff
to be able to work with these advanced
technologies, though, investment is required.
14
www.risk-uk.com

Opinion: Crowded Places Security and Counter-Terrorism
Focusing on people
When recruiting for security teams, strict
background checks are, of course, vital. When
the right people have been recruited,
investment in ongoing training, including
industry-recommended Security Industry
Authority accreditation and equipment-focused
courses, is needed to ensure they can perform
to their highest ability. Furthermore, this
empowers them to be that much more
confident in making strategic decisions about
responding to specific threats.
Security officers put themselves in harm’s
way so it’s critical that businesses equip them
with the right knowledge and skills to respond
safely to threats. Looking out for the well-being
of its teams should be a key priority of any
security business, and especially so at points of
heightened concern.
Business leaders – including executives and
those based at head office – should be seen
standing shoulder to shoulder with their teams
on the front line on a regular basis, and never
more so than in the wake of an incident.
In the immediate aftermath of the
Manchester Arena attack, many executives and
security leaders across the industry worked
alongside event staff and security teams. The
senior team at OCS was on hand and worked
together with venue executives from the
Liverpool Arena and AEG’s O2 to reassure
colleagues on duty at subsequent Iron Maiden
and Take That concerts. Management working
alongside staff is so important for morale. Not
only does it show solidarity, but also
demonstrates how much we value our security
teams as well as helping those in charge to
better understand the challenges faced by
colleagues on the front line.
Concern for others is a key fundamental in
this industry. People visiting an arena for an
event or a concert are there to enjoy
themselves and, while the goal of the security
team is to be diligent and mitigate risk, the
public’s experience must also be a top priority.
An immediate response
When incidents do happen, we must respond
immediately. This is true not just for
organisations directly affected, but for those in
the wider area and industry. Intelligence comes
at incredible speed from the authorities and
industry bodies. In practice, this means MI5
may raise the terrorism threat level from
‘Substantial’ to ‘Severe’ or even ‘Critical’.
Security companies must be ready to adapt
accordingly in very short order.
At this point, meetings are held by those
responsible for event security to agree what
additional resources are needed and how these
will be deployed. Those resources may include
personal search equipment (metal detectors,
wands and arches, etc), additional surveillance,
physical pat-downs and bag searches and the
introduction of sniffer or general purpose
security dogs or extra staff.
As threat levels rise, so too does the
complexity of the response needed and,
indeed, the cost of implementing it. This is why
initial planning is so important. Changes to
procedures and policies also need to be
reassuringly communicated to the public.
Public opinion and perception is incredibly
important when it comes to events. If people
don’t feel safe when attending events, then the
whole industry – and even the economy – will
suffer. Security must create a feeling of safety
and reassurance around a venue, but not to the
extent that a given premises becomes an
impenetrable fortress. There’s a delicate
balance to be struck between public safety and
rigorous control allied to the need for creating a
hospitable and welcoming environment.
Customer service must be a key priority
following incidents. This needs to be
emphasised to front line security teams. The
importance of reassuring individuals at these
times cannot be understated, and those
messages must be backed up in reality.
The primary goal is to afford customers
positive experiences such that they’re happy to
queue, be scanned and searched and follow
tighter restrictions for safer events.
Andrew Mortimer:
Managing Director of
Destinations and Venues at
OCS Group
“Even the mere presence of well-trained security officers
with the ability to detect and identify ‘hostiles’ can
potentially disrupt reconnaissance activity”
15
www.risk-uk.com

Leave No Stone Unturned
Autumn’s now upon
us. With the nights
already drawing in
and the festive season
only just around the
corner, incidents
involving commercial
burglaries are already
on the rise. Dan Hardy
seeks to identify the
scale of the problem
and, indeed, the
underlying reasons for
commercial burglary
before offering some
timely advice about
what businesses
across all vertical
sectors can do to
prevent themselves
from becoming the
unfortunate victims
Commercial burglary is a year-round
problem, but one that peaks from October
onwards with the darker evenings. It’s a
time of the year when retailers have more
stock, there’s a higher density of people on the
High Street and commercial premises are busier
(as a result of which members of staff might not
be as vigilant as at other times). All of the
above serves to increase the overall risk profile.
Feedback from members of the National
Business Crime Solution (NBCS) suggests that,
so far in 2017, commercial burglary has
increased from between 22% and 55% across
the NBCS’ membership when compared to the
same period last year. Even though this is by no
means a definitive figure, it does suggest that
this type of nefarious activity is a growing trend
and that those with malicious intent in mind
view commercial premises as being vulnerable.
When considering the impact of a commercial
burglary, it’s tempting to focus solely on the
items stolen. However, the true cost of this type
of crime is more far-reaching and can
encompass property damage and repair, loss of
trade, customer dissatisfaction, management
time in dealing with the issue and colleague
time in terms of labour. Then there are the nonfiscal
issues to consider such as reputational
damage and the fact that employees might feel
less safe when carrying out their duties.
Opportunist or planned
Commercial burglaries tend to fall into one of
two types: opportunist or planned. In the
former, an individual will often enter through an
unlocked or non-secured door or window,
tempted by the sight of unprotected stock or
perhaps a laptop or smart phone that’s easily
accessible. In the latter, a level of planning and
hostile reconnaissance will take place. Burglars
will often have a co-ordinated strategy (a recent
high-profile example being the burglary
perpetrated on the Hatton Garden Safe Deposit
Company in London).
With so many variables involved,
organisations must carry out a risk and threat
assessment to ensure that they’re in the best
position possible to deal with any real or
perceived danger, which can then help in
developing a corporate security policy and
strategy document. Undertaking an in-depth
analysis of an organisation’s activities,
premises and facilities means that the risks can
be fully understood and acted upon. Just as
importantly, regular reviews of existing security
programmes and measures are necessary to
maintain adequate safeguards.
The sharing of data/intelligence through
collaboration should never be underestimated.
A centralised intelligence hub for both the
police and the business community is starting
to connect crimes which would have
traditionally been seen as being independent.
Know your onions
Businesses must do all they can to protect
themselves, yet all-too-often they’re failing to
secure their premises. Rather than trying to
cover all elements at once, the best way in
which to approach any security strategy is to
treat it like an onion with different layers. It’s
also worth pointing out that, while much of
what should be considered appears to be
obvious, it’s surprising just how often ignoring
one of these seemingly innocuous factors can
offer burglars an opportunity.
The first layer of the process is to look at a
building’s exterior and identify any vulnerable
areas. It’s also worth reaching out to
neighbouring companies to share Best Practice
and help each other spot any weaknesses or
suspicious behaviour. Talking can often act as a
prompt to address an issue.
A building’s exterior should also be clean, so
graffiti must be cleaned off, rubbish removed
and overgrown vegetation trimmed so as not to
obscure CCTV and reduce the effectiveness of
lighting. Bins must be kept out of sight as they
could serve as a climbing aid, and particularly
so for access to low-level windows.
16
www.risk-uk.com

Opinion: Mind Your Own Business
Access control is vital, so service and fire
doors should be locked when not in use and,
preferably, not used as an out of hours access
point or a way for personnel to exit the building
to have a cigarette break. It’s advisable to use
high quality door frames and doors, steel
reinforcing and anti-thrust bolts on doors and
bars on windows, while dropbars and magnetic
door locks should be regularly inspected for
damage or technical faults, as indeed should
any installed security fogging systems.
Grilles and shutters are an excellent way of
deterring burglars, while fixing bollards into the
ground surrounding a given premises will
protect against ram-raiders. Planning
permission could be required for such a move,
though, so do make a point of checking on this
before embarking on any work.
Window glass is also available in a number of
different formats. Laminated glass in particular
is very difficult to break through because it’s
manufactured by bonding a layer of tough
plastic between sheets of glass. If this option
isn’t feasible, then an alternative cheaper
option is plastic film, which will increase the
strength of the glass and, when a ‘mirrored’
option is used, restrict a burglar’s view into rear
storage areas.
Cause for alarm
Burglars will often try to overcome an intruder
alarm system by cutting the signal and filling
exterior alarm bells with substances such as
foam to prevent then from sounding. A common
ploy is to set the alarm off repeatedly and wait
until the point at which the police service and
key holders stop responding to it, thus giving
burglars more time to act.
It’s also worth remembering that, although
traditional alarms may alert staff or passers-by,
they offer limited police protection. Due to an
increase in false alarms, police services will not
respond to a ringing bell or siren unless there’s
evidence of an offence in progress.
A monitored alarm can provide a confirmed
signal to pass to the Emergency Services (often
a requirement of insurers).
Likewise, a CCTV system must be maintained
and fit for purpose at all times, covering both
internal and external areas. Recorded images
should be set to record for a minimum of 30
days, while stringent Codes of Practice need to
be followed. Stipulations here will include
ensuring that the date and time are
incorporated into the recording before video
evidence can be successfully used in a
prosecution case within a Court of Law.
If for any reason an alarmed zone is switched
off, ensure that it’s switched on again and
make certain secondary alarm equipment is
moved if building layouts change or seasonal
displays are put in place for retail outlets.
It makes sense not to leave tills with money
in them and to hide expensive stock from view.
Safes and secure cages are now available that
are fitted with sensors. Similarly, key security is
vital. Only authorised staff should have access
to certain keys or combination locks. Those
individuals must thoroughly understand their
responsibilities for locking and securing
fastenings on windows and doors, offices,
safes, rooflights and other exits.
Although cyber security should be on the
radars of all organisations, it’s worth
remembering that access to servers and other
IT equipment must also be restricted in order to
secure vital data. Just as importantly, any
Internet Protocol-based devices including CCTV,
access control and intruder alarm systems
should be secured in order to thwart hackers.
Train to gain
A security strategy can only be successful if
everyone within an organisation is given the
correct level of training, such that they can then
keep a watchful eye out for suspicious
behaviour. The old and established saying that
‘a chain is only as strong as its weakest link’ is
relevant here as it’s often those who are Front
of House – such as receptionists – that are in a
prime position to monitor and identify any
questionable behaviour.
Retail environments should adopt an
‘intelligent guarding’ approach that combines
technology – and the data realised by it – with
individuals who can deal with the outputs of
these systems. Knowledge of counter-terrorism,
loss prevention, report writing, behavioural
analysis and profiling, Health and Safety and
data and intelligence gathering – in unison with
First Aid and excellent customer service
abilities – are now vital for the modern day
security officer, as is the ability to work as part
of a team with non-security based personnel.
In the unfortunate event that an organisation
experiences a commercial burglary, the most
positive thing it can do is learn from it and
ensure that measures are put in place to
prevent any reoccurrence. Preventative security
using a common sense approach is the only
way in which to maintain a deterrent effect that
will reduce the likelihood of criminal activity.
Dan Hardy:
Managing Director of the
National Business Crime
Solution (NBCS)
*Mind Your Own Business is the
space where the NBCS examines
current and often key-critical
business crime issues directly
affecting today’s companies. The
thoughts and opinions expressed
here are intended to generate
debate and discussion among
practitioners within the
professional security and risk
management sectors. If you would
like to make comment on the
views outlined, please send an
e-mail to: brian.sims@risk-uk.com
**The NBCS is a ‘Not-for-Profit’
initiative that enables the effective
sharing of appropriate data
between the police service, crime
reduction agencies and the
business community to reduce
crime and risks posed to all. By
providing a central repository
where business crime data is
submitted, shared and analysed,
the NBCS is able to gather the
necessary intelligence and support
to more effectively detect, prevent
and, subsequently, respond to
crimes affecting the UK’s business
community. For further information
access the website at:
www.nationalbusinesscrime
solution.com
“A centralised intelligence hub for the police service and the
business community is starting to connect crimes which
would have traditionally been viewed as being independent”
17
www.risk-uk.com

October 11, 2017
Tatton Park, Knutsford,
Nr Manchester, UK
Axis partners showcased
2N, Aimetis, Agent Vi, Araani, Assa Abloy AB,
Cathexis Europe Ltd, Citilog, ComNet Europe
Ltd, Customer Clever Ltd, Dantech Electronic
Engineering, Digital Barriers, Digital Forge Ltd,
Dot Origin Ltd, EIZO Limited, Entelec Control
Systems Ltd, Falt Communications AB, Genetec
Europe, Herta Security, IPS, Milestone Systems,
Mirasys, Morphean, NVT Phybridge, Observit AB,
Optex (Europe) Ltd, P3R Lab, Prysm, Secure Logiq
Ltd, Seetec GmbH, Siklu Communication, Sound
Intelligence, Telcred AB, Vaxtor, Veracity UK Ltd,
Xtralis UK Ltd, Wavestore Global Ltd
Axis Partner Showcase 2017
Meet the
leading experts
in network video.
Join Axis Communications and 35 of the most innovative companies in
the network video industry and find out what solutions, technologies and
products are available today to help you grow your business!
Register now!
www.axis-communications.com/
Axis_Communications_UK_Partner_Showcase
Video management software, security applications, business management applications,
hardware/technology, physical access control, transmission and storage, and more!

BSIA Briefing
Preventing injury in the workplace should
be a key concern for any employer, of
course, but it ought to be of particular
relevance for employers in our business sector
due to the potentially dangerous environments
and situations in which security personnel can
and do find themselves.
For their part, employers have a legal Duty of
Care towards their employees and any
demonstrable failure to fulfil this obligation can
impact severely on the host business. Those
negative impacts can range from low staff
morale and high staff turnover through to
financial penalties, reputational damage and
even prosecutions in a Court of Law.
In February last year, new guidelines were
issued by the Sentencing Council for Health and
Safety, food and corporate manslaughterrelated
sentencing, enabling the courts to issue
significantly larger fines to those employers
who breach their Duty of Care towards their
employees. Prior to the new guidance being
issued, fines for serious breaches would
typically run to several hundred thousand
pounds, but under the new guidelines, fines
can start at several million pounds for a large
organisation that’s found to be highly culpable
in what’s defined as a Harm Category 1 incident.
Courts are given guidance on how to
determine the offence category using
culpability and harm factors, which are then
used to determine an offending organisation’s
fine from a matrix of suggested ranges.
Culpability is determined to be ‘High’ if an
organisation is proven to have fallen far short
of the appropriate standard, for instance by
failing to put in place measures that are
recognised standards in the industry, ignoring
concerns raised by employees or others, failing
to make appropriate changes following prior
incident(s) exposing risks to Health and Safety
and allowing breaches to subsist over time.
‘Aggravating factors’
The harm category is determined by the
likelihood of the risk of harm created by the
offending organisation’s breach alongside the
seriousness of the harm at risk of being
realised. For example, a Harm Category 2
means that the offending organisation’s breach
risked a high likelihood of harm that could
amount to physical or mental impairment which
has a substantial and long-term effect on the
sufferer’s ability to carry out normal day-to-day
activities, an effect on their ability to return to
work or, alternatively, a progressive, permanent
or irreversible condition.
For a large organisation – ie one in which the
turnover or equivalent is £50 million and over
Health and Safety Issues in
the Security Business Sector
Managing Health and Safety is essential for any business
operating in the UK. Failing to adequately do so can leave an
organisation vulnerable to a number of considerable
business risks. Here, James Kelly discusses Health and Safety
and how various initiatives are helping to address issues
prevalent in the security sector
per annum – that’s found to have high
culpability and a Harm Category 2, the starting
point for an imposed fine would be £1,100,000
within a category range of between £500,000
and £2,900,000.
In addition, there are a number of
‘aggravating factors’ which can result in an
upward adjustment from the starting point. In
some cases, it may be deemed appropriate to
move outside of the identified category range.
With this in mind, it’s vitally important for
employers within the security business sector
to be aware of their Health and Safety
obligations and ensure that they take all of the
necessary steps to prevent Health and Safety
incidents from occurring. The Health and Safety
Executive’s (HSE) website can assist firms in
identifying what they must do to comply with
Health and Safety legislation, while there are a
number of additional resources available to
help in managing this critical facet of business.
Some of the simple things companies can do
to manage this discipline include writing a
Health and Safety policy, providing employees
with training and information, providing the
James Kelly: CEO of the British
Security Industry Association
19
www.risk-uk.com

BSIA Briefing
right workplace facilities and reporting
incidents when they occur such that lessons
can be learned for the future.
‘Near miss’ reporting
An important area that’s often overlooked is
that of ‘near miss’ reporting. Near miss
reporting is a vital part of accident prevention
and helps to create a safer working
environment for everyone.
Many near misses occur and remain
unreported because people often forget the
crucial role that near misses play in accident
and incident prevention. A near miss is an
unplanned event that didn’t result in an injury,
illness or damage, but most certainly had the
potential to do so. For example, when a
member of the security team is carrying out a
vehicle search, a stored item may fall out, but
the officer doesn’t sustain an injury and the
item itself isn’t damaged.
Near miss reporting is not to be confused
with hazard reporting. Hazard reporting is when
a potential hazard – such as a wet floor, for
example – is identified, but a near miss is when
someone actually slips on that wet floor
without sustaining any injury. It’s equally
important to report both.
Reporting near misses enables businesses to
learn essential lessons, take corrective actions
and, most importantly, prevent similar or more
serious occurrences from materialising in the
future. It has been shown that a serious injury
is often preceded by a number of near misses
or warnings, meaning that an unreported near
miss could be the next accident.
As well as the Health and Safety risks present
in most workplaces – such as slips and trips,
working at heights, electrical hazards and
ergonomic hazards (to name a few) – there are
additional risks to consider for security
personnel due to the environments and
situations in which they might find themselves.
Violence reduction
Research commissioned by the Security
Industry Authority (SIA) back in April 2015
identifies that security personnel believe the
potential for violence to be perpetrated on
them is an ongoing problem. They expect to
have to deal with a certain degree of violence
as part of their work.
“Reporting near misses enables businesses to learn
essential lessons, take corrective actions and, most
importantly, prevent similar or more serious occurrences
from materialising in the future”
In fact, the research reveals that, during the
year covered by the study, 37.67% of
respondents had experienced a physical
assault requiring First Aid, with 2.75% of these
interviewees reporting that physical assaults
needing First Aid treatment had occurred ten
times or more. 19.91% of respondents to the
SIA’s research also claimed to have experienced
a physical assault requiring hospital treatment.
It therefore comes as no surprise to learn
that reducing acts of violence against security
personnel is a key concern for our industry
bodies, many of which are represented through
a multi-agency Violence Reduction Advisory
Group established by the SIA.
The group includes representatives from a
wide range of stakeholders, including the
British Security Industry Association, the
Government, the police service, local
authorities, the HSE and both buyers and
providers of private security solutions as well
as a wide range of other organisations. It has
already made significant progress in a number
of areas that contribute towards the SIA’s
violence reduction strategy.
Indeed, the group has provided a healthy and
informed challenge of the SIA’s progress in
delivering on its strategy and action plan and
has championed cross-cutting initiatives which
require support from multiple organisations. An
example of one of these initiatives is training –
either training requirements and standards
mandated by the Regulator or further
voluntarily adopted training. Conflict resolution
training features highly in the SIA’s research
results as a method for reducing violence.
Health and Safety Forum
Another group that aims to improve Health and
Safety within the security industry is the BSIA’s
Health and Safety Forum. The Health and Safety
Forum meets regularly as a vehicle for
employers in the security sector to share
knowledge and Best Practice and remain up-todate
with the latest changes to Health and
Safety legislation and standards.
This group of employers is currently collating
statistics relating to workplace incidents such
that trends specific to the security business
sector may be identified and mitigated.
Members are also planning to develop industryspecific
guidance with a view to helping
employers manage Health and Safety, taking
into account the risks that security personnel
are most likely to encounter in their duties.
Ultimately, by striving to achieve Best
Practice in the management of Health and
Safety, the risks to employees can be
significantly reduced by the host organisation.
20
www.risk-uk.com

They see a well secured airport.
You see smart data to
optimize traveler flow.
Bosch empowers you to build a safer and more secure
world. And with built-in video analytics as of the IP 4000
cameras, we allow you to use video data for more than
security alone. Like identifying interruptions and
patterns in airport traffic.
Find out more at boschsecurity.com
+1
People counting
Queuing alarm
Enforcing safety
regulations

SBD and CPTED: Security’s Pivotal
Role in the Construction Sector
For each building
planned, designed
and built to become a
new part of our city
landscapes, architects
and design firms are
very often the first
links in the chain. The
ingenuity and skill
that they bring to
construction design
processes is
undoubted, but even
these central
individuals need
helping hands. Philip
Strand argues why
security professionals
must be brought into
the process at the
earliest stages
Dr Philip Strand PhD MBA:
Senior Risk Consultant at
CornerStone GRG
22
www.risk-uk.com
Cities continue to grow across the UK. Even
the most conservative construction
industry forecasts predict at least 1.2%
growth through 2018 and beyond. Although
that number may seem small, this equates to a
commitment of more than £500 billion worth of
projects focused on infrastructure, private
housing and commercial properties within the
next few years.
Construction project teams include not only
architects and designers, but also structural
engineers, investors, city planners and a
multitude of other stakeholders who are all
well-qualified to make contributions to the
design process. All too often, however, security
professionals with bespoke education, training
and experience in building operations are
brought into teams far too late to have any
appreciable influence on security-related
aspects of building designs.
While there may be reasons for late
invitations going out to security professionals,
this oversight can come at a significant cost to
both building owners and, more likely than not,
a building’s future users.
Quite sensibly, most designers begin their
projects with the building’s ‘user requirements’
in mind. Early in the design process, workshops
are held to determine the activities that will go
on within the building and how the building’s
users should benefit from its existence.
By way of documents that are logically
similar to the Operational Requirements
Reports of the Centre for the Protection of
National Infrastructure, designers, architects
and engineers conceptualise their buildings
inside and out to meet people’s stated needs.
User groups and their spatial needs, aesthetic
requirements and emotive goals, as well as
practical concerns about Health and Safety, are
all captured in ‘user requirements’ at the early
stages of projects.
Principles of security
Practical requirements related to security,
however, are very often either left out or
woefully underestimated at the early stages of
projects. This occurs not as a function of
designers or other stakeholders being oblivious
to security as a requirement, but rather as a
result of project team leaders mistakenly
viewing ‘security’ as a collection of cameras,
turnstiles and card readers that can all be
simply bolted into the walls and floors after the
majority of the building has been planned (and
sometimes even constructed).
Excluding principles of security from
influential ‘user requirements’ documents and
excluding security professionals from project
teams during the early phases of design
reduces the chances that the building will be
inherently securable which, in turn, increases
the likelihood that awkward, excessive and,
ultimately, more expensive security solutions
will be required after the building is phased
into everyday use.
The idea that early engagement can enable
security professionals to have positive impacts
on construction projects isn’t new. Further,
Secured By Design (SBD) and Crime Prevention
Through Environmental Design (CPTED) are two
well-respected programmes that seek to make
buildings and spaces inherently more secure
before they’re even built.
SBD provides guidance for ‘designing-out
crime’ by ensuring that buildings’ perimeters,
walls and other features are configured in ways
that make it difficult for criminals to operate.
Roads and footpaths leading up to buildings
are also considered from a security perspective.
For its part, CPTED operates on a deeper,
more psychological level. CPTED promotes the
use of basic design principles that make
criminals feel uncomfortable and ‘observed’ to
the point that they’re deterred from causing
trouble in an area. The principles of CPTED
encourage people to come into spaces and use
them for legitimate purposes such that others
cannot use those spaces for illegal reasons.
By incorporating CPTED principles into
building designs, crime can be measurably
reduced, thus cutting back on the need for
expensive technological solutions and
increasing the efficiency of those technological
systems that remain necessary.
Not only are SBD and CPTED’s design
recommendations normally ‘cost neutral’ (from
a design perspective), but they can also reduce
security guarding costs, lessen CCTV camera
requirements and cut back on material losses.
When these reductions are factored into
operating expenditure estimates over the
lifetime of the building, early engagement with
security professionals can then readily be seen

Security in the Built Environment
as an extremely important cost-saving decision
that can be taken.
Dynamic Vehicle Assessments
Beyond crime, if there are risks related to
terrorism present, then there can also be a
great deal of value in engaging early with
explosive blast experts and security
professionals capable of conducting Dynamic
Vehicle Assessments (DVAs).
Since stand-off range is a tremendously
important variable in blast mitigation
strategies, and because tight corners and
spaces are extremely important factors in DVAs,
the input of security experts at the very
beginning of a project is much more valuable
than that which can be provided at some point
after a building’s foundations have been dug.
Sometimes, it can be the case that simply
moving a road or a building just five metres in a
given direction could save stakeholders
hundreds of thousands of pounds in blast
mitigation measures. In more extreme cases,
five metres of extra stand-off can be the
difference between a feasible blast mitigation
strategy and having no feasible options at all.
Fortunately, the problem of late engagement
with security professionals in construction
projects is being addressed by an increasing
number of accreditation schemes that require
projects to incorporate recommendations from
Risk, Threat and Vulnerability (RTV)
Assessments in their designs. Specifically, RTV
Assessments calculate the business impacts
that security incidents might have on the
assets, people and strategic objectives of
organisations using buildings.
Focusing attention on BREEAM
The Building Research Establishment
Environmental Assessment Method (BREEAM)
is the world’s longest-standing method for
ensuring the sustainability of buildings and
calls for new building projects to include a
‘Security Needs Assessment’. This makes sense
given research commissioned by SBD that
estimates six million tonnes of CO 2 is
generated annually by resources spent on
preventing and investigating crime.
The BRE’s new Security Assessment scheme,
entitled SABRE, goes a step further by
encouraging construction projects to fully
integrate security factors throughout the entire
construction process.
BREEAM’s acknowledgement of the
importance of security is a step in the right
direction, but other schemes and methods will
need to adopt similar views before real traction
can be achieved. The Royal Institute of British
Architects’ (RIBA) well-known, five-stage
project management model is understood by all
construction companies within the UK. In
theory, an RTV Assessment should inform the
concept designs generated by construction
project teams in RIBA Stage 2. BREEAM audits
encourage companies to conduct these
assessments by giving additional points for
their completion. More points are awarded if
the companies pass a SABRE accreditation.
In reality, though, RTV Assessments are often
commissioned too late to have any real impact
on a building’s design.
Consider the fact that it can easily take a
procurement team a month or more to go
through a tender process and select a security
company to undertake the RTV Assessment. In
short, if the project team didn’t consider the
RTV Assessment well before beginning Stage 2,
then it’s highly unlikely that a ‘suitablyqualified’
security professional will be
commissioned in time for an assessment to be
completed and its results to have a discernible
impact on the concept design.
The project team will score the extra BREEAM
and SABRE points for having the assessment,
but the practical value of the work is unlikely to
be capitalised upon. The project team will find
out too late that an explosive blast expert or
some other specialist security expert should
have been included within the team.
“Sometimes, it can be the case that simply moving a road
or a building just five metres in a given direction could save
stakeholders much money in blast mitigation measures”
23
www.risk-uk.com

‘The Perimeter’, as it
was once known, is
quickly going the way
of the Dodo. Between
Bring Your Own Device
schemes and the mass
migration to the cloud,
IT security
professionals can no
longer rely on the
boundaries of their
network to be the true
borders in their area of
responsibility. That
being the case, where
do they go from here?
Adam Jaques offers his
take on the matter
Left To Their Own Devices
Quite predictably, Bring Your Own Device
(BYOD) refers to a policy of allowing
employees to literally bring their own
devices into work and use their employer’s
network in order to do their job. It might prove
to be a headache for IT professionals inside the
host company, but has clearly been quite
attractive to management, who often see an
opportunity to save money, increase
productivity and, ultimately, streamline the
working lives of their employees.
This poses tough questions for security
professionals. They’ve every right to be
worried, too. A panoply of studies show that,
time and time again, human error is so often
the prime cause of a breach. Further, recent
reports have indicated that personal devices on
corporate networks are behind many insider
threats. In short, BYOD serves up a whole new
salad of security variables for IT security
professionals, many constituent elements of
which may seem tough to digest.
The moving parts that a BYOD policy
introduces confront IT Departments with a
variety of devices, brands and users and a
veritable kaleidoscope of data that can be
difficult to manage. You’re not only adopting
your employees’ devices, but often the services
and Apps that they regularly use as well.
Let’s be clear that BYOD isn’t going away
anytime soon. The corporate perimeter is
already heading out of sight. Workforces are
increasingly mobile and dispersed with the rise
of networked technology and the proliferation
of ‘Work at Home’ policies. It’s a trend that will
be hard to fight. A study by analyst Gartner
shows that, by the end of this year, 50% of
companies will require employees to use their
own devices for work-related tasks.
BYOD: the central considerations
So what do organisations need to think about
on the path towards BYOD? Compliance
considerations must come before the first draft
of any BYOD policy. Industry regulations and
standards must be understood along with the
issues that concern your specific sector when it
comes to IT.
In the healthcare sector, for example, BYOD
policy needs to take into account the great
wealth of intimately personal data that will flow
through users’ devices. For engineering, the
policy must recognise the value of the
Intellectual Property with which members of
staff are engaged on a daily basis.
All of this becomes especially important for
European organisations, who will soon face the
daunting compliance challenge of the EU’s
General Data Protection Regulation (GDPR),
which comes into effect in May 2018. The raft of
requirements it will introduce are all backed up
by a hefty 4% penalty on global revenue for
particularly delinquent proven offenders.
Survey results published by Strategy
Analytics have shown increasing fears around
BYOD on the part of European businesses, with
10% of those professionals quizzed suggesting
they expect the use of BYOD-enabled tablets to
decrease with the advent of the GDPR.
The GDPR need not become a hindrance to
BYOD adoption, but it does mean organisations
that want to allow mobile IT will have to be all
the more diligent when it comes to
implementation. Even if drafting a policy proves
cumbersome, not having one in place will not
stop employees from using enterprise IT on
their own devices. It will merely leave the
business without a structure to accommodate
this and risks compliance problems at some
juncture further down the line.
Opening up to risk
“There are always going to be some businesses
for whom BYOD is inappropriate,” explained
Vince Warrington, founder of Protective
Intelligence, a consultancy that advises
companies on security. “There are always going
to be people who struggle with not being able
to take their work laptop home, especially if
they need to work late or across a weekend to
meet deadlines. What they’re more likely to do
is e-mail their work to themselves, thus
opening up the enterprise to security risks.”
24
www.risk-uk.com

Mobile Technology: Risk Management for BYOD and The Cloud
Warrington continued: “It’s that balance of
making sure you have the security right. If you
don’t put some kind of policy in place then
people will work around the situation in any
event. They’ll find a way. Your workforce is like
water in that it will always gravitate towards
the path of least resistance. If you turn around
and give people in your working environment
the kind of workloads where they’re having to
operate from home at weekends or while on the
move then you must accept the fact that, unless
you put proper rules in place, they’re going to
do whatever works best for them.”
Core to the introduction of a BYOD policy will
be to give users access to the processes they
need to do their jobs. This involves more than
just securing endpoints in the right way. Steve
Armstrong, a SANS Institute instructor, advises
against relying purely on endpoint solutions,
and instead to “think about controlling your
data before it’s sent to the endpoint.”
You need to think about what data you’re
replicating. Is it reliable? Is it secure? Does this
person actually need access to that data? “It’s
good to have endpoint security,” stated
Armstrong, “but don’t think you’ve just
outsourced the problem.”
EMM comes into play
That access needs to be managed and enforced
with what’s known as Enterprise Mobility
Management (EMM). EMM helps to prevent
unauthorised access and establish acceptable
behaviour for mobile IT, partition accountability
and address the problems of lost and stolen
devices as well as what to do when an
employee and an employer finally part ways.
The simplest EMM solution for the widest
range of devices will be the one that works
best. To be sure, any solution that’s too
complex or restrictive is doomed to failure.
Back in 2014, another study by Gartner
predicted that 20% of all BYOD policies would
fail due to overcomplexity.
Access management must be disciplined.
People (including guests) and devices that
don’t require access to areas of your business
should not have access. It’s as simple as that.
The proliferation of admin rights for regular
users across global organisations is a regular
cause of security breaches. Some EMM
solutions make good use of container security
which effectively separates the data of
employees and enterprises, even when working
on devices that are brought in from home.
Network access control solutions and strong
SSL VPNs will be critical to the adoption of
BYOD, affording users access to what they need
while protecting the business from security
“Survey results published by Strategy Analytics have
shown increasing fears around BYOD, with 10% of those
professionals quizzed suggesting they expect the use of
BYOD-enabled tablets to decrease due to the EU’s GDPR”
risks. Bear in mind that technological solutions
are necessary, but not quite sufficient enough
for an effective BYOD policy.
Humans may be your weakest point, but
they’re also your most critical aspect. They’ll
need to be educated about security cleanliness,
what they can and cannot do on a company
network and how they might work not only
efficiently, but also safely.
Employee perspectives
When looking at the issue from the point of
view of the business itself, it’s easy to forget
about the perspective of the employee. The
benefits of a BYOD policy cannot be taken as a
‘given’ when it comes to employees. They need
to be assured that their privacy will be
respected, just as employers would expect their
security policies to be observed.
Moreover, finding out what employees want
and, just as importantly, what they actually
need from such a policy will only serve to
create a more agile and workable document
which is easier to stomach.
Much of this comes down to education, itself
a fundamental aspect of implementing BYOD.
Education is absolutely critical to the future
safe working of BYOD within your organisation.
In essence, BYOD has to orbit around the
very subject of a BYOD policy: the user. Here,
simplicity is king. Complex policies will mean
inefficient working, blocks to productivity and
hard-to-follow instructions. They’ll merely
increase the likelihood of the user finding some
way of circumventing a cumbersome security
policy and possibly opening up your
organisation to compromise.
What about the future?
Looking ahead, new developments are being
made in BYOD that will allow the introduction
of Artificial Intelligence in workplaces, thus
removing much of the scope for human error
that BYOD sometimes risks. Bring Your Own Bot
(or BYOB) has been touted as the future
iteration of BYOD, with the arrival of intelligent
personal assistants like Amazon Alexa.
BYOD provides a new challenge to security
professionals and one that’s not entirely
avoidable. However, a forward-thinking BYOD
policy will plug security holes far more
effectively than if you choose to ignore them.
Adam Jaques:
Technologist at Pulse Secure
25
www.risk-uk.com

Data Centres: Security and Fire Safety
The Data Centre sector is one of the world’s
fastest-growing industries, with the huge
increase in Internet usage being one of the
key drivers. In the past decade, the number of
users worldwide has increased from 300 million
to over two billion. That represents a
phenomenal growth rate of more than 400%.
Data Centre downtime can mean losing
thousands of pounds per minute. Even an
interruption of one hundredth of a second can
disrupt the entire IT operation of a Data Centre.
Any temporary stoppage of data flow or a
failure in a single element of the facility’s
infrastructure can realise downtime, resulting in
potentially serious consequences for an
organisation’s daily operations and reputation.
Advanced protection systems will encompass
Command and Control solutions, secure
process management, wide-area surveillance,
perimeter and site intrusion protection, access
control for staff, contractors and vehicles, alarm
management, fire detection and extinguishing
solutions, phased evacuation systems, lone
worker monitoring and asset tracking.
By automating routine security and fire safety
tasks, organisations can concentrate on their
core business activities while at the same time
protecting facilities with high performance risk
management systems based on the very latest
safety and security technologies.
High-level security
Threats to Data Centres come in many forms,
from the intruder trying to gain physical access
to the facility and, ultimately, the servers
through to cyber attacks and hackers trying to
access the network as well as stored data.
A whole lifecycle approach to system design
should be at the heart of a proposed
technological solution to deliver maximum
safety, resilience, longevity and reliability. To
facilitate this, single points of system failure
should be designed-out wherever feasible and
worse case parameters used in engineering
calculations to minimise the risk of either
system degradation or failure.
Furthermore, the solution should be
configured to ensure the delivery of efficiencies
in maintenance and running costs.
Due to the sensitive and 24/7 nature of Data
Centres, rigorous identity and access control for
the various zones within is of primary
importance. Ensuring that only the right people
gain access at all times can be achieved by
employing badge or smart card access control
or biometric access using iris, vein or facial
recognition. Optimal security may be ensured
with an intrusion detection system to secure
fences, walls, windows and doors and even
Data Centres: Coping with
‘Information Overload’
The continued growth of social networking, electronic
banking and paperless storage, together with modern IT
services such as virtualisation and cloud computing, have
made businesses heavily dependent on Data Centres. Using a
real world example, Chris Edwards evaluates protection
measures designed to ensure Data Centres are safe, secure,
resilient and sustainable
detect flooding. All areas may be secured using
HD IP cameras to provide the highest image
quality of both live and recorded incidents.
Command and Control platforms that
integrate protection devices across Data
Centres, including multiple sites, will manage
critical situations and enhance procedures by
delivering improved intelligence, information,
advanced reporting and greater operator
effectiveness. Furthermore, these new
generation software solutions incorporate
legacy equipment and adapt to specific
corporate security and safety policies.
Command and Control enables the
synchronisation of inputs from multiple security
and safety devices such that operators can
quickly master each situation. Decision-making
is more systematic, while the need to follow a
logical workflow is vital.
Full integration
Adopting a proactive and preventative security
approach using fully-integrated security
management solutions will protect all
Chris Edwards: Account
Development Manager at
Siemens Building Technologies
27
www.risk-uk.com

Data Centres: Security and Fire Safety
operational processes and ensure the integrity
of the data, building and assets as well as
maximum uptime and business continuity.
The central management of all integrated
security will improve operational performance,
increase visibility, boost response agility for
deployment, enforcement and speed of
response and, ultimately, reduce costs.
Time is critical for many operations, so
operators need to have information at their
fingertips. A decision management workflow
will assign priorities and determine activities
and allow the appropriate actions and
resources. A high level of transparency,
complete with detailed reporting and audit
trails, provides vital information for senior
management to enable a better understanding
of their Data Centre operations, leading to
future improvements and cost efficiencies.
The delivery of high-level intelligence will
enable the detection of a critical event and the
management of the situation through to a
successful conclusion.
Frankfurt Data Centre
Let’s look at a real world example. Frankfurt has
the highest density of Data Centres of any city
in Europe. The German branch of Citigroup has
built its Frankfurt Data Centre (FDC) as a high
performance, energy-efficient facility with highlevel
protection and availability. Processed data
is stored in duplicate within the Data Centre
and mirrored to other Citigroup Data Centres.
The FDC meets the Tier IV Standard awarded by
the Uptime Institute for maximum redundancy
and maintains 99.995% availability.
Redundancy, high system availability,
security and energy efficiency are key elements
for Citigroup. We’ve delivered intelligent safety
and security technology for this client
alongside reliable building automation that
cools and conditions the air based on demand,
keeping the servers from overheating, and an
uninterruptible and redundant power supply.
To guarantee the safety and security of the
building, assets and processed data, all of the
installed security and safety systems are
aligned with Citigroup’s global safety and
security requirements, so too the facility for
regular emergency evacuation and safety drills.
Any operational Data Centre should harbour
the highest level of fire safety due to the
presence of a constant ignition source of
electricity as well as a plentiful supply of
combustible materials.
Fire detection in Data Centres can be
challenging for traditional smoke detection
systems. Fires typically start slowly before
erupting into flame, so the early detection of
smoke is essential. However, the high level of
ventilation necessary to prevent equipment
from overheating also disperses smoke, making
it more difficult to detect and enhancing the
risk of fast fire distribution within the space.
To mitigate the risk of fire, Data Centres
require advanced detection, offering the
earliest possible warning. Intelligent detectors
will evaluate each situation minute by minute
and take decisions on complex criteria,
eliminating the potential for unwanted alarms
due to environmental influences. Detectors
must only alarm when there’s a real risk of fire
and offer 100% reliability. They should adapt to
reflect environmental changes in room usage.
Aspirating Smoke Detectors (ASDs) are
designed to operate in extremely demanding
situations, even before any smoke is visible.
Innovative, dual wavelength technology can
detect minute smoke particles, determine false
fire phenomena and provide an instant fire
alert. ASDs actively draw smoke to the detector
through boreholes within a piping system that
runs throughout the protected area. This offers
a significantly higher level of protection, as
standard systems can only respond if smoke
can actually reach the detection element, which
may often be too late in critical environments.
For high risk environments where water
damage to assets and materials can outweigh
that of an uncontrolled fire, inert gas and
chemical extinguishing systems deliver reliable
protection. Clean extinguishing technologies
safeguard valuable equipment in
data/computing, electrical and
telecommunications rooms. Inert gases
displace air during the discharge.
A further consideration is the adoption of
specialist ‘silent’ extinguishing to ensure the
protection of vulnerable hard disk drives
(HDDs). This reduces ‘noise’ during
extinguishing to about 1/100th that of
conventional systems and shifts the sound
frequency away from the crucial spectrum to
which HDD devices are sensitive, all without
affecting the efficient distribution of the
extinguishing agent.
“Adopting a proactive and preventative security approach using fullyintegrated
security management solutions will protect all operational
processes and ensure the integrity of the data, building and assets”
28
www.risk-uk.com

Advertisement Feature
ISM: Pioneering Integrated Security
Management Systems
Physical Security Information Management
(PSIM) systems have come a long way in
an incredibly short space of time, with
solution manufacturers in this particular space
having made big and bold claims about how
their systems are being developed and what
they can do for procuring end user customers.
At ISM, however, we don’t talk. Rather, we
act. We don’t ‘do’ PSIM systems any longer, at
least not in the way that PSIM is currently
understood. We’ve gone beyond PSIM into a
new generation of Integrated Security
Management Systems (ISMS). Indeed, they’re
already installed and protecting Critical
National Infrastructure projects worldwide.
ISM recognised that ‘true’ PSIM systems
were being undervalued, with glorified Video
Management Systems oversold as something
rather more capable and special.
We also recognised that there’s a world of
difference between a manufacturer’s system
that’s capable of controlling and managing
cameras and network video recorders of a
similar make and a ‘true’ ISMS that controls
multiple technologies from multiple
manufacturers. The former delivers an
integrated solution up to a point, but ‘true’
integration is only achieved by those systems
that can accommodate any technology of any
make and, what’s more, do so across multiple
sites and even multiple countries.
Genesys Enterprise
It’s with this in mind that we’ve launched our
latest generation of Genesys Enterprise
technology, offering end user customers
unparalleled scale, redundancy and ease of
use. Put simply, Genesys Enterprise is leading
the market as a proven solution.
As an enhancement of the existing Genesys2,
the Enterprise version has been developed with
the largest organisations in mind. Genesys is
fully-scalable to manage and control multiple
sites from a single Control Room (or even a
single workstation) across a country or even
across continents. It features the most
advanced levels of encryption configured to
ensure network security, and is accredited to
the highest standards of Government national
infrastructure security.
Stephen Smith, managing director of ISM,
explained to Risk UK that the extension of the
Genesys range affords end user customers
greater choice. “Genesys Enterprise resolves
those issues associated with the increasing
geographical scope of clients, corporations,
Governments and institutions, while also
adhering to a multi-tiered hierarchy (or
‘federated’ system) where total control is
centralised, but allows individual sites to
maintain local control,” stated Smith.
“The new addition is ideally suited to those
large organisations with multiple sites across
multiple regions who might also want to ‘flex’
to accommodate further sites and geographies
as their needs evolve. As this solution
emanates from the Genesys stable, current end
users only have to upgrade from their existing
version to Enterprise without the expense of a
complete technology ‘refresh’.”
Integration of multiple systems
Crucially, the new development allows the
integration of multiple systems from multiple
manufacturers – all from one holistic and
integrated security system.
Every electronic security or fire safety device
from CCTV and intruder alarms through to
electronic locking and Public Address can be
monitored and controlled from a single
platform, regardless of who made them.
Most importantly, Genesys Enterprise
includes the existing Migrating 3+ technology, a
patented automatic failover technology that
adds higher levels of automatic configurable
redundancy and power. Control is effectively
distributed across multiple workstations.
Operating from an
extensive
manufacturing and
design facility located
close to Gatwick
Airport, ISM has been
a world pioneer in
integrated security
systems and
integrated security
solutions since 1989.
Here, the UK’s leading
developer of
integrated security
management,
intercom and cell call
systems focuses on
the development of
Integrated Security
Management Systems

Advertisement Feature
“We take power to your PC and multiply it by
the number of PCs on your network,” continued
Smith. “What this means is that, if one PC fails,
control is seamlessly migrated to another PC,
with no interruption or downtime. Therefore,
our system isn’t restricted in its performance by
the size or capability of a server, nor does it
require the expense of moving to server farms
or using clustering software. We deliver the
most extreme redundancy characteristics for
the threats you’ve thought of, as well as those
that you haven’t.”
Tested and proven
Genesys is a ‘true’ ISMS system built around
intuitive software that combines a range of
industry-leading features and benefits
including an enhanced Graphical User Interface
experience, 3D modelling and a comprehensive
event management database. Events and
alarms are presented to the operator clearly as
and when they happen.
“The Enterprise development within the
Existing Genesys isn’t a development waiting
for a trial site,” outlined Smith, “but rather one
that has already been installed within a highsecurity
Critical National Infrastructure project.
It’s tested and proven at the highest level under
the most demanding of conditions and has
been very successful.”
Operators can be quickly trained to gain
maximum advantage. “The system also enables
end users to make better use of their staff and
resources, since you don’t have to have all of
your Control Rooms working 24 hours,”
observed Smith. “Genesys is a truly unique
solution offering advanced system architecture,
unparalleled ease of use for the operators and
very low lifecycle costs for the end customer.”
Protection for Haringey residents
A new concierge and ISMS solution developed
by ISM is now protecting two tower blocks in
the London Borough of Haringey, enabling
authorised employees to control door access
and manage fire and security systems from
anywhere within Haringey Council’s estate.
Newbury House, Finsbury House, John Keats
House and Thomas Hardy House in London’s
Wood Green already feature four of ISM’s stateof-the-art
Ultimate door entry systems as well
as another duo of third party technology
systems from Entrotec, using its Apex dual path
speech technology.
Thanks to the Genesys ISMS, multiple
technologies can be controlled regardless of
the manufacturer of those technologies, in turn
providing enhanced security for residents in
over 500 flats across a total of six tower blocks.
This delivers greater flexibility and control,
eliminates the potential disruption caused by
installing new equipment and protects Haringey
Council’s legacy investment. It also means that
further buildings with existing ISM or Entrotec
systems can be added as and when required
with only minimal additional investment.
Genesys allows the integration not just of
door entry systems, but also multiple systems
from multiple manufacturers – all from one
holistic integrated security system. As
mentioned previously, every electronic security
or fire safety device from CCTV and intruder
detection alarms to electronic locking and
Public Address systems can be monitored and
controlled from a single platform.
The solution for Haringey Council features
the aforementioned Migrating 3+ technology.
Len Fevrier, senior electrical engineer at
Homes for Haringey, has been extremely
impressed with the system and how it has
performed so far.
“We’ve used the ISM Ultimate door entry
products and the company’s Genesys Control
Room software platform extensively in the
Borough over many years now and have
enjoyed excellent product reliability and
technical support. To improve our efficiency and
give faster responses to our residents we
needed to provide concierge services for all of
our estates. The development of the Entrotec
integration into the Genesys platform allowed
Haringey to combine technology, including
CCTV and fire safety systems, without going to
the expense of replacing legacy door entry
equipment unnecessarily. This delivers a much-

Advertisement Feature
needed saving during what are challenging
economic times for local councils. We now plan
to roll out this system across the rest of the
Broadwater Farm Estate and, potentially, other
sites in the Borough as well.”
Built around intuitive software
ISM’s Stephen Smith firmly believes that this
project is indeed a perfect example of the
flexibility of Genesys and the company’s door
entry system range.
The PSIM software operates as a standalone
platform over LAN or WAN networks for remote
and local sites with workstations that can be
transferred to any operating Security Control
Room on the network. This offers the end user
flexibility when closing down sites or buildings
for off-peak or ‘out of normal hours’ working or
in the unlikely event of any system failures.
Ultimate is a fully-addressable digital
telephone entry system that’s robust in design
and easy to install. Unlike other door entry
systems on the market, it boasts multi-speech
paths that allow numerous conversations to be
had at one time.
Such was the complexity of the project that
from initial design of the system to completing
the installation took around two years.
Importantly for the client, fire alarms, access
control and CCTV systems can all now be
controlled from one computer on Haringey
Council’s network.
Intergrated Security Manufacturing (ISM) in Focus
Intergrated Security Manufacturing (ISM) is the UK’s leading developer of Integrated Security
Management Systems (ISMS), a new generation of solutions that has moved beyond Physical
Security Information Management (PSIM) as the industry knows it.
Established in 1989 and now operating from the company’s extensive manufacturing and design
facility in Sussex, ISM is once again leading the way in how security management technologies
are defined. It’s not just taking PSIM to another level. The company is already there with its ISMS
installed, working and proven on the world stage.
The business’ global client base encompasses many of the world’s most prominent institutions
and includes central and local Government, Critical National Infrastructure concerns, healthcare
establishments, education campuses, shopping centres, financial institutions and law
enforcement agencies.
ISM’s established Genesys platform enables the integration of many types and makes of
equipment including CCTV, DVRs, access control systems, fire alarms, intruder detection alarms,
audio matrix, intercoms, Public Address and paging systems – all from one holistic security
management system.
For further information access the ISM website at www.ism-uk.com
Stephen Smith:
Managing Director of ISM

Access Control: Developments in Biometric Security
Thanks – in no small part – to the magic
conjured up by film producers, directors
and computer graphics specialists resident
in the Hollywood hills, biometrics have become
something of a go-to metaphor for what might
best be described as ‘bleeding edge, bulletproof
security’. It’s easy to see why, too, as
high-tech equipment like iris scanners, for
example, makes for a gripping spectacle within
cinema theatres and on our television screens.
Of late, biometrics based on brain
(electroencephalogram) and heart
(electrocardiogram) signals have emerged. A
research group at the University of Kent led by
Ramaswamy Palaniappan has shown that
people have certain distinct brain and heart
patterns specific to each individual.
This new generation of biometric systems is
called the ‘biometrics of intent’ and aims to
scan intent. The technology will analyse
physiological features such as eye movement,
body temperature and breathing, etc and then
predict dangerous behaviour or hostile intent
before it materialises into physical action.
A recent and detailed report produced by
MarketsandMarkets.com predicts a 17% annual
growth in the gross biometric recognition
systems global market between 2105 and 2022,
from a figure of $10.74 billion to $32.73 billion.
Of this marked increase, fingerprint recognition
technology holds the largest single factor
authentication segment and is predicted to
continue to occupy that pole position for the
foreseeable future.
In light of recent appalling terrorist attacks
across the world, the need for security has
never been greater and, while travel and
immigration will no doubt continue to hold the
largest share of the biometric systems market
(with the USA still the largest customer), the
somewhat less dramatic use of fingerprint
readers across a wide range of sectors is
actually the main driver of growth.
The primary reason for this is that fingerprint
recognition systems are proving to be far more
secure and cost-effective than the traditional
alternatives of numeric key pads or magnetic
swipe cards, rapidly paying for themselves with
a far lower lifetime cost as they require no
additional consumables (such as additional
cards). Nor do they have to be reprogrammed –
as is the case for numeric keypads – should
security be breached at some point.
Probably of more importance to practising
end users is the fact that biometric recognition
systems can help to provide an infallible access
control system that may be used for a variety of
additional purposes once successfully
integrated with suitable software.
In Search of Recognition
The last five years have seen biometrics extricated from the
‘Mission Impossible’ scenario espoused by Hollywood and
dropped squarely into the lives of everyday consumers,
whereupon they’re now fast assuming a central role in the
sphere of digital identity management. Here, Shaun Oakes
explains how biometric recognition devices can offer very real
benefits for today’s practising security and risk managers
A typical example may be a UK Government
Data Centre where various levels of access are
required. To even be considered for such a
contract, of course, the access control system
would have to be Centre for the Protection of
National Infrastructure-approved, while the
readers themselves would have to integrate
seamlessly and provide data for access systems
controlling access points such as turnstiles,
barriers, doors or even computer terminals.
The resultant data can be used not only for
access control and reporting, but also for
personnel records such as payroll. Indeed, this
is particularly useful in the construction and
industrial sectors when a large site will have a
number of sub-contractors in situ in addition to
directly employed personnel. Here, the access
system becomes an effective and vital front end
resource for workforce management.
Accurate and reliable
A biometric lead system will serve to provide
highly accurate and reliable information which
can, with the right software, administer not
only access control, but also time and
Shaun Oakes:
Managing Director of ievo
33
www.risk-uk.com

Access Control: Developments in Biometric Security
attendance, fire roll-call, Health and Safely and
payroll records.
For construction and other industrial sectors,
biometrics can also be used to control access to
plant and other forms of potentially dangerous
equipment whereby only authorised users are
permitted access to keys. By combining key
access systems or secure lockers with
biometric recognition, a potential ultra-secure
system is thereby created that duly safeguards
and tracks the release of specific keys to
specific individuals.
Within other sectors, biometric recognition
systems are gaining market share for other
reasons. Across the education sector, for
example, in addition to access control they’re
being used for controlling free school meals
and even fool-proof library control. Within the
leisure sector, gym operating clients prefer
them to traditional means as they prevent any
fraudulent entry, and thereby potential loss of
income, and rapidly pay for themselves
because a member of staff is no longer required
to verify identities and permit access.
Given the trend for 24/7 access to gyms and
a growing appetite for customer convenience, a
robust access system with biometric control at
its heart can provide plenty of benefits for
members, staff and gym owners alike.
Other sectors have their own access and
security challenges for which reliable biometric
recognition devices are providing solutions. Our
ageing population and increased requirements
for care and support, for example, has led to a
booming care home sector where access
control becomes of paramount importance for
the protection of vulnerable residents,
increasing numbers of whom may well suffer
from dementia or other complex conditions.
Fingerprint readers not only prevent entry to
unauthorised visitors, but can also control exits
for vulnerable residents who may well not be
safe outside unsupervised areas. Other benefits
are restriction of access to expensive medical
supplies as well as dispensary areas. Today,
there are secure cabinets and storage units that
offer integrated biometric security for
controlled and monitored access.
In addition, time and attendance software
integration provides data that supplies realtime
reliable information for payroll, flexi-time,
absenteeism control and holiday planning. The
“Biometric recognition systems can help to provide an
infallible access control system that may be used for a
variety of additional purposes once successfully integrated
with suitable software”
information starts to flow in as soon as the
fingerprint readers are activated and continues
to track staff attendance for whatever purpose
the organisation requires – managing flexi-time
schemes, holiday planning, conformance with
the European Working Time Regulations,
production of payroll information and forecasts,
etc – resulting in both reduced costs and
increased efficiencies.
Biometrics in retail
The retail sector is also benefiting from the
increased levels of security biometric readers
provide for securing stock storage areas and
tracking and managing staff movements.
Given that storing high value or large
quantities of stock is now a routine requirement
for the majority of retail outlets, the security of
such areas is of prime importance. Biometric
readers limit access to purely authorised
personnel, thereby controlling stock and
preventing unwanted pilfering.
When the data’s integrated with time and
attendance software, vital Health and Safety
information is provided should a building
evacuation become necessary. Wholly accurate
payroll data can also be generated.
Integration with alarm equipment is another
development which is becoming increasingly
relevant for both the SME and domestic
markets by providing a single comprehensive
system architecture and peripheral range of
devices, such as CCTV and audible alarms,
managed by biometric control. Intruder alarm
systems can be activated and disarmed by
reading a registered fingerprint. Those systems
may also be extended to relay information used
for a single door access control entry point to
further functionality.
The key here is a blend of convenience and
enhanced security for end users. Numeric code
PINs and fobs can be forgotten, lost or stolen,
but a biometric reading – whether facial or
fingerprint recognition in form – is unique to
that user. Once enrolled, only that end user
may then set or disable the alarm.
Going forward, biometric recognition devices
will continue to replace traditional numeric
keypads and card/fob entry devices primarily
due to the higher levels of security they
provide. Keypads may be accessed by anyone
with the correct data, but biometric recognition
provides a higher level of security which offers
enhanced reliability and greater convenience.
Leading an access control system with
biometric data allows a security infrastructure
to be built that realises the benefits of real-time
data for management specifically catered to an
individual organisation’s needs.
34
www.risk-uk.com

The New Camera Line Mx6 Creates More Possibilities.
More Images, in All Light Conditions, in Every Standard
More Intelligence Is on the Way
The new Mx6 6MP camera system from MOBOTIX offers increased performance.
A frame rate that is up to twice as fast than that of other cameras allows it to capture
quick movements even better and simultaneously deliver sharp images in MxPEG,
MJPEG and, for the first time in H.264, the industry standard. The innovative Mx6
camera line is faster, more flexible and higher-performing, opening up new application
and integration opportunities for to you to meet all requirements.
MOBOTIX AG • Langmeil, Germany • www.mobotix.com

Counter-Terrorism: Hostile Vehicle Mitigation
With the threat level
posed by terrorism in
the UK currently set at
‘Severe’, Alice
Higginson outlines
what can be done by
security professionals
in their bid to protect
crowded places
Alice Higginson:
Marketing and Sales Coordinator
at Bristorm
Protection for the Masses
The nature of recent terrorist attacks – some
of which have involved vehicles being used
as weapons – has resulted in a clear focus
for practising security professionals. When it
comes to general street scenes, crowded and
commercial locations, temporary high-profile
events and Critical National Infrastructure
protection, the attention is necessarily focused
on making thorough site and operational
assessments to identify vulnerable areas and
access points that require solutions appropriate
for mitigating a perceived threat.
The need to protect and secure locations
where the general public are present is
increasing. This puts more pressure on security,
risk and facility managers, architects and
project engineers alike. Considering the
integration of Hostile Vehicle Mitigation (HVM)
systems prior to the development of any new or
existing site is crucial if appropriate defence
measures are to be implemented.
The standards associated with HVM systems
are still not immediately recognised by the
wider industry, often making it difficult for the
necessary solutions to be specified and
implemented. Alongside this, it’s important to
recognise the external factors that may prevent
appropriate HVM from being procured, such as
cost, aesthetics, operational processes,
controlling pedestrian flow and enabling access
routes for maintenance and Emergency
Services vehicles and personnel.
Specific HVM solution manufacturers are now
delivering technical presentations to
architectural practises around the UK. This is a
concept soon to be supported by the Perimeter
Security Suppliers Association. There’s a
limited understanding of the standards
associated with HVM, but these presentations
have allowed manufacturers to grasp the
aesthetic requirements architects and project
engineers have in mind when working on
particular schemes. As a result, subtle,
sophisticated and unique designs have been
developed that will not compromise the overall
performance rating of the HVM system.
Mitigating the threat
Limited understanding may result in the
installation of unsuitable HVM systems,
meaning that a perceived threat will not be
mitigated. Other factors may include cutting
costs on the system required, incorrect
installation that’s non-compliant with BSI PAS
69 or IWA 14-2, a limited or lack of knowledge
on the system required or that an insufficient
site assessment was performed.
Integrating aesthetics and HVM products will
hopefully build a crucial bridge between
manufacturers, architects, end clients, project
engineers and the local Counter-Terrorism
Security Advisors working on one particular
project, therefore reducing the need to cut
corners by installing inappropriate or untested
HVM solutions.
The Centre for the Protection of National
Infrastructure has sponsored the development
of BSI PAS 170, a Publicly Available
Specification that describes an efficient way of
testing the performance of a single bollard
when hit by a 2,500 kg vehicle at low speed.
BSI PAS 170 provides a quick, inexpensive
and proportionate way of evaluating bollards
that will be installed in a car park or retail
outlet and typically be hit accidentally by a low
speed passenger vehicle or a vehicle criminal at
approximately 10 or 20 mph. BSI PAS 170-
tested Stopper Bollards are currently the only
systems commercially available in the UK, but
they provide end clients, architects and project
engineers with a cost-effective and reliable
alternative when higher security solutions
tested to BSI PAS 68 or its equivalent are not
deemed to be essential.
Most technical presentations focus on the
HVM systems commercially available in the UK
and the standards associated with these
products, including the aforementioned BSI
PAS 68, BSI PAS 170, IWA 14-1 and ASTM
F2656-7/15. Testing procedures, compliancy
and installation guidelines (BSI PAS 69 and IWA
14-2) are also discussed throughout to ensure
that any HVM product may be accurately
incorporated within all drawings and plans
prior to beginning the procurement process.
36
www.risk-uk.com

Manufacturing X-ray Machines
in the UK since 1950
Call or Email to claim your
FREE THREAT ASSESSMENT
and advice on your direct and associated risks by the UK’s
leading manufacturer of high end security x-ray machines
01480 832202
www.toddresearch.co.uk
xray@toddresearch.co.uk

Counter-Terrorism: Physical Security Solutions
Further reinforced by a
lack of Government
investment in safety
measures such as the
police service itself, it
has now become
increasingly important
for organisations to
invest in their own
security solutions.
That investment is
absolutely vital. Here,
Anton Pieterse
outlines precisely why
Anton Pieterse:
Managing Director of Safetell
The Steadfast Approach
Look around you. The world is changing...
and fast. We once dreamed about the year
‘2017’ and a far-flung future with flying
cars, self-tying shoes and pill-sized dinners. In
reality, 2017 has become something much
bleaker. With rising levels of crime and terror,
especially in densely populated locations such
as shopping malls and stadiums, and austerity
continuing to create divides, the protection of
citizens is now as important as it has ever been.
A cost-effective security plan can be
produced by analysing the benefits of a
security solution and confirming if the cost is at
least equal to that of the protected assets,
while also considering the additional costs that
might be incurred due to an incident. The
potential risks and costs can range from loss of
business during the investigation to
replacement costs, loss of reputation, potential
injury/stress and overall downtime.
Last year, the British Retail Consortium
reported a staggering 40% increase in violence
and abuse against staff working in retail
positions, highlighting an obvious rise in those
who believe they can conduct crime and exhibit
aggression as they do so. This increase in
violence has occurred even though the number
of CCTV systems increases year-on-year. That
begs the question as to how effective CCTV
really is in reducing incidents of violent crime.
One of the common misconceptions when
first developing a security solution alongside a
security audit is to focus on electronic security,
such as CCTV, that provides greater surveillance
and networked benefits. However, as noted in a
study by the UK’s College of Policing when
reviewing 41 studies about the effectiveness of
CCTV, successful usage is only found through
significant investment in constant, well-staffed
live monitoring stations with the efficient
deployment of security personnel to locate,
identify and capture aggressors.
The study found that, overall, CCTV can
reduce crime in a certain area by dint of
displacement to neighbouring areas.
The most significant finding in the study is
that there was no evidence of an effect on
violent crime. CCTV is considered a type of
‘formal surveillance’ that can benefit a security
team in terms of visibility, but can only actively
prevent crime when working with an effective
and often costly deployment team.
CCTV is seen to be significantly more
successful when combined with other deterrent
and intervention methods in the form of
physical security.
Deter and defend
Physical security has the ability to deter and
defend through a series of target-hardening
solutions, such as installing attack-resistant
screens on counters, doors, walls and windows
within a premises. Physical security solutions
can deter attackers and protect staff in the
absence of a reaction team that could deal with
the matter, while also still providing hardened
resistance to the assets protected within.
The ability exists to design and construct
physical security products to exact
requirements, allowing for protection against
high intensities of fire, manual attack, bullet
attacks and even blast explosion, providing
protection for secure environments – such as
retail counters, Data Centres and banks – from
some of the most violent physical attacks.
Counter-terrorism solutions come in all forms
and for all environments. They often require
bespoke elements to be designed and installed
for seamless integration. As a general rule in
security, no standard is fit for all applications.
Plenty of great physical security and electronic
solutions can exist and work successfully, but
an ideal strategy for one environment doesn’t
necessarily translate exactly to another.
Indeed, bespoke installations and physical
security systems have risen in prominence,
allowing for organisations to gain a full counterterrorism
solution for their exact working
practices at specification stage.
In today’s world, there’s one statement that
rings very true indeed: no business security
means your business is at risk.
38
www.risk-uk.com

Counter-Terrorism: Security Screening Best Practice
Security screening
checks are
commonplace when
members of the public
attend events and are
now increasingly
being conducted at
high-profile buildings.
Once upon a time
those checks were
considered a
nuisance, or at best a
necessary
inconvenience, but
people now
understand the
important role they
play as a deterrent
and as part of a wider
security solution.
Jason Wakefield
examines Best
Practice procedures
Jason Wakefield: Sales
Director at Todd Research
Be Seen to Screen
Screening people and their belongings at
entry points can help reduce the likelihood
of explosive devices, weapons and other
prohibited items being brought into buildings
or on to sites. Similarly, searching personnel as
they exit can assist in reducing the risk of the
unauthorised removal of items and/or sensitive
company information.
When designing a security checkpoint, the
first port of call should be the PAS 127
guidelines. PAS 127:2014 is the first publication
of its kind to present guidance on good practice
for checkpoint security screening of people and
their belongings. Commissioned by the Home
Office’s Centre for Applied Science and
Technology, its development was facilitated by
the British Standards Institution with input
from a panel of industry experts.
The level of risk is an important factor to
consider before any implementation of
screening. Measures must be appropriate to
minimise any potential risk, but excessive
measures will result in unnecessary expense
and use of staff and space and are likely to
interfere with normal functioning of the site.
Consideration should be given to the
different groups of individuals entering the
premises. Given differing risk profiles, it may be
appropriate for some individuals to undergo
different screening regimes.
Once an assessment of risk has been made,
it’s then time to decide what equipment is
needed. Sometimes the risk can be so low that
only random bag searches are required.
However, if screening machines are demanded,
it’s important to calculate the anticipated level
of screening (eg the number of people expected
to be screened per day and the amount of time
available to clear each person).
The screening process should exert the
minimal impact possible on daily business
activities. External security consultants can be
useful in helping to calculate requirements at
this planning stage and then determine the
type of equipment required on site.
Checkpoint location
The location for the screening checkpoint is
extremely important. It should be on the
perimeter of the establishment and in an area
free from any interference that might be due to
metallic objects. An ‘Area of Declaration’ will
need to be established where pockets can be
emptied, shoes and belts taken off and
prohibited items removed.
A well-laid out, ‘obvious flow’-style queueing
system should be put into place. Once bags
and contents are placed on the x-ray conveyor,
visitors should then proceed to a search area
where the potential presence of metals or
explosives can be checked by dint of security
staff using either walk-through or specialist
trace detection equipment.
When selecting a walk-through metal
detector, a multi-zone technology detector will
increase screening efficiency and cut operating
costs. Multi-zones of detection allow the exact
location of any concealed item to be
pinpointed. As a direct result, security
personnel can immediately target the object
that served to create the alarm.
Hand-held metal detection wands should
also be used as a secondary confirmation tool
for pinpointing any positive alarms.
It’s important that x-ray and metal detection
system operators are fully-trained in the use of
the units and how to look for prohibited items.
Importantly, this training should be regularly
updated to ensure members of staff are always
aware of all new and emerging threats and
detection methods.
Finally, all procedures should be captured,
reviewed and regularly updated.
Due to increased security threats, screening
looks set to become an ever-more present
process in our everyday lives. It’s important to
keep those being screened onside and
understanding of the need. To achieve this,
screening operations must be effective and
efficient in order to minimise the impact on
people as far as possible. Initiatives such as the
PAS 127 guidelines, the continuously improving
technology that underpins screening and
detection equipment and well-trained security
personnel will be the keys to success.
40
www.risk-uk.com

Counter
Terror
specifications
30 Years of Security Excellence
bespoke
to your
requirement
Find a bespoke and personalised solution to fit your
organisational requirements, specified with help from our
security experts.
Our physical security solutions can provide protection for
buildings, staff and assets across a variety of manual, bullet and
blast resistant specifications in the form of counters, security
doors, security screens/windows and walls.
Building Security + Staff Protection
Asset Protection
Find your solution at...
Safetell.co.uk
Specification to Installation
We are fully accredited...
+44 (0)1322 223
www.safetell.co.uk
sales@safetell.co.uk

A Touch of Retail Security Therapy
As part of an ongoing
commitment aimed at
redefining the role of
the retail security
operative, Cardinal
Security and
Amberstone (part of
The Cardinal Group)
are working in
partnership with
Dixons Carphone on a
strategy that
combines skilled
personnel with
electronic surveillance
and reporting
systems. Risk UK
examines the
outcomes already
achieved to date
42
www.risk-uk.com
When Dixons and Carphone Warehouse
completed a £3.9 billion merger back in
2014, the deal integrated two wellknown
High Street names to create what is now
one of Europe’s largest electrical and
telecommunications retailers. Renamed Dixons
Carphone, the company has interests across
the continent and is one of the UK’s last
remaining large-scale businesses of its kind
with a bricks and mortar presence.
Online shopping, home delivery and ‘Click
and Collect’ have now become commonplace.
According to the Office for National Statistics,
the value of online sales increased by 8.9% in
March 2016 compared with March 2015. The
‘omnichannel’ is now firmly established and
means that traditional High Street stores need
to adapt their approach to attract customers.
Dixons Carphone is at the forefront of this
process and, early on this year, the company’s
CEO Seb James announced his aspiration to
“reinvent retail as we know it”. In order to
revolutionise the shopping experience, Dixons
Carphone has now brought its Currys, PC World
and Carphone Warehouse brands together
under one roof at its 3-in-1 stores.
The company’s 3-in-1 megastore at Hedge
End in Southampton, which opened in
September 2015, is truly the shape of things to
come. It boasts a number of innovative
features, with smaller, interactive exhibits that
are designed to draw people in. For example,
the vacuum cleaner section has three types of
flooring such that customers can try out which
device would work best for their home. In the
audio section, shoppers can switch the music
between different speakers, while headphones
are displayed in such a way that allows
consumers to be hands-on and compare and
contrast what’s on offer.
Every element of the store’s design and
layout has been analysed, scrutinised and
reconfigured to offer customers the best
possible experience and increase sales.
A key part of this new retail process is the
way in which security and loss prevention are
being approached. In point of fact, it’s
something that has proven to be just as radical
as the store concept itself.
Moving the mindset
Cardinal Security had worked closely with
Carphone Warehouse for a number of years and
now operates with Dixons Carphone across all
of its outlets. For Simon Chapman, Cardinal
Security’s CEO, the Hedge End store is an
exemplar of how retail security needs to be
approached in the modern age.
“There has been a distinct reluctance, or an
inability, to move on from the ‘cops and
robbers’ mindset that has prevailed for
decades,” stated Chapman. “However, we’re
now beginning to witness a massive change in
the way that retailers operate. We’ve worked
closely with Dixons Carphone’s loss prevention
team in order to introduce a new intelligent
guarding model that does away with the
customer denial approach and, instead, actively
integrates the duties of a security officer with
technology, electronic systems and the allimportant
data they produce.”
The store employs a covert security specialist
in the form of Dan McKee (pictured, left). Asked
to explain how his role differs from that of a
typical security officer, McKee responded: “I
adopt a customer service-based method to
deter theft. For example, I’ll approach store
visitors and ask them whether they need any
help in a polite and friendly manner. Genuine
customers love this approach but, for obvious
reasons, potential thieves hate it. Furthermore,
the store encourages a culture whereby all staff
are part of the security and loss prevention
team. I work closely with all staff members and
offer specific guidance in this area.”
CCTV in the retail space
CCTV has been used in retail outlets for
decades, of course. However, far from being
considered a proactive tool, it has been used
retrospectively, often when it’s too late and

Retail Security and Loss Prevention: Dixons Carphone Case Study
stock has been stolen or the barriers at the
front of the store have been activated and the
offender is long gone.
To help him do his job, McKee has real-time
remote access to the in-store CCTV system via a
tablet, which he can use to study customer
behaviour, while analytics platforms provide
direct alerts about any suspicious behaviour,
such as someone being in a particular area
longer than is considered usual.
Suzanne Borg (project manager in the Group
Loss Prevention Department at Dixons
Carphone) observed: “Having products on open
display brings with it certain security concerns
that we’re addressing through the use of
sophisticated technology. Customers want to
touch and experience products. They no longer
wish to see them locked down or behind
cabinets, so we have to accommodate their
desires. However, this brings with it increased
risk, so early warning technology is absolutely
central to mitigating any risk and thwarting
those with criminal intent in mind.”
As a result, Amberstone’s smart shelves have
been installed. When product is picked up,
McKee receives an alert via a headset, directing
him to the area and product concerned, while
specific items – such as vacuum cleaners – have
tags attached that also relay information. As
well as significantly reducing losses, this allows
McKee to play a key role in the customer
experience, in turn helping the host retailer to
sell more and lose less.
Organised shoplifting
Organised shoplifting gangs are a major
concern for retailers. Groups of professional
thieves now travel the length and breadth of
the country to steal products which they can
then sell on. To combat this problem, Dixons
Carphone employs electronic technologies such
as ANPR and facial recognition that identify
known vehicles or offenders.
“The profiling of individuals and their
behaviour is crucial in order to recognise the
difference between good and bad customers,”
explained McKee. “With the use of data sharing
and analytical tools, we can share information
and allow ad hoc tasks to be added centrally
from regional field or head office teams, while
also ascertaining exactly which products are
being targeted. We use the analysis of online
auction sites and recent store thefts to profile
the risk against the year, month or day to gain a
better understanding of when thieves are most
likely to strike.”
Given that he’s a vital part of the senior
management team at the store, Cardinal
Security has provided McKee with
investigaton, evidence gathering and statement
writing training (the latter used within morning
briefings). Dixons Carphone staff are made
aware of any current risks and work very much
as part of a team. This holistic approach to
security is highly effective and deters both
organised and opportunist offenders.
Return on investment
Like all other aspects of modern retailing, the
security function at Dixons Carphone has to
deliver a return on investment. Suzanne Borg
commented: “Part of Dan’s job is to use the
technology-based tools at his disposal to
constantly assess risk and report back. Data
provides a clear picture of the cost of his
employment and what he returns. This is
measured through shrink reduction, assistance
in increased sales, greater staff safety and a
focus on stock loss reduction. This dynamic
approach builds a comprehensive risk model
and creates decision-making and business
rules out of the back of it.”
The new store concept, combined with such
an innovative approach to security and loss
prevention, has already enjoyed some notable
successes. The sale of high risk products,
including headphones, increased in the first
year of opening, while McKee was directly
involved with the arrest of an organised gang
leader who was subsequently sentenced to two
years in prison.
Onwards and upwards
These are good times for Dixons Carphone,
which saw its trading over Christmas 2016 beat
all forecasts as the business reported its fifth
consecutive year of growth. As the company
continues to redefine its retailing strategy, it’s
plainly obvious the key role that cutting-edge
security techniques will play in its ongoing
success are very much to the fore.
“Dan McKee is the embodiment of the
modern security officer and absolutely integral
to what our company is doing at the Hedge End
store,” concluded Suzanne Borg. “As a
dedicated security solutions provider, Cardinal
Security is clearly able to develop security
operatives who are confident, articulate and
technologically savvy in their work. It’s
precisely this type of approach that the modern
retailer must look to embrace as part of a
successful loss prevention strategy.”
“We use the analysis of online auction sites and recent store
thefts to profile the risk against the year, month or day to
gain a better understanding of when thieves might strike”
43
www.risk-uk.com

Healthcare Sector Security: Body-Worn Cameras
With NHS Protect
reporting that assaults
on NHS staff in
England are up by
around 5% year-onyear
(67,864 assaults
in 2014-2015 versus
70,555 in 2015-2016),
NHS Trusts are doing
what they can to
improve the safety of
employees and
patients alike. Herman
Vermaak explains how
body-worn cameras
are now ably assisting
security personnel
Herman Vermaak:
Managing Director of B-Cam
Security’s Watching Brief
It seems almost beyond belief that someone
could launch an attack on a healthcare
professional trying to help people in need,
but that’s one very grim reality of Britain in the
21st Century. During 2015-2016, NHS staff in
England reported more than 70,000 assaults,
equating to 53 instances per 1,000 workers.
Staggeringly, criminal sanctions were brought
on only 1,740 occasions. Many of our NHS
Trusts have simply had enough, and are now
turning towards technology to lend them a
helping hand with prevention measures.
The use of body-worn cameras is on the rise.
Security officers at Guy’s and St Thomas’ in
London wear such devices in an effort to halt
abuse and violent behaviour from patients.
These ‘bodycams’ act as a visible deterrent to
those who may be intent on causing harm, and
also serve as a trusted source of evidence
should any incident occur.
At Guy’s and St Thomas’, staff had seen a
surge in violent behaviour, particularly towards
nurses and other front line employees. Between
April and September last year, a total of 850
incidents were recorded (up 27% on the same
period in 2015, when 620 were recorded).
Dame Eileen Sills, chief nurse at Guy’s and St
Thomas’, said: “At times, our staff and patients
have felt threatened and intimidated by a small
number of fellow patients and visitors. We want
to send a clear message to people that our staff
are here for them. Please let them do their jobs
safely. Any unprovoked violence and aggression
towards staff is unacceptable. If people do
abuse our staff we will take robust action and
pursue them through the courts.”
The cameras being used by security
personnel only operate when activated, and are
therefore not inappropriately recording
personal and protected data. Once activated, a
light on the camera ensures those being filmed
are also aware that recording is taking place.
Jayne King, head of security and site services
at Guy’s and St Thomas’, said: “We’ve taken
this step to assure our staff of their safety and
send a message to people who are violent or
abusive on Trust premises that these recordings
will be used to bring them to justice.”
The devices employed at Guy’s and St
Thomas’ have a tamperproof design, meaning
that data cannot be removed from them. The
devices cannot be easily destroyed, thereby
protecting the chain of evidence.
Any patient or service user information that’s
recorded is secure and inaccessible without the
relevant software to download the video and
audio recordings.
Support from the police
Body-worn cameras are supported by the
police. Superintendent Roy Smith of the
Metropolitan Police Service explained: “We
respond to any assaults on NHS staff very
seriously indeed. Body-worn cameras act as an
excellent deterrent and provide really good
evidence for us to bring offenders to justice.
They capture evidence really early on, so the
likelihood of us securing a guilty plea at an
early stage in proceedings is increasing.”
Smith went on to comment: “If there’s any
sort of violence perpetrated, people can see
instantly that they’re being recorded on bodyworn
video. Our experience and evidence
suggests this immediately de-escalates a
number of situations.”
Body-worn camera technology is also being
used at Princess Royal University Hospital in
Orpington, Kent. Security manager Len Jeffrey
told Risk UK: “My security staff were called to
an urgent and violent incident on a ward as a
visitor was being abusive towards staff and
patients. On seeing security with a body-worn
camera, the male immediately calmed down
and co-operated, thereby preventing the
escalation of his anti-social behaviour”.
The challenges facing 21st Century
healthcare professionals are substantial
enough in extent without them having to be
constantly concerned about their physical wellbeing.
The number of attacks on staff is rising,
but the number of those convicted remains low.
The application of secure body-worn camera
technology can provide vital reassurances and
enhance the safety of all those who work in this
critically important sector.
44
www.risk-uk.com

Smart, Integrated,
Security Solutions
Easy access control
from Paxton
Leading
• Market leaders, over 30 years experience
Integrated
• IP ready solutions integrating with
CCTV, door entry, intruder & fire alarms
Support
• Free design & specification help and advice
Scalable
• Access control and door entry systems for
a variety of sites
Want to know more?
Visit: paxton.info/2973
Easy to specify Easy to fit Easy to deal with

Healthcare Sector Security: Access Control Solutions
Healthcare facilities
have numerous assets
that need to be
protected from theft or
damage, while staff,
patients and visitors
must be kept safe at
all times. Gareth
O’Hara explains why
networked access
control is an ideal
security solution
Gareth O’Hara:
Chief Sales Officer at Paxton
Living Life On The Network
Healthcare security is one of the most
complex of security functions. The
National Health Service takes security
very seriously indeed. Patients need to be kept
safe while in hospital, so at all times access
must be limited to those people with a genuine
reason to be on hospital premises.
Electronic access control can provide an
efficient and convenient way of offering secure,
flexible and cost-effective building access
management. It allows people to move freely
around a facility while also permitting specific
areas (for example, an operating theatre or the
pharmacy) to be managed with higher security
where required.
Using IP technology, access control systems
can connect directly to the building’s network.
The beauty is that you don’t need to be an IT
expert to make the most of ‘IP ready’ access
control. It’s simple and straightforward to
manage and, if you’re looking to extend
building security beyond access control, it’s
also possible to integrate it with a range of
third party systems including CCTV, biometrics,
fire systems and intruder alarms.
There are a range of solutions available. On
that basis, it’s important to ask the right
questions when discussing security
requirements with your installer and/or
consultant in order to ensure the solution
matches defined needs. Systems can vary in
type, from a secure barrier in the car park
through to a video entry system at a visitor
entrance or an external door with hands-free
access and on to an integrated solution with
CCTV and intruder alarm systems.
Total convenience
If you’re thinking about improving the security
of a healthcare facility with an electronic access
control system, there are several ‘essentials’ to
bear in mind.
Networked access control has several
benefits over using traditional locks and keys,
with an important factor being that numerous
security functions can be centrally and
conveniently managed via a PC. This can control
the flow of people around a building and
restrict who has access to its various zones.
Unlike keys, electronic access control tokens
can easily be barred from the system if they’re
lost, stolen or not returned by staff or visitors.
High security options are available via
specific applications to add an extra layer of
protection if needed for certain designated
areas of a building.
Biometric integration includes fingerprint,
facial recognition and retinal scanners which
use the unique biological characteristics of an
individual to confirm access. Multi-factor
authentication means that a given end user
would have to present an access token in
addition to entering a PIN to gain entry.
Access control software can be used as an
effective HR and administration tool, providing
easy time and attendance reporting. By
allocating specific token readers for clocking in
and out, the software can be used to log the
working hours of employees. It can also note
periods of time that staff or contractors are
absent for reasons such as holidays and unpaid
leave. Reports can then be exported for use
with a variety of HR applications.
Cost-effective solutions
There are multiple opportunities where an
access control system can be used to help save
money. For example, switching utilities on or off
automatically when a user presents their
electronic token/card provides a convenient
service that businesses can use effectively.
With some access control software solutions,
system administrators can easily create rules to
grant varying permissions to different users. For
example, this might be used to assist in
meeting Health and Safety requirements,
prevent untrained staff from operating certain
machinery or stop people from accessing
restricted areas, in turn reducing the potential
risk of accidents involving staff and/or visitors.
46
www.risk-uk.com

Healthcare Sector Security: UHEI 2017 Event Preview
Where Education Meets Healthcare
Following on from the
huge success of the
inaugural University
and Healthcare
Estates and
Innovation Conference
and Exhibition last
year, organiser Ascent
Events has mapped
out an even bigger
and bolder
programme for 2017
that runs over two
days at the University
of Birmingham on 14
and 15 November.
Brian Sims previews
the content on offer
for delegates
*To learn more about UHEI
2017 and register your
attendance, access the
event’s dedicated website at
www.ascentevents.co.uk/
uhei-birmingham-2017.php
48
www.risk-uk.com
The similarities and distinct parallels
between the higher education and
healthcare sectors are striking. Both
manage large, complex and demanding sites.
Both manage compliance, deliver projects and
control diverse property portfolios. The two
worlds tackle many of the same issues, use
many of the same suppliers and procure,
construct and maintain at scale.
Bearing this in mind, the University and
Healthcare Estates and Innovation (UHEI) event
– for which Risk UK is an Official Media Partner
– offers a unique opportunity for security and
risk management practitioners to meet and
hear from sector experts, network and share
solutions and experiences.
Designed to build upon 2016’s highly
successful inaugural gathering, the fervent
hope is that this year’s event will lead to even
closer future collaboration between the sectors
by stimulating opportunities for shared
thinking and mutual benefits.
Last year, upwards of 50 separate NHS Trusts
and more than 30 universities visited the event,
while over 250 visitors attended on the day
itself. The quality of the attendees was very
high, with large numbers visiting from the NHS
and education sectors including security,
facilities and operations-based professionals.
Run in partnership with AUDE, UHEI 2017 is
supported by ASIS International’s UK Chapter,
the British Institute of Facilities Management,
BESA, BIM4 Health, Brighton and Sussex
University Hospitals NHS Trust, The Carbon &
Energy Fund, Carbon Trust, CIC, Digital 2 All, the
University of Birmingham, the University
Hospitals of North Midlands NHS Trust and the
University of Liverpool.
This year’s exhibitors are Built Off-Site,
Clarke Energy, Clearview Intelligence, Cortech
Developments, Ecophon, Estate Strategy Group,
Extraspace Solutions, Fusion, Healthcare
Estates and Facilities, HJA Recruitment, Hydrop,
IHEEM, Jewson, Integrated Environmental
Solutions, Langley Design, Micad, MWA
Technology, Paxton, PPL Training, SFG20, Shire
Controls, Smart Environmental Products,
Synapsis and Search Higher.
Conference programme
Day One of conference on Tuesday 14 November
is kick-started by a welcoming address from
Trevor Payne (director of estates at the
University of Birmingham), who informed Risk
UK: “We’ve put together a timely, relevant and
comprehensive educational programme.”
From 9.30 am until 10.00 am, the focus is on
collaboration and innovation, with Simon
Corben (director and head of profession at NHS
Estates and Facilities) at the lectern. This
presentation is followed by perspectives from
AUDE and IHEEM (for whom the latter’s
chairman Pete Sellars is the speaker).
In the wake of coffee and networking, IHEEM
CEO Julian Amey chairs a session running from
11.35 am until noon, during which Andrew
Burgess (deputy chief operating officer at
Loughborough University) offers his thoughts
on the potential impacts of Brexit upon the
Higher Education estate.
Prior to luncheon, there’ll be detailed
presentations from Kevin Oxley (director of
estates, procurement and ICT at South Tees
NHS Foundation Trust) and Steve Banister
(managing director of Northumbria Healthcare
Facilities Management) on – respectively –
property management and an alternative
delivery model for E&F services within the NHS.
The afternoon session from 2.40 pm through
until 3.20 pm concentrates on campus
masterplanning in the education sector, with
one of the presentations being made by Karen
Johnson (operations director at University
Hospital in Birmingham).
Emergency preparedness
On Day Two of conference, the pre-luncheon
sessions should be of particular interest for
practising risk and security management
professionals. Between 12.45 and 1.00 pm,
Ashley Kirby (policy and planning advisor at the
University of Aberdeen) looks at this topic from
the Higher Education perspective, with Anthony
Searle (commercial manager at access control
solutions specialist Paxton) delivering his
thoughts on the matter from the point of view
of NHS Trusts and hospitals.
From 3.35 pm until 3.50 pm, ‘Sharing
Processes and Resources: How a Common
Process Can Work for Disparate Organisations’
is the subject of John Scarry’s presentation.
Scarry is business excellence manager at
Medirest (part of Compass Group).
Conference closes at 4.20 pm with a
summary of the two days delivered by Robert
McNamara MBIFM (director at Capitec).

Advertisement Feature
Inner Range’s Integriti: Encrypted High Security
Inner Range’s Integriti Encrypted High
Security system witnesses the company add
a new level of security to the current product
range. This latest offering is certain to attract
serious consideration from Government
departments and Critical National Infrastructure
projects as well as those commercial end users
who are serious about hardening their
dedicated security system communications.
From a technical standpoint, Inner Range’s
Integriti Encrypted High Security system offers
end-to-end encryption of access control and
alarm points, in turn providing many features
previously required by installations in the high
security sector at an affordable cost.
Fundamentally, the Encrypted High Security
system includes encrypted communications
from sensor to controller and on to keypad and
reader. Up until now, organisations requiring
encryption of all parts of an integrated access
and security system had very limited choices.
The way in which Inner Range’s Encrypted
High Security system works is that the
company’s End of Line Modules (ELM) are
embedded into third party PIRs, reed switches
or other security-related input devices. The ELM
is wired into such an input device, handles
tamper and alarm conditions and connects via
an encrypted RS-485 serial connection to a
special Encrypted High Security expander. Bus
data and the expander to the control module
are encrypted to AES-128, as are comms from
control module to keypad.
SIFER readers provided by Inner Range for
access control also offer encryption at this level
from credential to reader and on to controller.
Suite of products
The Integriti Encrypted High Security system
consists of a suite of products which, taken
together, provide all the elements necessary to
build a fully-integrated high security system
that provides complete end-to-end data
encryption. The Integriti range of products
includes controllers, input expansion modules,
the aforementioned End of Line Modules,
keypads, card readers, power supplies and
equipment enclosures.
The system’s modular design provides scope
for expansion, while also boasting a hybrid
architecture. The hybrid architecture supports
both high security (ELMs) and standard
commercial grade (resistor network) areas at
the same facility at the same time. By ensuring
that budget allocations are made for the high
security zones only where necessary, the end
result is a single, holistic and affordable
security solution for the entire organisation.
Expansion of the Integriti system is achieved
by installing additional encrypted modules to
the high security controller’s RS-485 LAN, or by
adding additional controllers to the system. The
entire platform, including multiple controllers,
can be managed from the specialist Integriti
Enterprise software.
Integriti is perfect for small sites through to
large multi-campus institutions. Only pay for
what you want when you need it: Integriti’s
flexible modular design means that it grows
with you. As it’s an IP-based networked
solution, you can use new or existing IT
infrastructure for boundless connectivity.
Everyday use of the Integriti system is
simple. Unlock doors and turn security areas
on or off all by simply presenting a card at a
reader or by using the colour graphic keypad.
End users can manage their entire system via
intuitive Windows-based software.
Integriti in use
Monitor and control the movement of all
personnel and vehicles in your facility. Protect
critical assets and manage the safety of your
staff and visitors. Easily assign access
permissions, mandating who can go where and
when (including visitor access). Manage the
reporting of security alarms and audit their
responses. Ensure compliance with business
systems and Government regulations. Respond
to emergency situations, lockdowns and alerts.
Integriti is an
integrated access
control, security alarm
and automation
system designed by
Inner Range. It’s the
result of more than 20
years of continuous
industry participation
and product
development. Integriti
Encrypted High
Security is an addition
to the Integriti range
and sets new industry
standards

Advertisement Feature
Manage your occupational Health and Safety
liability by dint of using competency-based
access control. Remotely monitor and control
your Integriti system with iOS and Android
Apps. Manage your entire security operation
from a single user interface.
With Integriti acting as the complete security
management system, end users are able to
integrate a variety of security and operational
sub-systems, among them CCTV, biometrics,
mobile duress, lighting, air conditioning,
intercoms and fire safety solutions.
Why choose Integriti?
Integriti boasts powerful, yet intuitive
cardholder permission programming. The use of
‘Allow’ and ‘Deny’ functions greatly simplifies
system administration. Operator training, as
well as associated costs, are minimal.
Integriti also includes a feature-rich suite of
tools such as graphical maps, powerful
reporting, card printing, alarm management,
compliance-based access control and e-
mail/SMS/pager communications. As stated,
Mobile Apps for Apple and Android are
available for remote monitoring and control.
The Integriti system enables cardholder
location and activity information to be shared
with Building Management Systems, thereby
helping to reduce energy costs.
In addition, the Integriti system can share
cardholder data with your company’s employee
database, payroll system or booking system to
reduce the labour costs associated with data
entry and cardholder record management.
Integriti supports a wide range of nonproprietary
cards, readers, locks, detectors and
other peripheral devices. You’re not locked into
buying the manufacturer’s specific
consumables or peripheral components. A
choice of vendors gives you, the end user
buyer, the competitive advantage.
Integriti is a non-proprietary system. You
have a wide choice of competent security
companies from which to choose. Refer to the
Inner Range website (www.innerrange.com) for
details of recommended companies.
Encrypted High Security Controller
• Encrypted RS-485 LAN module limit: 32
• Encrypted inputs: 256*
• Standard inputs: 1,024*
• Security areas: 250
• Doors: 264*
• SIFER card readers: 528*
• Users: 10,000 (expandable to 100,000)
• Event database: 30,000 (expandable to
100,000)
*Maximum quantity shown is per controller and
assumes all 32 LAN modules will be of the
same type. Multiple controllers can be used to
greatly increase system capacity
Encrypted LAN modules
• Integriti 8-zone encrypted expander
• Integriti encrypted Elite keypad/terminal
• Integriti encrypted Prisma keypad/terminal
• Integriti encrypted Prisma keypad/terminal
with built-in SIFER reader
• Integriti/Integriti Standard 8-zone expander
(expandable to 32 zones)
• Integriti/Integriti Standard LAN access
module (SLAM: 2 doors)
• Integriti/Integriti Intelligent LAN access
module (ILAM: 2 doors, expandable to 8)
• SIFER card readers
LAN communications
Integriti has been designed as a modular
system that’s able to effortlessly scale with the
addition of RS-485 LAN modules.
Communications between the controller,
expanders, keypads and SIFER card reader
(including fob/card credentials) are all
encrypted to AES 128-bit with MAC
authentication as standard.
Data encryption ensures secure LAN
communications at all times, while the
programmable supervisory polling system
continuously monitors the LAN to detect cable
tamper, cable fault conditions, module off-line
and module substitution.
The efficient data format has been developed
to ensure fast, secure and reliable comms
regardless of the size of the system.
Integrated access control
In addition to a high security alarm system, the
Integriti platform boasts an integrated access
control platform. At the heart of Integriti lies
the Integriti Access Controller (IAC). The IAC is
an IP-based enterprise access controller which
supports two doors and up to four readers onboard
(a further 262 doors and additional
readers may be added via UniBus and LAN
expansion modules).
Inner Range SIFER card readers can be used
with the IAC. These are multi-drop, RS-485-
based readers that employ AES 128-bit
encryption from the card through to the door
module. A far superior level of security is
provided than that offered by traditional
Wiegand-based card readers. SIFER readers use
the Mifare DESfire EV1 card format.
The aforementioned ELMs are designed to be
installed within (or adjacent to) a detection
device such as a PIR or Reed sensor switch. In
conjunction with the Integriti encrypted

Advertisement Feature
expander, ELMs provide an encrypted data
communications link between the detector and
the control equipment.
During times of normal operation, Integriti’s
dedicated supervisory polling system
continuously monitors ELMs to detect any
communication failure, device substitution or
tamper conditions.
Intruder detection
Integriti offers powerful and flexible security
and intruder detection capabilities in a very
affordable package. Integriti delivers full
coverage and reporting of security detection
points, offering advanced single site or multitenancy
monitoring for up to 250 areas.
Support for special duress, panic and holdup
functions is provided, while connection with
a vast range of wireless or wired detection
devices is possible.
Integriti is the industry leader in security
communications providing the flexibility you
need in any environment. A single panel can
support up to four simultaneous
communication interfaces. Reporting is
available in a variety of formats including:
Contact ID, SIA, IRFast, IP (GPRS, Ethernet),
GSM or SMS. Advanced back-up reporting
options allow reporting to multiple central
stations and multiple client codes.
Furthermore, Integriti’s mobile application
allows you to arm or disarm your security
system and review events from it wherever you
may be, in turn giving you convenient control
of your system.
Integriti controllers are equipped with
powerful scripted logic capabilities allowing
the system to be configured to automate many
applications. Functions such as auto-closing a
roller door at a certain time, or automatically
switching lights on or off based on time or
movement within a building are typical
examples of Integriti’s automation capabilities.
Indeed, there are many other applications
where Integriti’s automation features may be
employed to manage the day-to-day
requirements of your facility.
Inner Range: Intelligent Security Solutions for Security Professionals
Inner Range is a world leader in the design and manufacture of state-of-the-art access control and
security solutions. Since the company’s formation in 1988, upwards of 100,000 Inner Range
systems have been installed in over 30 different countries. Consultants who specify the company’s
products, technicians who install them and people who use them benefit on a daily basis from the
remarkable versatility of Inner Range’s systems.
A privately-owned company, Inner Range is built around a team with a lifelong passion for the
electronic security industry. The business is wholly focused on developing the world’s very best
hardware and software solutions for practising security and risk management professionals’
security and access control needs. A large proportion of the company’s product development
resources is committed to building reliable products capable of enduring harsh environments, in
turn affording end users piece of mind about their security and access control investments.
Around the globe, Inner Range is backed by a strong technical support infrastructure. The
business’ quality-driven technical support team and factory-certified training ensure that your
system can be specified, quoted, installed and maintained on a reliable basis without delay.
For further information on Inner Range’s solutions access the website at www.innerrange.com
Tim Northwood:
General Manager at Inner
Range Europe

ENCRYPTED HIGH SECURITY
CLASS 5
Encrypted High Security
End of Line Modules Are Only the Beginning
Inner Range’s Infiniti Integriti Class 5
is High a complete Security Hardware/Software
System
solution is a complete designed Hardware/Software
specifically for
Class solution 5/Zone designed 3 installations. specifically for
High Security installations.
Our range includes:
Our All range Software includes:
Hardware All Software Controllers
End Hardware of Line Controllers Modules
Power End of Supplies Line Modules
Keypads Power Supplies
Enclosures Keypads
Communications Enclosures Devices
Access Communications Control Readers Devices
Credentials
Access Control Readers
Why Credentials take chances?
Full
Why
End
take
to End
chances?
Encryption
compliant Full End to with End AS/NZS Data Encryption 2201.1:2007
Class Externally 5 Externally Certified Certified
BEST NEW PRODUCT
OF THE YEAR
MEMBER
AUSTRALIAN SECURITY INDUSTRY
ASSOCIATION LIMITED
T: +44 +61 3 (0)845 9780 4300 470 5000
E: integriti@innerrange.com
IREnquiries@innerrange.com
W: innerrange.com
T: 1300 319 499 W: csd.com.au

Mail Room Security Management: Systems and Procedures
Following on from the recent powder and
Improvised Explosive Device (IED) attacks
on Government and religious
establishments, mail room security has now
become one of the biggest challenges facing
heads of risk and security. Indeed, any of the
regular readers of Risk UK may be surprised to
learn that suspected IEDs and other suspect
packages are regularly discovered in the UK.
As the methods by which suspect packages
might be delivered are changing every day, it’s
also very easy for organisations to become
complacent in relation to their daily mail room
operations. With effective training and the use
of scanning devices, mail room operatives are
the first line of defence against postal threats.
Regularly reviewing and updating mail room
security and personnel training should become
a normal part of security planning for any large
organisation, but what steps need to be taken?
The first step for any business looking to
secure its mail room is to undertake a threat
assessment. That detailed assessment should
begin by examining all current processes and
equipment and identifying specifically how the
organisation will combat any potential postal
threats. Conducted on a regular basis, this
process will ensure the business remains on
the front foot and prepared for any evolving
security threats.
The threat assessment should examine risk
at entry to the building and how visitors are
screened and bags searched at this juncture.
How post is delivered, the physical location of
the mail room and pinpointing any potential
surrounding threats that may be business
critical are further considerations.
Rather than a single point of entry, we often
find that there are multiple points of entry for
post in a building (for example, Royal Mail and
courier deliveries into a loading bay and handdelivered
items through reception). These
access points – and the security level required
at each of them – must be considered as part of
the overall threat assessment.
Organisations should then look at how they
identify and handle each type of specific
security threat. Current known threats include
chemical or biological agents in powder or
liquid form, as well as explosives and items
deliberately designed to inflict physical and
psychological harm.
In addition, the location of the mail room and
any critical services, such as computer servers
or utilities, as well as any neighbouring
personnel should be considered. If they’re
within any potential blast area, changes may be
required to ensure that any attack or
detonation would have the minimum possible
Signed, Sealed, Delivered
Would your members of staff know precisely what to do if a
situation should arise whereby a suspect package is found in
the company’s building? Jason Wakefield shares his insights
on this hugely important topic, explains the risks faced by
today’s Mail Room operations and evaluates in detail how to
effectively address them
effect on the business and that the area
affected can be closed off safely with ease.
Containment issues
Following the threat assessment,
recommendations and an action plan should be
produced detailing all required security
measures, including what to do if a suspect
package, weapons, powders or explosives
should be found. This affords a thorough
understanding of the threats and how to
protect the building and the people within it.
Full procedures with actions on finding
suspect devices should be written, practised
and updated on a regular basis such that
operators and security staff know exactly what
to do if a suspect device should be found.
Following a threat assessment, many
organisations will decide to invest in or
upgrade the mail room scanning technology
they have at their disposal. If an organisation
currently owns an x-ray scanning machine that’s
over eight years old, the chances are this
machine will be inadequate for dealing with the
advancing capabilities of today’s terror threats.
There are various types of machine available
to consider from a variety of manufacturers, but
Jason Wakefield: Sales
Director at Todd Research
53
www.risk-uk.com

Mail Room Security Management: Systems and Procedures
essentially there are two types, specifically
conveyors and cabinets.
A conveyor machine is similar to those seen
at any airport used to scan hand luggage. It’s
an effective scanner for when the flow of mail is
constant and there are many large packages
entering the business.
Many of today’s conveyors have useful
additional optional software options that
should be considered, such as Advanced
Detection Software (ADS) and Threat Image
Projection (TIP). The former is advanced
algorithm software that works by identifying
the atomic number in explosive substances and
contraband. Explosives are highlighted to the
operator within a red box and contraband
within a yellow box, making it easier for the x-
ray machine user to identify potentially
dangerous or banned substances.
TIP technology is useful for quality control,
risk analysis and the assessment of individual
screener performance. It can show screeners
artificial, but realistic x-ray images of threats
during a routine baggage x-ray screening
operation in order to aid and also test their
security threat identification skills.
Cabinet scanners
Cabinet scanners are now also proving popular
with many end user organisations because they
create a lower carbon footprint and cost 50%
less than a conveyor machine. As if to
emphasise their popularity, every British
Embassy across the world currently uses a
cabinet scanner for security purposes.
These scanners are operated by opening the
chamber door and placing inside the items to
be scanned. A single push-button operation
then generates an image. Once the image has
been generated, the advanced feature
operating software makes the identification of
suspect items easier.
These advanced features can include
Enhanced Powder Detection for the ease of
identifying powders such as anthrax or ricin, as
well as an e-mail facility to send the picture of a
suspect package to a third party for
assessment. Other useful advanced features
can include zoom control, density alerts and
three-point colour, all of which have been
designed to help the user easily identify what’s
inside the package they’re scanning.
“The threat assessment should examine risk at entry to the
building and how visitors are screened and bags searched
at this juncture. How post is delivered and the physical
location of the mail room are further considerations”
Once any new scanning equipment is in
place, it should be regularly reviewed as part of
an ongoing threat assessment process to
ensure that it’s maintained and upgraded to
counter any new threats as required. Scanning
operators should also be tested and training
invested in to ensure that they’re up-to-date
with all the latest security Best Practice. Often,
the leading scanning machine providers will
include introductory training for operators as
part of the package when equipment is bought.
Business continuity
Once the assessment and action plan has been
put into place, organisations should then look
to consider the safety, information and
business continuity implications.
For example, it’s important that organisations
achieve and maintain full Ionising Radiations
Regulations 1999 (IRR99) compliance for staff
using x-ray scanning security equipment. This
document is aimed at the protection of the
public and the health of those staff who work
with ionising radiations and points directly at
those employers with duties under IRR99.
Organisations using x-ray security scanning
machinery fall under these regulations.
The organisation should also put in place
mechanisms to ensure that all security staff are
kept up-to-date with all current terror threats
by following the countrywide alert status set by
MI5. They should be aware of the location and
contact details for the regional Counter-
Terrorism Security Advisor should that person’s
assistance be required. An overview of groups
that may wish to target the organisation can be
identified. In addition, it’s important to consider
the lone activist, the disgruntled employee or
customers with a grudge.
A reporting schedule will need to be put into
place, recording any mail attacks and tracking
current trends and methods used by individuals
or groups which can also be used as a staff
training tool.
Finally, the host organisation should make an
assessment and ensure that it could still
operate effectively if the mail room area had to
be evacuated because of a security threat. This
can be achieved by identifying and/or
establishing a co-location either on another site
or in a different part of the building.
Implementing and continually checking on
security measures for an organisation’s mail
room can be a challenging task. As a result,
many choose to work with professional security
organisations to carry out some or all the tasks
identified. There’s no simple answer as to which
course your organisation should take, but help
is at hand should assistance be required.
54
www.risk-uk.com

Meet The
Security Company
This is the fourth
instalment in a new
series of articles for
the readers of Risk UK
where we shine the
spotlight on NSIapproved
businesses
for the benefit of risk
and security managers
who purchase security
guarding as well as
systems-focused
solutions. Answering
our questions this
time around is Scott
Boyd, managing
director of Securi-
Guard Fire and
Security
About the National Security Inspectorate
Risk UK: Can you briefly describe your
business’ activities and what you consider to
be your USP as an organisation?
Scott Boyd: Established back in 1982, Securi-
Guard is a family-owned NSI Gold, BAFE and
Security Industry Authority (SIA) Approved
Contractor Scheme (ACS) accredited fire and
security solutions specialist with offices in
Plymouth and Wellington in Somerset.
Celebrating its 35th Anniversary in April next
year, the business is now recognised as the
largest independent ‘one-stop shop’ fire and
security solutions provider in the South West.
On that note, end user organisations are now
increasingly seeing the cost benefits of
combining services from one trusted specialist.
Many clients prefer to use our wide scope of
services rather than four or five different
suppliers, which can have a significantly
positive impact on the buyer’s bottom line.
Risk UK: What do your clients value most
about the services you deliver?
Scott Boyd: We believe there’s a positive
perception of an independent, family-owned
business like ours which is locally based and
boasts a solid heritage and proven track record.
The National Security Inspectorate (NSI) is a wholly-independent, not-for-profit
company limited by guarantee and operates as a UKAS-accredited certification
body specialising in the security and fire safety sectors.
For over 40 years, the NSI has served to protect businesses, homeowners
and the general public alike, raising standards by providing robust and high
quality audits of both security and fire safety service providers.
The highest levels of customer service are at
the very heart of our company ethos and we’ve
built a solid foundation of trust and integrity
among our client base.
Equally important is our wide range of quality
assured and industry accredited services
delivered by a dynamic and highly-skilled
cohort of engineers and security personnel, all
of whom are supported by a strong
management team. We’re dedicated to not just
meeting, but exceeding clients’ expectations.
That’s probably what our customers value the
most alongside the NSI, BAFE and SIA
accreditations mentioned previously.
Risk UK: How do you feel accreditations have
assisted your company?
Scott Boyd: Industry accreditations are hugely
important to us as a business as they set a
benchmark for quality and professionalism in
which clients can place their trust.
We’ve been committed to meeting the high
standards set by the respective accreditation
organisations. It’s a company policy that has
paid dividends, too. We’re now multiple NSI
Gold, BAFE and SIA ACS accredited for security
guarding, fire and security systems and 24/7
monitoring services.
We do find that, while local authorities and
larger businesses recognise the benefits of an
accredited company, there’s still a lack of
knowledge in the general marketplace about
accreditation and a perception that it adds to
the cost for the buyer rather than adding value.
All of us work hard to change such perceptions
by helping to educate clients such that they can
see the benefits.
Risk UK: Specifically, what value does ACS
registration and NSI Guarding Gold approval
bring to your business and its clients?
Scott Boyd: Our NSI Gold and SIA ACS
accreditations are a major benefit when it
comes to carrying out third party work for
‘other’ security guarding companies. Being a
part of our industry themselves, clearly they
have much better knowledge of what these
accreditations mean so what matters to them is
that our team members always deliver the
correct processes and procedures.
56
www.risk-uk.com

Meet The Security Company: Securi-Guard Fire and Security
In association with the
Having the accreditations is obviously very
important, but being consistently able to meet
the requirements of those accreditations is
absolutely vital.
Risk UK: In practice, what are the main
differences between ACS registration and NSI
Guarding Gold approval?
Scott Boyd: There’s probably very little
difference in as much as both schemes
recognise that, as a company, we’re
consistently meeting the highest standards of
service delivery which should afford our clients
and potential customers alike reassurances.
As the NSI has been providing certification
for more than four decades now, the
organisation’s ‘seal of approval’ does carry a
good deal of clout in our industry.
In its commitment to opening up new
business opportunities for the private security
sector, the SIA’s ACS has also been beneficial. It
helps in making sure that we don’t let our
professional standards slip.
Risk UK: How do you think technology has
changed the industry over the last couple of
years and what do you feel will be the
direction of travel in the future?
Scott Boyd: We could see how fast technology
was likely to develop and recognised its growth
potential, and so formed separate divisions for
the business, each with its own management
team and associated accreditations.
Those divisions cover security services (ie
guarding, key holding and mobile patrols), fire
and security systems (CCTV, access control and
alarms, etc), fire safety services (such as fire
extinguishers and fire door holders) and 24/7
monitoring services (security and fire alarm as
well as CCTV monitoring).
Technological innovation is now at the
forefront of our industry. A large number of our
clients have moved away from the traditional
24/7 manned security service. Increasingly,
they’re making good use of cutting-edge
electronic systems combined with ‘office hours’
security officers, 24/7 monitored fire and
security systems and ‘out of hours’ mobile
security officer response/patrol services.
Risk UK: When it comes to negotiating
contracts and responding to tender requests,
what aspects are of most value to customers
and how are these changing?
Scott Boyd: Customer satisfaction is the best
advert for any company’s services. We’re
extremely fortunate that the majority of
requests come to us through recommendations
and/or knowledge of the company’s reputation.
Ease of communication is also vital, which is
why our key team members are always
available on a 24/7 basis.
Increasingly, clients are asking for ‘shared’
services (ie reducing/removing their manned
security cover and introducing mobile patrols to
open/close sites, carry out random patrols and
respond to any security system activations that
occur during ‘the silent hours’).
Risk UK: How has Government legislation (eg
the National Minimum Wage, the National
Living Wage and holiday pay) affected your
business? Do you believe such legislation is
a good thing?
Scott Boyd: We agree with the introduction of
the legislation you’ve mentioned, but as
referenced earlier, over the last few years we’ve
witnessed an increase in clients requesting a
review of their existing ‘manned’ security cover
with the specific intention of reducing their
annual spend and replacing this service with
24/7 monitored fire and security systems in
tandem with police/security response services.
Risk UK: What are the most important
attributes you look for in your security
officers and staff members in general?
Scott Boyd: We seek candidates who wish to
be a part of our security and fire family. We
want committed and dedicated team players
who have the skills and knowledge to deliver
the best possible service for all of our clients.
When we invest in our staff, we’re investing in
the future strength of the business and, to date,
that effort has most certainly paid dividends. Of
the 154 members of staff employed by the
company at present, 58 of them have over ten
years of service with us.
Risk UK: How can the SIA, the NSI and
industry standards best serve the sector in
addition to the needs of your company’s
clients and the wider public interest? Will
the introduction of business licensing be a
positive step?
Scott Boyd: It’s imperative that we continue to
have a robust accreditations system in place
that’s always raising the bar and challenging
companies across our sector to not only prove
their professionalism and worth, but
consistently maintain – and, ideally, improve
upon – those high standards.
What would the introduction of a business
licensing regime from the Regulator ensure?
Greater accountability and better practises. It
would afford customers the added assurance
that they’re dealing with a reputable business
working within the strict confines of the law.
Name
Scott Boyd
Job title
Managing Director
Time in the security sector
I’ve served in the security
sector since 1985, having
joined Securi-Guard Fire and
Security that very year
Location of the business
Securi-Guard Fire and
Security operates from offices
in Plymouth, Devon and
Wellington in Somerset. Main
areas covered by Securi-
Guard Fire and Security
across Devon and Cornwall
include Bideford, Dartmouth,
Exeter, St Ives and Truro
Areas of expertise
Security guarding, alarm
response, mobile patrol and
key holding services, security,
fire alarm and CCTV systems,
fire safety services and 24/7
monitoring solutions
(security and fire alarm
monitoring, CCTV monitoring,
lone worker alarm monitoring
and vehicle tracking)
Accreditations
NSI Guarding Gold, NACOSS
Gold, NSI Fire Gold (BAFE
SP201 and BAFE SP2013-1),
NSI ARC Gold, SIA ACS
(Security Guarding, Key
Holding, CCTV)
Scott Boyd:
Managing Director of Securi-
Guard Fire and Security
57
www.risk-uk.com

www.coie.uk.com
Cortech Open
Innovation Event
Cortech Developments Headquarters, Withers Lane, Knutsford,
Cheshire, WA16 0SG, 7 November 2017
The Mitigation of Risk for Workplace Safety, High Security
and Building Efficiency
An event with a difference for end users, consultants and main contractors:
Be educated, informed and better equipped to manage evolving building needs
Keep abreast of the latest advances in security, fire and building control technology
See technology in action as part of the live demonstration
Discover the latest smart integration techniques
Discuss industry challenges with fellow security professionals and technology experts
Learn about the 10 steps to cyber risk management
Attending Partners
Cortech
Developments
Media Partner

The Security Institute’s View
We’ve all heard the debates surrounding
the so-called ‘race to the bottom’ where
pay and charge rates are concerned,
read the stories on ‘full employment’ across the
UK as reported in the mainstream media or
been privy to statements about how security is
a “grudge purchase”. Putting all of that ‘noise’
to one side for a moment, there’s a very real
need to look at the basic evidence and try to
understand where some of the challenges lie.
At the time of writing, I can surf the Internet
and see security vacancies in London,
Manchester, Leeds, Edinburgh, Cardiff and
Belfast paying from £7.50 per hour (£7.20 in
Belfast) through to £9.15 (Edinburgh), £9.50
(Manchester), £10.00 (Cardiff), £10.45 (Leeds),
£11.05 (Belfast) and £15.00 (London). Now,
contrast this scenario in the security business
sector with retailer Aldi. For the role of a shop
assistant, that company pays between £9.75
and £10.61 per hour in London and £8.53 and
£10.15 seemingly everywhere else, with no
requirement to undertake licence-linked
training, buy a licence (which is renewable
every three years) or externally patrol buildings
or respond to alarms at two o’clock in the
morning in the pouring rain or freezing cold.
Let’s not forget, either, that working in retail
also means you’re likely to be afforded
employee discounts which can be very
appealing, and especially so if you happen to
be working in a store which is connected to
your leisure time hobbies or interests.
UK’s unemployment rate
In a recent report published by the United
Kingdom Crowd Management Association,
entitled ‘Benchmarking Security and
Stewarding Resourcing’, a figure of a 40%
reduction in renewals of SIA licences was
quoted. Although the Security Industry
Authority (SIA) has since responded to the
report and provided a degree of clarification
and context, the Regulator’s own figures – as
quoted in its latest Approved Contractor
Scheme Update – show that, from the high
point of just after the London 2012 Olympic
Games when there were 224,619 licensed door
supervisors in operation, we’re now down to
201,821 annual renewals. This represents a
drop of just over 10%. Figures for the other
licensable sectors are not quoted.
Standing at just 4.3%, the UK’s
unemployment rate remains at its lowest level
since 1975. Indeed, a senior Office for National
Statistics statistician was recently quoted on
the BBC saying that: “The number of people
aged 16 to 64 not in the labour force because
they’re looking after their family or home is the
An Assessment of Staff
Recruitment and Retention in
the Security Business Sector
One of the biggest challenges currently facing the private
security sector is the initial recruitment and subsequent
retention of high quality individuals. It doesn’t appear to
matter whether the prospective employer is in the Top Ten in
the industry or an SME, or whether it’s guarding or technical
recruitment: there seems to be a worrying dearth of
individuals looking to join the sector. Mike White addresses a
significant problem that must be solved
lowest since records began at less than 2.1
million.” While this may be positive for the
economy as a whole, it presents something of a
challenge for those trying to recruit – and,
thereafter, retain – new security officers.
There’s also the not inconsequential matter
of Brexit uncertainties to be considered, and
how this might affect recruitment or, indeed,
how it might affect our European colleagues
from the other 27 EU Member States currently
working in the sphere of private security
solutions provision.
If we’re going to professionalise the private
security industry and make it a career of first
choice – an objective regularly reiterated by
every Trade Association, representative body or
institute you may care to mention – then we
need to do so across a range of areas.
Training in the sector
As regards training, there’s a significantly better
range of training courses available today than
ever before to allow people to progress through
Mike White MSyI:
Director of The Security
Institute and Head of Risk,
Compliance and Assurance (UK
and Ireland) at G4S
59
www.risk-uk.com

The Security Institute’s View
a career in the private security industry, from
Levels Two and Three when they join right up to
a professional doctorate. Courses exist across
multiple disciplines within the sector.
Yes, there has been suspected and proven
training malpractice and we do see
enforcement action being taken against the
minority who seek to break the rules, but in
truth training is just one part of a complex,
three-dimensional recruitment and retention
jigsaw puzzle that still challenges even the
brightest of minds. Pay and conditions will
undoubtedly be part of this jigsaw, as indeed
will working practices.
Of course, the private security industry
continues to suffer an ongoing negative image
within the mainstream media. Such an image is
grossly unfair given the immense contribution
made by the industry to the safety and security
of this country and its citizens on a day-to-day
basis. Indeed, there are not many jobs outside
of the military, the medical profession or law
enforcement that have such a profound impact
on people’s lives.
Whether it’s the security officer who helped
apprehend a criminal, one who prevented
unauthorised access to a building, another who
heroically responded to a terrorist attack or one
who reunited a lost child with their parents in a
shopping centre, what security officers do
really matters in the here and now.
For all of the negative publicity that the
industry sadly attracts, there are plenty of
outstanding individuals and companies
operating in our world that make substantial
contributions. Despite it being asked to do
more across a range of sectors in the light of
public sector cuts and a heightened terrorist
threat, including significant involvement in
securing elements of the UK’s Critical National
Infrastructure, the private security industry has
yet to come close to reaching its full potential.
Recruitment and retention
How, then, do we go about attracting more
individuals into the sector when it seems that
the available pool of candidates is shrinking,
and when it appears that evidence suggests
once those individuals are part of the mix we
then struggle to retain them?
What isn’t going to work is anything being
undertaken by one organisation on its own or
one employer in isolation. This is an industrywide
issue that demands a co-ordinated and
industry-wide response. That response needs
to set aside self-interest and, instead, examine
all the factors involved, consider all the
possible solutions – however radical some of
them may be – prioritise what needs to be done
and then draft a series of recommendations
that the private security industry as a whole
can comment on and, hopefully and more
importantly, implement in the real world.
Crucially, the response needs to encompass
everything from training and working
conditions through to regulation and business
profit margins as well as everything in-between.
‘Bonfire of the Quangos’
The fact remains that this industry isn’t good at
coming together as a whole and responding in
a concerted manner to achieve a positive,
lasting outcome but, I would argue, it can be
done. Back in the autumn of 2010, you may well
recall the news being leaked to the BBC that
there would be a number of Government
‘quangos’ abolished as part of a wider plan to
reduce the number and cost of public bodies: a
plan referred to by the mainstream media as
the ‘Bonfire of the Quangos’. The SIA was
selected to be one of them.
In response, the private security industry
joined forces as never before and, in a coordinated
manner, lobbied the Government –
and lobbied hard – with the message that this
would be a retrograde step that would severely
damage the sector by putting the already light
touch regulatory framework at risk. The
outcome was that, late in the evening on 23
March 2011, the House of Lords passed an
amendment to the Public Bodies Bill removing
the SIA from the list of those bodies to be
abolished. The industry as a whole thought that
this was an issue well worth challenging, and
that hunch was proven to be justified.
Recruitment and retention challenges are
now bordering on being a crisis for the industry.
As a matter that appears to be affecting
employers both large and small, local and
national, it’s crying out for a unified response.
Put simply, we need to draw on the
significant lessons learned from our coordinated
response to the ‘Bonfire of the
Quangos’, set aside any differences between
individuals, businesses and associations and
come together in devising a common strategy.
“How do we attract more individuals into the sector when it seems that
the available pool of candidates is shrinking and evidence suggests
once those individuals are part of the mix we struggle to retain them?”
60
www.risk-uk.com

7
CONFERENCE, EXHIBITION & GALA DINNER
University & Healthcare
Estates and Innovation
14th -15th NOVEMBER 2017 / UNIVERSITY OF BIRMINGHAM
Universities & Healthcare Estates and Innovation is a unique conference and exhibition
that addresses some of the key issues facing the University and Healthcare sectors.
The conference addresses each issue from a University perspective, and then from a
Healthcare perspective - allowing delegates to gain insight into both areas and share
best-practice.
The event will feature a wide range of high profile industry speakers that will focus on
identifying the synergies and opportunities between these two sectors, and how
best-practice can be shared effectively.
If you would like to find out more, please contact:
Ascent Events
T: 01892 530027 E: info@ascentevents.co.uk
or register at http://www.ascentevents.co.uk/uhei-birmingham-registration.php
@UHEI_UHEI
Event Partner
Hosted By
Supported By

A 21st Century Crisis: What Does It
Look Like in the Real World?
The threats and
dangers we’re facing
are developing and
mutating at an almost
inconceivable pace.
It’s a paradox that, at
a time when the world
has never been safer,
it has also never been
in as great a danger.
David Rubens focuses
on six key areas of
interest – among them
pandemics and
terrorism – before
examining the
implications for
today’s practising risk
and security
management
professionals
Dr David Rubens DSyRM CSyP
FSyI MSc: Managing Director of
Deltar Training Solutions
62
www.risk-uk.com
Every morning seems to bring to light a new
crisis that’s bigger, more destructive and
more expensive to fix than anything that
came before it. Whether it’s hurricanes, cyber
failures, pandemic scares or infrastructural
breakdown, the impact those events have on
both the local communities involved and global
awareness is of a different level of intensity to
that ascribed to what could be considered
‘traditional’ crisis events.
The question is whether this is just some
anomaly, or whether the world is actually
changing in terms of the threats we’re facing
and the challenges they’re posing.
Here at Deltar, we use the phrase ‘21st
Century Crisis Management’ quite a lot,
because in our minds there has been a
significant change in the last 20 years between
20th Century crisis events, which were
relatively isolated, manageable and limited,
and 21st Century crisis events. The latter are of
a different order of magnitude in terms of their
complexity and consequences and encompass
much larger ‘footprints of destruction’.
We’ve identified six areas of significant
interest where there has been an important
evolution in the nature of threats associated
with those sectors, and the implications arising
for strategic planners as well as emergency and
crisis response managers. These are natural
disasters, Critical National Infrastructure (CNI),
pandemics, political and/or social unrest, cyber
failures and terrorism. Let’s look at each in turn.
Natural disasters
Whether or not one accepts the reality of
climate change, it’s clear that not only are high
impact natural disasters – ie typhoons,
tornadoes, floods, earthquakes and landslides
– becoming more frequent and of a larger scale,
but they’re also having a much larger impact on
significantly large sections of the population.
This is only going to increase as the developing
‘mega cities’ are concentrated either on the
coast or in coastal regions, which means that
increasingly dramatic adverse weather events
are going to have an effect on those areas and
the populations living in them.
By their very nature, natural disasters are
‘long-tailed’ events, which have high levels of
often catastrophic impacts not just on the
communities they strike, but also on the
surrounding infrastructure (eg roads, railways,
power, communications and water purification).
In the UK, CNI is officially listed as including
chemicals, civil nuclear communications,
defence, emergency services, energy, finance,
food, Government, health, space, transport and
water. However, from a strategic risk
management perspective, these different
sectors are increasingly becoming
interdependent, with serious disruptions to one
sector likely to have cascading impacts across
the other sectors as well.
An example of failure in CNI can be seen in
the increasingly regular occurrence of power
disruption across large areas, often
transcending national boundaries and
jurisdictions. The highly complex
interconnectedness in power systems means
that a relatively minor disruption in one part of
the system can create almost instantaneous
cascading failures across other systems which
had no knowledge of – or control over – the
original triggering event.
The major power failure across Europe back
in 2006 is a typical example. Following what
was seen as a minor outage due to an
unusually high power flow in a sub-station in
Germany, 28 seconds later an electrical
blackout had cascaded across Europe
extending from Poland in the North East to the
Benelux countries and France in the West,
through to Portugal, Spain and Morocco in the
South West and across to Greece and the
Balkans in the South East.
What about pandemics?
It could be said that the last true pandemic was
the influenza outbreak between 1918 and 1920
that infected 500 million people across the
world, including those in remote Pacific Islands
and in the Arctic, and caused the death of
between 50 million and 100 million people (up
to 5% of the global population at the time).
However, the growth of international travel
combined with the return of previously
declining diseases, not to mention the rapid
expansion of urbanisation, means that many
observers consider it only a matter of time until
another global pandemic hits us.
There have been increasing warnings of the
impact a significant outbreak could have, with
AIDS, SARS, Ebola, Swine Flu, Bird Flu and Zica

In the Spotlight: ASIS International UK Chapter
all transcending local areas of infection to
become potentially global pandemics.
The question that needs to be asked is: ‘Have
the global, regional and national authorities
used these experiences to increase global
resilience to pandemics and prepare for the
impacts that would happen if another major
pandemic was to occur?’
Unfortunately, and perhaps predictably, the
generally accepted answer is that these ‘near
misses’ haven’t been used to both practice and
improve upon global response capabilities.
Political and social unrest
When Francis Fukuyama scripted his bestselling
book ‘The End of History’, the claim was
made that, with the victory of social democracy
and market-led capitalism, the great divides
that had characterised human history were
over, and we now had the opportunity to gain
from the benefits that world peace and
prosperity would bring.
The last decade has seen the upheavals
caused by the Arab Spring, the rise of Islamic
terrorism and the impacts on Western Europe of
the influx of refugees and economic migrants.
However, we’ve also witnessed a modern,
globally-connected country like Qatar being cut
off from the world due to the pressure of its
surrounding neighbours, the aggressive
expansionism of China across what it sees as
its own natural sphere of influence and the
resurgence of Russian military and political
influence, both in its own back yard – Georgia,
Crimea and the areas around the Baltic States –
and regions where the US would once have
considered itself the main player (eg Syria).
This has all been combined with a growing
alienation and polarisation between the
political elites and the mass of people who feel
the world has left them behind, and who look
to the traditional ‘enemies’ – the stranger, the
outsider and the weak and vulnerable – which,
in turn, is having impacts on both the rhetoric
and reality of local and national politics.
For those with a political memory, parallels
with the period of the 1930s, involving both a
global recession and increasingly violent
political rhetoric, are not exaggerated. From a
risk management perspective, any city in the
world can be considered potentially high risk in
terms of a rapid destabilisation, with the
emergence of a street environment that’s both
volatile and perhaps highly challenging.
Cyber failures
Although we often talk about cyber terrorism,
it’s the wider aspect of cyber failures that’s
equally worrying. Although there’s no denying
the fact that targeted cyber attacks – whether
from state actors, international terrorists, cyber
criminals or the bored hacker – are
undoubtedly serious, the potential for
catastrophic cyber failures on a global scale is
becoming increasingly more likely.
Low-level, home-grown terrorism has become
the ‘new normal’. It was interesting to see that
the recent ‘bucket bomb’ attack in London on
Friday 15 September, which injured 30 people
and created a ‘wall of fire’ inside a crowded
London Underground train, served as headlines
for 24 hours before being relegated to
‘updates’ on the progress of the operation to
identify and find the perpetrators.
If home-grown and low-level attacks are the
‘new normal’, then it’s perhaps only a matter of
time before the ‘new new normal’ emerges –
which would be some form of home-grown dirty
bomb. Whether chemical, biological or
radiological in nature, the impact this would
have on a major city – and the consequences in
terms of ‘reactive security’ in other cities across
the world – is almost incalculable.
Crises can no longer be deemed to be mere
one-off isolated events. Rather, they must
increasingly be viewed in terms of system-wide
failures impacting on the global network of
interconnected dependencies, with both
instantaneous impacts and catastrophic effects
being realised.
“Although there’s no denying the fact that targeted cyber
attacks are undoubtedly serious, the potential for
catastrophic cyber failures on a global scale is becoming
increasingly more likely”
63
www.risk-uk.com

Qualifications: The Future of Fire
Detection and Alarm Practitioners
What’s the future for
those working in the
fire detection and
alarms sector? Given
that staring into a
crystal ball will likely
not help in finding the
answer, Martin
Duggan analyses the
facts and looks at the
reasons why there’s a
growing trend towards
both the need for
professional
qualifications in this
sector and also a
requirement to upskill
and grow the market
through the provision
of quality services
Martin Duggan:
General Manager at the Fire
Industry Association
64
www.risk-uk.com
Here in the UK, the problem at present is
that there’s no ‘upfront’ legal requirement
for a formal qualification in the fire
detection profession. Technically speaking,
there’s nothing to stop anyone, however
unqualified they may be, from commissioning a
fire alarm system.
To make matters worse, that applies whether
the unqualified individual is installing or
designing a system for a small office, a nuclear
power station or even a large hospital, where
the risks could be exponential if matters are not
handled properly. It’s likely that only after a
disaster has played out would poor
workmanship be discovered, which means that
many ‘problems’ remain undetected.
Currently, the only necessity is written into
the Regulatory Reform (Fire Safety) Order 2005,
which states that the individual must be
“competent” – but the definition is vague. The
best we have is in the guidance documents
which state the following: “A person with
sufficient training and experience or knowledge
and other qualities to enable him/her to
properly assist in undertaking the preventative
and protective measures.”
The fire detection and alarm industry has a
‘company’ competency benchmark, specifically
the third party certification schemes: BAFE
SP203-1 or LPS 1014. These are supported –
again somewhat vaguely, it must be said –
within the guidance documents by the
statement that: “Third party certification
schemes for fire protection products and
related services are an effective means to
providing the fullest possible assurances,
offering a level of quality, reliability and safety
that non-certificated products may lack.”
Each scheme is different, but essentially each
one provides an independent audit of a
company to help prove quality and competency.
Part of the inspection process is to look at staff
and how they’re trained and selected.
These schemes are generally very good and
the audits strong, which is precisely why the
Fire Industry Association (FIA) has always
supported them and made them the criteria for
membership acceptance.
A qualification should raise the competence
bar to a new level and provide an extra layer of
knowledge and expertise. Not only will it help
to bolster an individual technician’s credentials,
but will also afford companies a competitive
advantage, and especially so if they can
demonstrate that all of their technicians are
qualified. This would provide for a much easier
check within the company scheme inspections.
Purchasing decisions
Consumers and purchasers in today’s world are
more and more savvy, often placing more effort
into finding out what sort of service they’ll
receive and at what price. They’re also starting
to fully understand their responsibilities and
are looking at how they can mitigate risk.
While price alone might lead the way on
some purchasing decisions, that isn’t always
the case. Many discerning purchasers will look
to discover if they’re receiving a good level of
service for their money.
This is where EN 16763: 2017 Services for Fire
Safety Systems and Security Systems is useful.
Although not mandatory, it helps to set out
minimum education requirements for staff in
the industry. EN 16763 clearly defines the level
of education those working in the fire and
security services industries should have at their
disposal. According to EN 16763, those working
within fire detection and alarm services should
hold a Level 3 qualification on the European
Qualifications Framework.
To assist those companies in preparation for
adopting this standard, and to further improve
the level of training available for service
technicians, the FIA has worked to develop four
new qualifications in the field of fire detection
and alarms aimed at the four main job roles
within the fire detection and alarm services
sector. These four roles are the designer,
installer, maintainer and commissioner.
The new qualifications are one stage higher
than those mentioned in the European
Qualifications Framework (as a UK Level 3 is the
equivalent of a European Level 4, and the
European Standard calls for Level 3) and
equivalent to an A-Level within the UK.
Method of differentiation
Why did the FIA become involved? We provide a
service to our members and they want to
increase the knowledge and understanding of
their workforce and new recruits. They wish to
differentiate themselves from the ‘cowboys’.
Also, the FIA is a not-for-profit organisation
so any money made either goes back into
training and development or research.

FIA Technical Briefing: Qualifications in the Fire Sector
The second objective listed in our
Memorandum of Association is all about
providing education and training for the sector.
Consequently, the FIA is well placed to offer
training that can help to prove competence. The
organisation has been running fire detection
and alarm training for over 20 years (since its
formation in 2007 and in its previous guise as
the BFPSA) having trained more than 30,000
delegates across its 17 different courses.
Current run rates are 300 courses across the
year around the country, providing training for
circa 4,000 delegates every year. FIA training
has become a widespread requirement in fire
detection and alarm technicians’ recruitment,
and it’s fair to suggest that qualifications will
only enhance this truism still further.
This year, the FIA is proud to have become an
approved Awarding Organisation which, in
essence, means that we can now write
qualifications which are then approved by the
Office of Qualifications and Examinations
Regulation (Ofqual) and other official
Government bodies for examinations. The FIA
spent years researching and creating the
qualifications, talking to members and training
customers to find out what they wanted from a
qualification. We then tested what we learned
from surveys. The results helped us to design
and create our qualifications.
The four new qualifications in fire detection
and alarms are currently being developed to
enhance the learner’s knowledge even further
than before. The FIA’s present training provision
will eventually be phased out for the new
qualifications, since these will contain new
areas and topics not previously seen within the
provision currently given.
Four units to study
For each of the four qualifications there are four
units to study. Three units are common to each
of the qualifications. These are: Foundation,
Health and Safety and Environment. Learners
must pass each stage in order to progress to
the next unit. Thereafter, they can then choose
a specialist advanced unit in their chosen area,
whether that be design, installation,
maintenance or commissioning.
In the Foundation Unit, the learner develops
their knowledge and understanding of fire
safety legislation (which is different depending
on whether you’re in England and Wales,
Scotland or Northern Ireland), as well as
relevant standards, Best Practice and the
theory that underpins all of the advanced
principles in the later specialist advanced units.
The standard for the qualifications is
incredibly high. Experts from across the
industry have collaborated to create the course
content and write the examinations.
There will not be an examination-only option
for those who think that they already have
enough knowledge to pass. This is because the
qualification is comprehensive, and the
questions will be complex, so we believe
people need to complete the course to have
learned enough to pass the exams at the end of
each unit. These are likely to be demanding and
extensive so learners will really need to put in
the hours of education. We estimate that the
average time for an examination will be twoand-a-half
hours.
This isn’t a simple exercise. It’s a test of a
learner’s knowledge. We think it will be the vital
step that raises the level of professionalism in
fire detection and makes those working in the
field expert professionals, which should
improve the industry for everyone.
Going back to the beginning, what will the
future bring? We don’t know for certain, but it
looks like there will be a trend of moving
towards higher levels of professionalism in the
industry. If we were to look deep into that
crystal ball, it would say: “Qualifications are
the new black”. Better quality service
technicians mean a better quality of service.
*To find out when the new
booking system goes live,
sign up to receive the Fire
Industry Association’s e-mail
Newsletter at www.fia.uk.com
“While price alone might lead the way on some purchasing
decisions, that isn’t always the case. Many discerning
purchasers will look to discover if they’re receiving a good
level of service for their money”
65
www.risk-uk.com

An Exercise in Logistics
Company warehouses
are often the target for
both opportunistic
and organised crime.
While a robust and yet
fairly static approach
to security may hold
off the opportunist,
this kind of regime will
not deter organised
criminals. Catching the
thieves can be akin to
a game of ‘cat and
mouse’. Brendan
Musgrove outlines
how and why an agile
approach to security is
the best way forward
The 2017 Spring Budget Statement – the
first to be delivered by Chancellor Philip
Hammond – was met with mixed opinion in
the logistics sector, with most industry
commentators feeling pretty disappointed. As
expected, the Chancellor showed little appetite
for new spending ahead of the Brexit
negotiations, while investment promises for
transport were somewhat scarce.
Announcements focused on freezes to
Vehicle Excise Duty, the HGV Road User Levy
and fuel duty were all welcomed in equal
measure, but the Chancellor’s pledges of
money to ease motorway congestion, improve
road infrastructure and boost research in
driverless vehicles were met with a lukewarm
response. To put it bluntly, for many logistics
industry observers, the Spring Budget was
heavy on soundbites, but light on substance.
There’s little doubt that the logistics industry
faces the same high-level challenges as any
other sector – the need to cut costs, increase
efficiencies and attract the right talent to work
within. Crucially, specialists in this field must
make sure their security procurement is right
and that they partner with the very best
guarding solutions provider they can find.
There are five key steps that should form the
foundation of every security guarding solution
in the logistics space. First of all, the security
provider and client absolutely need to conduct
regular reviews. These reviews must be both
open and candid, wherein current aspects of
loss are discussed and proposals for
addressing them agreed upon.
Through a full understanding of the profile of
the losses being faced, this will enable both
parties to change the shape of security
provision and precisely target any altering
patterns or threats. After all, what might have
been fit for purpose six months ago simply may
not be so appropriate now as the nature of the
risks faced could well have changed.
Degree of flexibility
Second, the supplier then needs a level of
flexibility to put these plans into play. This
flexibility may take the shape of contract
reviews, placed periodically through the
lifecycle of the contract, wherein the provision
is formally reviewed and the contract reengineered
as appropriate. That said, the
changing nature of loss doesn’t wait for these
punctuation points in a contract’s development.
At those junctures when acute issues are
found, this flexibility may have to be achieved
at very short notice, which may mean moving
officers around the site, or indeed drafting in
additional resource with immediate effect.
Therefore, it’s also important that the solution
supplier has a deep resource of well-trained
and licensed officers to draw upon as needed.
Here, the level of training is key. Logistics is a
sector with particular requirements. Placing an
officer not versed with the right skills in such an
environment is simply unacceptable.
Third, and as stated above, while all officers
should be well-trained, there’s a time and a
place for an ‘elite’ resource to be called upon.
When actively pursuing a reduction in loss,
there are moments when specialist skills – for
instance, those demanded to undertake covert
duties or enhanced security searches – will be
needed as part of the approach that are not
economically viable to be trained into all onsite
security personnel.
Fourth, all of the security guarding elements
mentioned thus far need to be properly
integrated with technology. This may involve
the short-term tactical use of systems such as
covert cameras or vehicle trackers, or it might
focus on working together when the discussion
turns to longer-term capital projects.
Finally, the security provider needs to liaise
with the client to make recommendations
regarding working practices and operational
procedures. By using the intelligence gained
through security operations, some areas of risk
can be managed or mitigated via appropriate
process design and procedure.
Specific problems
Once these parameters have been agreed upon,
it’s then time to address specific issues and
problems. There’s an estimated 5% shrinkage
rate in warehouses and depots caused by staff
66
www.risk-uk.com

Security Services: Best Practice Casebook
thefts that can put a big dent in company
profits, and especially so in the current
economic climate wherein margins are tight.
These thefts are a mixture of opportunistic and
organised crime. Sadly, this problem shows no
sign of abating, as in recent years the tactics
being deployed by potential thieves have
become more sophisticated.
The challenge for companies is that,
inevitably, all of their staff tend to become very
familiar with the buildings in which they’re
working and the security measures already in
place. They have first-hand knowledge of how
the guarding patrols operate, where the
technology such as CCTV is located and where
valuable items of stock are resident. All of this
makes it relatively easy for a potential thief.
Many seasonal staff tend to work across
several warehouses in a region and are able to
identify those which are the least secure.
Individuals with criminal intentions will
exchange information and tactics and
sometimes work in collaboration to try and
smuggle goods out of a warehouse.
The drivers know that there are not the
resources available to search every vehicle and
just simply wait until another vehicle has been
stopped before adding ‘stolen’ items or failing
to scan certain parcels. They know that the
static security provision in a warehouse will
have no meaningful ability to catch them once
they’re through the perimeter gates.
Although vetting procedures such as
checking employment history are employed
when recruiting staff to try and avoid taking on
‘risky’ individuals, such measures will not
prevent all forms of theft. While the designs of
warehouses have evolved to feature increased
technology and multi-level access control
including turnstiles, cages and locked-off areas
for high value items, at the end of the day such
precautions can only go so far.
profiling. Within a traditional security set-up,
searches may become rather predictable in
terms of frequency and location. Therefore,
‘high impact teams’ may be employed to
augment this standard approach, arriving on
site unannounced to check areas such as
property and lockers, in addition to staff and
contractors. They’re often acting on
‘intelligence’ and tip-offs and use the latest
technology, such as body-worn video, to record
evidence vital for building a criminal case.
As well as searching vehicles as they leave
the depot, team members can deliver covert
monitoring of drivers on their rounds, often
alerted by the GPS that shows an employee has
veered off route, possibly to offload stolen
property somewhere. In short, the thieves have
no way of knowing when or where the ‘high
impact teams’ will appear. It’s this level of
unpredictability that’s key to reducing loss.
Over the past four years, the ‘high impact
teams’ deployed by Cordant Security have been
responsible for discovering over 3,000 thefts
across a range of clients that have resulted in
employees being dismissed and, in some cases,
the police making arrests. For one client, we
saved over £2 million per annum in static
security guarding costs which they have
partially reinvested in having much greater
national coverage courtesy of our teams.
It’s also a solution that will work for smallersized
businesses that often struggle with the
costs of a traditional security solution. At a
fixed price, they can procure as many high
impact searches as they need without any longterm
commitment and easily ramp this up or
down in line with changes in their business.
Brendan Musgrove: Managing
Director of Cordant Security
High impact teams
In response to this, security solutions have had
to evolve. While technology remains key and
the traditional model of having static security
teams on site is still very effective for some
organisations, we’re increasingly
recommending the use of ‘high impact teams’
to complement or even replace them.
Fundamentally, these ‘high impact teams’ are
designed to make security provision far more
dynamic in meeting the changing profile of risk,
while at the same time introducing a level of
unpredictability for the potential thief.
Such teams are trained to the highest
standards in a range of techniques such as
covert activity, search procedures and offender
“While technology remains key and the traditional model
of having static security teams on site is still very effective
for some organisations, we’re increasingly recommending
the use of ‘high impact teams’ to complement them”
67
www.risk-uk.com

Visual Hacking: Combating Mobile and
Bring Your Own Device Security Risks
appropriate security technologies suitable for
the particular device or application’.
Within the UK Government, the Security
Policy Framework states that Government
departments and agencies must adopt clear
computer screen policies in those areas where
sensitive assets are handled. The Department
of Work and Pensions and the Foreign and
Commonwealth Office have both specifically
referenced the need for protecting screens and
mention privacy filters in this context.
Securing mobile
communications is
one of the biggest
challenges
organisations are
facing today, with the
inevitable
complications of
employees often using
the same device for
both work and home
life, plus the sheer
volume and diversity
of mobile endpoints
involved: different
smart phones, tablets,
laptops and operating
systems, as well as a
multitude of Apps that
can be downloaded in
seconds. As Peter
Barker explains,
there’s another factor
that has potentially
huge risk implications:
visual hacking
Visual hacking is the term given to the
ability to view potentially sensitive or
confidential content on someone’s screen
– on a desktop monitor, laptop, tablet or smart
phone – and then use that information for
illegal or malicious purposes, such as financial
gain, identity theft or sharing company
information with a third party. Many of us will
have inadvertently seen something on someone
else’s screen that we know wasn’t for public
consumption, so it’s not difficult to imagine
how easily a ‘visual hack’ might take place.
Unlike more sophisticated forms of security
breaches, visual hacking doesn’t require any
computer expertise. With mobile devices now
incorporating increasingly clever cameras, it’s
also becoming simpler to ‘snap’ sensitive
details instead of having to rely on memory.
This is why a growing number of
organisations are adding visual hacking
prevention to their overall security strategies
and investments. Some private and public
sector organisations are mandating visual
hacking as part of their ISO 27001 processes. In
the financial services market, for example,
visual privacy is implicit within industry
guidelines issued by the Financial Conduct
Authority several years ago.
In the legal profession, the Bar Council has
issued Best Practice guidelines, stating that:
‘Where possible, computers should not be
placed so that their screens can be overlooked,
especially in public places’ and ‘You should use
Higher on the agenda
At this point, you may well be wondering why
visual hacking hasn’t been higher on the
business security agenda before now. There are
a couple of likely reasons for this.
First, while there has been considerable talk
about mobile security for several years now, in
the case of many organisations, they’ve only
recently focused the spotlight on this area,
while research highlights the fact that plenty of
companies are still lagging behind.
Second, the lack of ‘hard numbers’ around
the scale and type of security breaches is
notoriously difficult. This includes visual
hacking, which is also extremely hard to trace
(there are no viruses, Trojan horses or other
software-based threats to uncover). However, a
couple of recent studies have demonstrated the
speed and ease of a visual hack.
The Public Spaces Survey, conducted earlier
this year, also unearthed the fact that concern
about visual hacking isn’t being matched by
efforts to ensure its prevention. The study,
which was conducted by The Ponemon Institute
on behalf of 3M, involved interviewing business
people working in open spaces such as cafes
and hotel lobbies.
Nine out of ten of those people questioned
said they had caught someone looking at data
on their laptops in public. 77% of them
expressed the view that they were somewhat or
very concerned about visual hacking, with 43%
worried it could lose them their jobs, 23%
concerned about identity theft and 63% having
a gut feeling that visual hacking is a bigger
issue than most of us realise.
Despite this level of concern, more than 50%
of respondents also said that they hadn’t taken
any steps to protect sensitive company
information while working in public spaces.
68
www.risk-uk.com

Cyber Security: Visual Hacking Risk Management
Of course, laptops and other mobile devices
are not just used in public spaces – many of us
access them at the office as well. Indeed, with
the advent of ‘mobile first’ this development is
only going to increase, because that’s the
concept of having one handset that transfers
seamlessly from internal voice and data
networks to cellular networks.
Global Visual Hacking
The potential risk of visual hacking in open plan
offices was highlighted by the Global Visual
Hacking Experiment conducted by The
Ponemon Institute and sponsored by 3M.
Covering eight countries, among them the
UK, the Global Visual Hacking Experiment
involved a total of 157 ‘trials’ encompasing the
offices of a variety of organisations harbouring
from 25 to 100 employees. In all cases,
designated people at the participating
companies were given two days’ notice before
each trial, which involved a White Hat hacker
(complete with a valid and visible security
badge) impersonating a temporary office
worker. The total estimated time for each trial
was two hours.
The trials involved trying to obtain sensitive
or confidential information in several ways:
walking through the office looking for
information left in full view on desks,
monitoring screens and other locations such as
printers and copiers, taking a stack of business
documents labelled ‘Confidential’ from a desk
and putting them in a briefcase and using a
smart phone to take images of confidential
information displayed on computer screens. All
tasks were carried out in full view of other
office workers.
Information obtained was varied and
included personal identification information,
customer and employee details, general
business correspondence, access and log-in
credentials, confidential or classified
documents and attorney-client privileged
documents in addition to financial, accounting
and budgeting information.
While the UK’s results were often better
when compared to other countries, the
numbers are still alarmingly high, with 87% of
visual hacks successful, over half taking place
in 15 minutes or less and 44% of sensitive
information gained by viewing people’s
screens. An average of 3.1 pieces of confidential
or sensitive data were obtained per experiment,
while the visual hacker was only confronted in
39% of attempts.
Globally, where visual security practices were
in place – such as clean desk policies,
workplace monitoring and surveillance,
“Unlike more sophisticated forms of security breaches,
visual hacking doesn’t require any computer expertise.
With mobile devices now incorporating increasingly clever
cameras, it’s becoming simpler to ‘snap’ sensitive details”
bespoke training and awareness programmes
and standardised document shredding
processes – there was an average 26%
reduction in successful visual hacks.
Compared to some types of security
management, visual hacking is relatively easy,
cost-effective and quick to mitigate if the right
processes are implemented, not just on
screens, but also for paper-based information.
To reduce the paper risk, encourage staff to
clear their desks at the end of the day and lock
away any document deemed sensitive or
confidential. Check the Post Room and printer
trays to make absolutely sure documents are
not being left in full view. If not already in
place, instigate the routine shredding of key
documents and discourage any unnecessary
printing and copying of them.
Adopt the mantra of ‘Close It Down’.
Screensavers and log-in prompts after a few
minutes’ inactivity are effective and simple
ways in which to reduce the time a screen is
exposed to prying eyes.
Cultural attitude is important, too. Visual
privacy policies are more likely to be followed if
they’re mandated at the management level and
staff are educated about their personal
responsibility to improve visual privacy.
Employing privacy filters
Make screens hard to view. A very simple step
is to ensure that a given screen’s angled such
that it cannot be viewed, for instance facing a
café wall, rather than in full view of the coffee
counter queue.
Last, but not least, use privacy filters. These
can be easily slipped on and off screens of all
kinds and prevent on-screen data from being
viewable except straight on and at close range.
Someone taking a sideways glance or who may
be several feet behind the screen will witness
only a blank image.
Given that these are all very achievable
preventative steps to take, and that visual
hacking is potentially a very real risk for UK
organisations in this day and age, it makes
perfect sense for companies to include them
within overall security practices.
While visual hacking might only be one of
many tools in the hackers’ current armoury, it’s
also one that can be practically locked down
more easily than others. Worth bearing in mind.
Peter Barker: EMEA Market
Development Manager
(Display Materials and
Systems Division) at 3M
69
www.risk-uk.com

Raising Standards: A Commitment to
Learning in the Security Business Sector
future. Indeed, both are absolutely essential
when it comes to raising standards and quality
across the industry.
As the management
team resident at any
leading business will
readily tell you, a
company’s people are
the key to its success,
both in the here and
now and, indeed, the
future. This is
particularly true of the
security guarding
sector where
harnessing the
‘people factor’ has
been something of a
constant challenge.
Duaine Taylor
searches for a longterm
solution
Motivating and engaging security staff –
and making them feel a valued part of
the host organisation – is absolutely
vital, but in a general environment where their
role and importance is being steadily
undermined by a host of factors, and margins
remain under pressure, it’s beholden upon us
to think more imaginatively about how we
retain and invest in a quality workforce.
There’s not one single reason that has
brought about this situation, but rather a
combination of factors. What’s important,
however, is to instil security officers, clients and
the public at large with greater confidence in
what it is that we do. Part of the answer here
focuses squarely on promoting security
guarding not just as a temporary ‘make do’ job
until something better comes along, but as
more of a career and one with real prospects of
personal and professional development.
Thankfully, there are signs that this shift in
mindset is already starting to take hold.
Employee surveys suggest that there’s now a
renewed enthusiasm for the role of ‘security
officer’, with those working on the front line
having career ambitions that deserve to be
nurtured and developed. We want to retain
these individuals, give them the skills to
progress and, in doing so, shape a better longterm
future for the business sector as a whole.
Let’s be clear. Learning and development for
security officers is – and will continue to be – a
key driver for change both now and in the
Taking back control
Learning and development is an area that has
generated considerable debate. Most
commentators in our sphere are agreed that, to
raise standards, it’s essential to better train the
men and women resident in security teams.
Licensing thanks to the Security Industry
Authority was (and is) part of this quality drive,
but progress has been hampered somewhat by
a number of instances where external training
providers have been shown not to be delivering
the mandatory training required for a licence to
be granted or renewed.
At this point, I should stress that this isn’t
our own experience. Indeed, we’ve worked hard
with our training partners to ensure that all of
our security officers are fully-equipped for the
role for which they’re employed. However, such
episodes have served to knock confidence in
the licensing regime, arguably so to the point of
de-valuing the licence itself.
Perception is a big part of the problem. For
security companies to be truly accountable,
there’s a strong argument for training their
officers in-house. Real quality, it could be said,
is best delivered by maintaining thorough
control of the ‘product’. It was with this very
thought in mind that we set about creating our
own dedicated learning and development
business some 18 months ago.
The culmination of our thinking and analysis
of future needs has led to the opening of The
Axis Academy – a new training business which
sits within the Axis Group. By setting up our
own regulated training operation, we believe
that we’re reducing risk and re-claiming that
‘confidence’ for our employees and customers.
Bespoke learning
The Axis Academy is the cornerstone of the Axis
Group’s broader people strategy. Its
fundamental purpose is to provide the right
learning and development opportunities for
employees of the businesses which form the
Axis Group, including Axis Security (our security
guarding business) and Acuity, which delivers
bespoke and specialist Front of House services.
The key benefit of having our own training
business as part of the Axis Group is that we’re
70
www.risk-uk.com

Training and Career Development
able to tailor our training courses to the specific
needs of the learner, building the course
content within the context of the environment
in which they operate on a daily basis.
Prior to joining the Axis Group, I was a
commercial trainer delivering safety, security
and medical training to individuals working
within the security business sector. I saw firsthand
how the content of these courses had to
be necessarily ‘generic’, because the courses
themselves had to cater for a diverse number of
people employed in an equally diverse range of
roles. While such training is useful up to a
point, it cannot be said to be raising standards
in the truest sense of the phrase.
Our approach is different. We recognise that,
by tailoring each course and including realistic
scenarios and Case Studies that are appropriate
to a specific role, we’re able to make the
learning experience far more engaging.
Delegates are being trained by people who
truly understand what it is they do and the
environments they’re confronted by each day
when on duty. By making the content more
‘relevant’, we will generate better learning
outcomes and, in doing so, raise standards.
Devising new training
It isn’t just in security training that we can
enhance the content. We’ve found that even in
First Aid, fire and other areas of Health and
Safety, we now have a better understanding of
what delegates need to learn.
We’ve also been able to create new training
courses which were not previously available
among the ‘traditional’ learning providers. We
had a particular business need, for example, to
provide special Bedwatch training.
As a regulated provider, we’ve worked with
the NHS and Andy McCormack, an expert and
well-recognised trainer within this field, to
devise our own four-day instruction course. This
course doesn’t simply cover the ‘basics’, but
goes into the detail of mental health awareness
and conflict resolution training, which includes
the common causes of conflict when dealing
with the elderly, people with dementia, delirium
or learning difficulties and the relevant physical
intervention skills that may be required.
We’ve used real historic data to create actual
scenarios and profiles of people our security
officers might encounter in a typical healthcare
environment. This wasn’t about ticking a box.
Rather, it’s about about taking training to a
higher level.
Ongoing training in security is now a key part
of the job. Most security officers request
opportunities to expand their skill sets. Our aim
is to create a true learning culture across the
“Ongoing training in security is now a key part of the job.
Most security officers request opportunities to expand
their skill sets. Our aim is to create a true learning culture”
Axis Group. For Axis Security, this means giving
our employees the right training at the right
time and delivering it in such a way that it’s as
convenient and accessible as possible.
Identifying what learning and development is
required is fundamental to raising standards
and supporting employees. For every new
employee we conduct a training needs analysis
as standard, but it doesn’t stop there.
We have ‘training champions’ who carry out
this analysis and work with the line managers
to identify areas of strength and weakness and
devise a training pathway for each employee.
They also work closely with the operational
management teams to identify and reduce risk
and focus on succession planning.
We’re analysing statistics from accident
reports. They may highlight spikes in assaults
or verbal abuse, for example. If so, we can
encourage our security officers on key sites to
improve their understanding and skills in
conflict management and resolution.
We also take into account the current
terrorism threat level, working with Project
Griffin’s counter-terrorism teams and the
Metropolitan Police Service to deliver further
training where it’s needed (for example, we
conduct dedicated training around vehicle
searches). It’s important to gather insights from
across the business, our customers and
relevant law enforcement agencies in order to
provide the very best learning solutions.
Adopting a blended approach
To make learning and development as
accessible as possible we’re taking a blended
approach, harnessing technology where
appropriate. We ensure that all licence-linked
training, and courses such as First Aid, are
delivered face-to-face to maintain standards.
This is complemented by further e-learning.
We also encourage our security officers to
embark on regular refresher training. Webinars
will also be featuring as they offer a very
convenient form of learning experience when
used for appropriate topics.
There’s a balancing act to be struck with all
training. At one level, it must meet the
contractual requirements of the customer and
the Regulator. At another, training needs to go
beyond the tick-box with a view to developing
individuals and equipping them with the skills
they need to further their careers.
Duaine Taylor: Head of
Learning and Development at
the Axis Group
71
www.risk-uk.com

Risk in Action
Business process
enhanced at Coventry
University courtesy of
Traka’s key input
Coventry University is using
Traka’s state-of-the-art
intelligent key management
solution to add value and
establish a sophisticated
business process for staff
and contractors working
across its multi-site facilities
on a 24/7 basis.
Control over keys and access cards for technicians and contractors alike
ensures that access for vehicles and to sensitive areas (including the
communications server room) is only granted to authorised personnel, as is the
case for roof access, associated PPE equipment and fire and security alarms.
A highly-developed e-mail system created within Traka’s specialist software
presents live reports and instant notifications along with a complete audit trail
capability, including attendance and curfew notifications and even illegal
handover notifications, all of which adds to the accountability of staff,
technicians and contractors.
Nigel Young, building services and contractors manager for the university,
explained to Risk UK: “With over 1,400 different contractors working across our
sites, we needed a system that could help keep track of keys and cards and
enable us to know who’s on what site at any given time. Traka’s solution allows
us to achieve these objectives and more. With the real-time e-mail system we
can monitor usage and instantly keep control of keys and access. From a
management perspective, it also improves our efficiencies and professional
response times. We can use it as a KPI support tool where we have emergency
response requirements within contracts.”
Wayne Kynaston, education market development manager for Traka, added:
“We’re delighted to see the system working so effectively for this university. As
Coventry University’s campus sites grow, we look forward to expanding the
operation and increasing our support still further.”
Anvil announces partnership with
Airbnb designed to safeguard
corporate business travellers
Anvil, the travel and operational risk company,
has connected its Employee Travel Monitoring
System (ETMS) with short-term rental giant
Airbnb. This direct connection will significantly
ease the booking burden and enable
organisations to maintain their Duty of Care
requirements for corporate travellers now
wishing to use Airbnb as a business travel
accommodation provider.
The shared space rental economy is growing
in popularity. Many individuals are now making
use of these short-term rental options outside
of work, but are then restricted to more
traditional options when it comes to bespoke
business travel. The benefits of using such
services are clear: more relaxed and homely
surroundings for the business traveller
combined with reduced costs for the
organisation. It’s therefore becoming a more
appealing option for all concerned.
As corporate travellers continue to search for
a temporary ‘home-away-from-home’ while
they’re on a business trip, their organisations
still need to ensure that they’re able to track,
locate and communicate with them in order to
provide the appropriate levels of Duty of Care.
This latest development at Anvil allows clients
to do exactly that.
Multitone solution chosen by
Canary Wharf Group for effective
communications management in
retail zones
Multitone Electronics plc’s Mall Call
communications system has been chosen by
Canary Wharf Group for its retail facilities. The
flexibility, reliability and security of Mall Call is
perfectly suited to the needs of a large retail
management team.
The scope of communications requirements
at Canary Wharf is vast, from everyday
planning messages (such as for opening times
or maintenance) through to dealing with
shoplifters or even an emergency and
evacuation scenario. Mall Call enables the
estate’s management team to instantly
communicate with the security teams and
retail tenants when required.
Based on Multitone’s powerful i-Message
platform, Mall Call is designed to provide high
levels of communications availability to all
relevant teams, with a tailored interface for
the bespoke requirements of the specific
applications and organisations using it.
Mall Call employs a robust and seamless
touchscreen interface which can be used on
any suitable smart device (including a smart
watch). The whole system is hosted on a
secure fixed and wireless system at Canary
Wharf for full control of communications.
With Phase One of the project underway,
Multitone is working closely with the team at
Canary Wharf Group to investigate potential
ways of expanding the project in the future.
72
www.risk-uk.com

Risk in Action
Chubb secures major contract with
Charnwood Borough Council in bid
to protect the vulnerable
Chubb Fire & Security’s Community Care
business has won a major new service and
maintenance contract to help protect more
than 2,500 elderly and vulnerable residents
on behalf of Charnwood Borough Council in
northern Leicestershire.
The contract requires the maintenance of
third party telecare systems across the
Borough’s assisted living and sheltered
housing accommodation. Systems include
assisted living and carephone solutions with
devices such as pull cords and alarm
pendants. No less than 14 sheltered housing
properties are included in the contract, as
well as more than 1,000 carephones within
the Council’s wider portfolio.
Telecare is the term for offering remote
care of elderly and physically less able
people, providing the care and reassurance
needed to allow them to remain resident in
their own homes. The use of sensors may be
part of a package which can provide support
for people with illnesses such as dementia,
or those at risk of falling.
Most telecare mitigates harm by reacting
to untoward events and raising a help
response quickly. Some telecare solutions,
such as safety confirmation and lifestyle
monitoring, have a preventative function in
that a deterioration in the telecare user’s
well-being can be spotted at an early stage.
In a competitive tender involving six
companies, suppliers had to demonstrate
their expertise and capacity to adhere to
strict Key Performance Indicators regarding
maintenance response times.
Sally Ramalho, principal officer for
supported housing at Charnwood Borough
Council, said: “Chubb has successfully
delivered on everything that was set out in
the tender process. We have regular
meetings where maintenance response
times are openly discussed and any possible
improvements are suggested.”
ESG signs compliance consultancy
agreement with Royal Albert Hall
SOCOTEC company Environmental Services Group
(ESG) – a leading provider of testing, inspection
and compliance services offering comprehensive
solutions for the infrastructure, built environment
and energy and waste sectors – has been selected
to work with the Royal Albert Hall. The new
agreement represents an exciting opportunity for
ESG to demonstrate its extensive capabilities
within such a historic and iconic building.
Since the Royal Albert Hall’s official opening by
Queen Victoria in 1871, the world’s leading artists
from many performance genres have appeared on
its stage and it has become one of the UK’s most
treasured and distinctive buildings. The location of
some of the most notable events in British culture, each year the building hosts
more than 390 shows in the main auditorium, including classical, rock and pop
concerts, ballet, opera, film screenings with live orchestras, sports, award
ceremonies, school and community events, charity performances and
banquets. A further 400 events are held each year in the building’s nonauditorium
spaces.
The agreement with ESG was formed as a result of the company’s proven
technical expertise encompassed by a wide-ranging resource pool of flexible
working staff, as well as an internal IT team that’s able to develop the ESGi
online client portal for convenient access to client reports.
Indeed, ESG can guarantee that the Royal Albert Hall will receive a coordinated
service that has the potential to extend beyond the length and
breadth of the current contract agreement.
Nick Harper, operations director for built environment services at ESG,
informed Risk UK: “We’re very proud to support this prestigious building.”
Advanced fire panels protect
Liberty Stadium in Swansea
The Liberty Stadium, home of Premier
League football club Swansea City and
Guinness Pro14 rugby union side
Ospreys, is being protected by
intelligent fire panels from Advanced.
Opened in 2005, the 20,750-capacity
stadium was the first venue in Wales to
host Premier League football and is the
country’s third largest. Having played
host to international football matches, rugby and high-profile concerts – with
Take That scheduled to appear at the venue on 22 October – it has become one
of the most recognisable stadiums in the UK.
The new Advanced MxPro 5 fire panels were supplied by Discount Fire
Supplies and installed by Kelden Fire and Security, both long-time Advanced
partners. Covering the entire stadium including all public and back of house
areas, the installation is comprised of six MxPro 5 panels linked by faulttolerant
network cards and supplemented by two touchpad display terminals.
Lee Kellaway, director of Kelden Fire and Security, commented: “The system
has been installed in all of the open concourse areas of the stadium which are
regularly used by sports fans, so on that basis it’s hugely important the fire
system is always kept up-to-date.”
MxPro offers customers a choice of two panel ranges, four detector protocols
and a completely open installer network that enjoys free training and support.
Photograph: Alexander Ridler
73
www.risk-uk.com

Technology in Focus
Gallagher Security teams with EyeLynx to add Full-HD VMS
solution for Command Centre integrations
Gallagher Security has extended the range of video management systems
(VMS) which can integrate into its ubiquitous access and control solution.
EyeLynx has now developed a plug-in to integrate its SharpView NVR with the
Gallagher Command Centre.
Specifically, this integration allows security managers operating a Gallagher
Command Centre for site control to view the high-end recording capabilities of
SharpView all in one place.
Security operators can respond swiftly and appropriately to any security
threats through the real-time display of outputs from complementary security
and site management solutions
defined uniquely for their site.
SharpView offers full-resolution
recording and remote monitoring
from an unlimited number of HD
CCTV cameras. It’s in use at highsecurity
water, utilities and
education sites and is praised by the
Metropolitan Police Service.
www.eyelynx.com
OPTEX Europe issues upgraded
version of VX Shield sensor
OPTEX Europe has launched an enhanced
version of its best-selling sensor across
Europe, namely the VX Shield, with a new
housing design and features that make it
even easier to install.
The outdoor intrusion detector, which
provides 12 metre x 90 degree detection
coverage, now includes a rotation lock to
make it easier to open/close the cover.
Sensor adjustment components are also
identified in blue to make it obvious which
parts allow manipulation of the sensor
detection area. This renders the sensor
easier to adjust. A spirit level has also been
incorporated, while an automatic ‘walk test’
mode kick-starts upon closing the cover.
www.optex-europe.com
B-Cam’s Compact camera range
packs power into small frame
B-Cam – a leading supplier of body-worn
security cameras for the military, Government,
police and security solutions providers around
the world – has just unveiled its new Compact
camera as the latest product in the company’s
range of surveillance systems.
The Compact model packs plenty of power
into its 110 mm by 60 mm frame, with over
eight hours of continuous recording and the
ability for end users to record in 480p, 720p
(HD), 1080p (FHD) or 2000p (2K resolution).
Compact cameras are capable of both low-light and infrared recording, and
are supplied with a rear 2” configurable display screen. The units are
waterproof and boast a memory of up to 64 GB.
Impressively, these new cameras weigh just 170g. That’s less than half a
small loaf of bread.
B-Cam is at the forefront of delivering body-worn camera solutions to police
services, operatives in the National Health Service, shopping centres, football
clubs and security-related events globally where high quality audio and video
recordings are captured and used to facilitate evidence management
procedures during criminal and/or anti-social incidents.
Herman Vermaak, managing director of B-Cam, informed Risk UK: “B-Cam is
all about trying to support the people who help to keep us safe and secure. The
B-Cam Compact affords security professionals the surveillance capabilities they
need in a package that will not weigh them down. The Compact camera is a
highly visible visual deterrent to potential trouble-makers.”
With a configurable display screen and different resolution options, the B-
Cam Compact affords end users plenty of operational options.
Vermaak concluded: “The B-Cam Compact may be small, but it’s capable of
powerful things.”
www.b-cam.net
Invixium integrates with Paxton’s
established Net2 Access Control
Paxton has announced the integration of its
networked access control system, Net2, with
Invixium’s biometric software, designated IXM
WEB. The integration allows for real-time
synchronisation between the two applications,
removing the need to enter user data in two
places and dramatically reducing set-up time.
The integration provides customers with the
benefit of expanding their access control offer
with a biometric solution. From installation to
adding new users, the Net2 and IXM WEB
integration has been carefully scripted.
www.paxton.co.uk
74
www.risk-uk.com

Technology in Focus
Ocucon’s surveillance technology
set to “revolutionise” fight against
criminals targeting UK businesses
“Groundbreaking” surveillance technology is
set to “revolutionise” the ability of UK
businesses to defend against fraudulent cases
of slips, trips and falls which are currently
estimated to cost more than £800 million per
annum. The “world’s first” Video Surveillance
as a Service (VSaaS) system – designated
Ocucon – will provide unlimited storage for
unlimited cameras within the cloud.
Launched in the UK in partnership with
Google Cloud, the new technology will remove
physical limitations on the amount of
surveillance footage an organisation can save.
Delivering a cloud-based storage and
retrieval platform, Ocucon combines intelligent
data analytics with the facility to store, analyse
and retrieve video surveillance footage from
within the Ocucon portal.
Ocucon’s co-founder Gary Trotter (pictured)
commented: “Providing organisations with the
flexibility to store uncapped amounts of data
for as long as required will revolutionise the
way in which businesses defend themselves
against wrongful allegations.”
www.ocucon.com
Induction-based mechatronic keys
signal further technological
innovation from LOCKEN
LOCKEN’s permanent quest for innovation has
been an important factor in the company
leading the way for smart digital keys, with
over 150,000 buildings equipped throughout
Europe. Now, the business has taken a further
significant step forwards with a new solution
based on magnetic induction.
Central to this new process, LOCKEN
combines the advantages of a traditional
mechanical lock with a state-of-the-art
electronic solution to offer what it calls “an
unprecedented standard” of reliability.
In this new mechatronic solution, the
information is exchanged between the key and
the cylinder by magnetic induction rather than
an electrical contact. This has two major
benefits. First, it allows for much smoother
Harnessing radar technology
for security surveillance
addressed by 360 Vision
Technology and Navtech Radar
Harbouring a strong emphasis on
technical innovation and design, CCTV
solutions manufacturer 360 Vision
Technology has partnered with Navtech
Radar to create effective surveillance
camera solutions for wide area security
monitoring and intruder detection.
Perfect for many electronic
surveillance applications, radar
technology is often thought to be the
preserve of only airports and ports, but
the advantages of radar can be used
across a wide variety of security
surveillance applications.
Radar operates using the same
principles as echolocation – the same
system that bats and dolphins use to
navigate with – by emitting sounds that
bounce off nearby objects. Based on the
volume of the sounds that return and
the time it takes, systems are able to
produce a map of their environment.
Radar can track multiple objects (up to 40
in the case of 360 Vision Technology’s
Predator Radar ‘all-in-one’ wide area PTZ
camera). Its sophisticated on-board software
will identity target objects and continue to
track them until they leave the monitored
area (or beyond if required). This alerts CCTV
operators to a developing situation and
identifies the location of given objects.
www.360visiontechnology.com
use by opening the lock almost
instantaneously, because the
information is exchanged
between the key and the cylinder
in fewer than 80 milliseconds (ie
the time it takes a regular key to
recognise a mechanical cylinder).
Second, all communication
between the key and the cylinder
is contact-free, so it’s not
disrupted by problems due to rust, wear or the
presence of dust in the cylinder. Consequently,
the reliability of the locks is “unmatched”.
A Bluetooth module means the mechatronic
key communicates with the end user’s smart
phone using the MyLocken App. In this case,
it’s capable of offering centralised control and
case-by-case, real-time access control,
reaching standards of security usually only
available from online access control systems.
www.locken.eu
75
www.risk-uk.com

National Association for
Healthcare Security
Annual Conference and Exhibition
November 9th, Birmingham
PLATINUM SPONSOR B-CAM
Organisers AllSecurityEvents.com
“Protecting the Million”
This year, the National Association for Healthcare
Security Annual Conference moves to Birmingham
at a cool, contemporary venue, minutes from New
Street Station.
The Conference, supported by our Platinum
Sponsor, body-worn camera specialists, B-CAM
will include a leading security speakers and subject
matter experts, including
• Philip Ingram MBE – ex senior British
Intelligence officer, media commentator and
writer
• Tony Porter – the Surveillance Camera
Commissioner
NAHS Awards
#NAHS17 will also feature our new awards,
recognising those who have made a significant
contribution to healthcare security - for details on
how to enter contact hello@allsecurityevents.com
We thank our sponsors and exhibitors for their
support, helping NAHS provide a safe and secure
environment for staff and patients in the healthcare
sector.
Exhibitors include
B-Cam
Carlisle Support
Services
Corps Security
Deister
Gunnebo
Paxton
SkyGuard
Volunteering Values
Book for #NAHS17 here
https://goo.gl/EH9SHM
Media Partners

Appointments
Tim Briggs-Mould
NG Bailey’s IT Services
division has appointed
Ministry of Defence (MoD)
veteran Tim Briggs-Mould
to the position of defence
operations director to
oversee the firm’s existing
defence contracts.
Having served in the
Royal Navy for 37 years, Briggs-Mould joins the
business from the MoD where he has spent the
last five years working as head of the British
Forces’ Cyprus CIS branch and also as head of
information systems and services in Cyprus.
An experienced communications specialist in
the maritime field, Briggs-Mould is well versed
in the delivery and maintenance of IT services
and infrastructure, having overseen the CIS
transformation of Cyprus into what is now a
modern, capable and versatile hub for
operations in the Levant.
“NG Bailey’s IT Services division harbours
over a decade’s worth of specialist experience
in delivering structured cabling contracts to the
defence industry and continues to play a critical
role in the sector’s digital transformation,”
commented Briggs-Mould. “Few IT services
firms can claim to have over 200 engineers
actively supporting current defence contracts.
I’m very excited to be joining a business that’s
so engaged in my specialist sector.”
Briggs-Mould will report directly to Kelly
Tedesco, business development director for IT
Services, who stated: “Digital transformation in
the defence sector remains a key growth area
for us. Providing effective IT services to this
sector requires a depth of knowledge and
awareness that only a defence specialist can
deliver. Tim’s experience will help us to ensure
that we remain at the forefront of this sector.”
Graham Lowe
Life safety solutions manufacturer Hochiki
Europe (UK) has appointed Graham Lowe as
its new managing director. Lowe – who
previously held the position of sales director –
has worked for the business for more than 20
years and, in total, has built up four decades
of experience within the life safety industry.
Lowe’s appointment is announced in the
wake of a successful financial year at Hochiki
Europe, with the business celebrating a record
annual turnover for 2016-2017.
Lowe joined Hochiki Europe in 1996 as
regional sales manager for the Northern
region. Throughout his career, which has been
spent in various roles within the company,
Appointments
Risk UK keeps you up-to-date with all the latest people
moves in the security, fire, IT and Government sectors
Liam Bateman
Evidence Talks, the Milton Keynes-based digital
forensic triage specialist, has made two new
appointments to strengthen the company’s
presence in the digital forensics sector. The
move sees Liam Bateman appointed as principal
forensic consultant and Laura Allen in the role
of sales consultant.
Combining a strong background in IT security
with a specialism in forensic analysis, Bateman
joins from risk management company Advanced
Discovery (previously Millnet). After more than
15 years of investigating computer crime and
performing forensic investigations at the
highest level, Bateman’s outstanding track
record combines successes in the presentation
of evidence in criminal and legal proceedings
and in leading incident response projects, as
well as in finance, sales and technology.
As principal forensic consultant, Bateman will
conduct all of the company’s forensic service
work, drive growth into the eDiscovery market
and lead Evidence Talks through the ISO 17025
process. He’ll also be involved in R&D and help
to create new product technical specifications.
Joining the business as a recent graduate in
Criminology from the University of Leicester,
Laura Allen will assist with the planning and
tactical implementation of sales and marketing
initiatives. While taking a lead in managing the
company’s digital content strategy, Allen will
also be involved in business development and
ongoing initiatives that add value for resellers.
Lowe has developed expertise in all aspects of
the life safety industry – from electrical
engineering and the design of fire detection
systems right through to specific sales and
senior management tasks.
Commenting on his appointment, Lowe
informed Risk UK: “Over the last decade,
Hochiki Europe has continued to lead the way
in the design and manufacture of innovative
life safety solutions. This last year has been an
especially exciting one for the business. We
were able to strengthen our position in the
Italian market with the acquisition of Device
and Electronic Systems (DES srl) and the
creation of Hochiki Italia. We also increased
our presence in Africa by investing in our sales
team presence in the region.”
77
www.risk-uk.com

Appointments
Tom Brookes
Tom Brookes, a senior figure within the fire sector, has
been appointed as the new chairman of the Fire &
Security Association (FSA).
Brookes harbours over 25 years’ experience within the
fire industry, having started work as a fire engineer back
in 1992. He bought Lindum Fire Services in 2002, and has
turned the business into one of the major fire detection
and alarm systems organisations in Lincolnshire.
Brookes’ career has included involvement with a range
of industry bodies. He has served as a Technical Committee member at the
British Standards Institution and as chairman of the British Fire Consortium.
Steve Martin, head of the FSA, commented: “With the fire industry currently
in the spotlight, Tom is the ideal person to ensure the FSA becomes a key
player in ensuring that standards and safety are placed at the forefront of
building development and improvement.”
Speaking about his new role at the FSA, Brookes informed Risk UK: “I’m
delighted to be taking over as chairman of the FSA at what is a very crucial time
for our industry. I aim to use my extensive experience in the fire sector to
ensure that the industry drives through improvements in the safety of both
residential and commercial buildings.”
Gary Harmer
Hikvision UK & Ireland has
appointed security
industry veteran Gary
Harmer as sales director.
Harmer brings with him a
wealth of knowledge and
expertise having held
roles in manufacturing
and engineering and
boasting over 27 years’ experience in the
sphere of security distribution.
In this new role, Harmer is heading up
Hikvision UK & Ireland’s business development
team. Overseeing the day-to-day operations of
the sales function, he’s also working closely
with Hikvision’s authorised distribution
channel, security installers and systems
integrators in addition to key end users.
Commenting on his appointment, Harmer
informed Risk UK: “As the largest security
manufacturer in the world with a vast array of
technologies currently available and many soon
to be released, I’m delighted to be joining
Hikvision’s UK & Ireland team. I’m very excited
at the prospect of working closely with our
distribution and installation partners to deliver
our Best in Class solutions.”
Jason Yang, general manager for Hikvision UK
& Ireland, added: “We’re delighted to welcome
Gary to the Hikvision team and feel that his
knowledge of the UK security industry as well
as his leadership skills will prove invaluable.”
In parallel, Louise Parsons has been
appointed as senior business bevelopment
manager for the South West of England region.
Parsons will report directly to Gary Harmer.
Morgan Vessier
Morgan Vessier has been
appointed as the new
head of risk at BNP
Paribas Leasing Solutions
UK. Within the BNP
Paribas Group, BNP
Paribas Leasing Solutions
specialises in leasing and
rental solutions for
professional equipment, offered either directly
to businesses or through its partners.
Vessier succeeds Mike Quinn, who recently
took over as head of the company’s UK
technology finance division.
Joining the BNP Paribas Group back in 2005,
Vessier has since worked across several key
business units, including BNP Paribas Personal
Finance, where he served as the head of centre
for scoring and the Turkish Economic Bank,
where he acted as director of retail and small
business risk analytics.
“Morgan’s a natural choice for this role,”
stated Jean-Michel Boyer, CEO of BNP Paribas
Leasing Solutions UK. “He brings with him a
huge depth of market knowledge and
experience and, undoubtedly, he will be a
terrific asset to our UK business.”
Rajiv Datta
Colt Technology
Services has appointed
Rajiv Datta as chief
operating officer of the
company, reporting
directly to CEO Carl
Grivner. In this new
expanded role, Datta –
who previously served
as Colt’s CTO – will now bring together Colt’s
operational and technological capabilities,
customer experience strategy and product
and innovation teams under one
organisational framework.
In his 18 months as CTO at Colt, Datta was
responsible for the development of the
company’s network technology strategy and
the creation of its next generation of
products and services, including the
evolution of an SDN-based network.
Datta has also been a key driver of Colt’s
high bandwidth strategy, enabling this
through redesigning, simplifying and
innovating the Colt IQ Network.
Prior to his time with Colt, Datta held a
number of senior positions in the telecoms
and communications infrastructure industry,
including that of chief operating officer at
AboveNet Communications.
78
www.risk-uk.com

“
You have to be here if you want
to be regarded as a key player
in the security market.
“
27,658
visitors from
116 countries
79%
of visitors come to
source new products
£20.7bn
total budget of
visitors to IFSEC 2017
Enquire about exhibiting at IFSEC 2018: ifsec.events/international
Proud to be supported by:

Best Value Security Products from Insight Security
www.insight-security.com Tel: +44 (0)1273 475500
...and
lots
more
Computer
Security
Anti-Climb Paints
& Barriers
Metal Detectors
(inc. Walkthru)
Security, Search
& Safety Mirrors
Security Screws &
Fastenings
Padlocks, Hasps
& Security Chains
Key Safes & Key
Control Products
Traffic Flow &
Management
see our
website
ACCESS CONTROL
KERI SYSTEMS UK LTD
Tel: + 44 (0) 1763 273 243
Fax: + 44 (0) 1763 274 106
Email: sales@kerisystems.co.uk
www.kerisystems.co.uk
ACCESS CONTROL
ACCESS CONTROL
ACT
ACT – Ireland, Unit C1, South City Business Park,
Tallaght, Dublin, D24 PN28.Ireland. Tel: +353 1 960 1100
ACT - United Kingdom, 601 Birchwood One, Dewhurst Road,
Warrington, WA3 7GB. Tel: +44 161 236 9488
sales@act.eu www.act.eu
ACCESS CONTROL – BARRIERS, GATES, CCTV
ABSOLUTE ACCESS
Aberford Road, Leeds, LS15 4EF
Tel: 01132 813511
E: richard.samwell@absoluteaccess.co.uk
www.absoluteaccess.co.uk
Access Control, Automatic Gates, Barriers, Blockers, CCTV
ACCESS CONTROL
COVA SECURITY GATES LTD
Bi-Folding Speed Gates, Sliding Cantilevered Gates, Road Blockers & Bollards
Consultancy, Design, Installation & Maintenance - UK Manufacturer - PAS 68
Tel: 01293 553888 Fax: 01293 611007
Email: sales@covasecuritygates.com
Web: www.covasecuritygates.com
ACCESS CONTROL & DOOR HARDWARE
ALPRO ARCHITECTURAL HARDWARE
Products include Electric Strikes, Deadlocking Bolts, Compact Shearlocks,
Waterproof Keypads, Door Closers, Deadlocks plus many more
T: 01202 676262 Fax: 01202 680101
E: info@alpro.co.uk
Web: www.alpro.co.uk
ACCESS CONTROL – SPEED GATES, BI-FOLD GATES
HTC PARKING AND SECURITY LIMITED
St. James’ Bus. Centre, Wilderspool Causeway,
Warrington Cheshire WA4 6PS
Tel 01925 552740 M: 07969 650 394
info@htcparkingandsecurity.co.uk
www.htcparkingandsecurity.co.uk
ACCESS CONTROL
INTEGRATED DESIGN LIMITED
Integrated Design Limited, Feltham Point,
Air Park Way, Feltham, Middlesex. TW13 7EQ
Tel: +44 (0) 208 890 5550
sales@idl.co.uk
www.fastlane-turnstiles.com
ACCESS CONTROL
SECURE ACCESS TECHNOLOGY LIMITED
Authorised Dealer
Tel: 0845 1 300 855 Fax: 0845 1 300 866
Email: info@secure-access.co.uk
Website: www.secure-access.co.uk
ACCESS CONTROL MANUFACTURER
NORTECH CONTROL SYSTEMS LTD.
Nortech House, William Brown Close
Llantarnam Park, Cwmbran NP44 3AB
Tel: 01633 485533
Email: sales@nortechcontrol.com
www.nortechcontrol.com
Custom Designed Equipment
• Indicator Panels
• Complex Door Interlocking
• Sequence Control
• Door Status Systems
• Panic Alarms
• Bespoke Products
www.hoyles.com
sales@hoyles.com
Tel: +44 (0)1744 886600
ACCESS CONTROL – BIOMETRICS, BARRIERS, CCTV, TURNSTILES
UKB INTERNATIONAL LTD
Planet Place, Newcastle upon Tyne
Tyne and Wear NE12 6RD
Tel: 0845 643 2122
Email: sales@ukbinternational.com
Web: www.ukbinternational.com
Hoyles are the UK’s leading supplier of
custom designed equipment for the
security and access control industry.
From simple indicator panels to
complex door interlock systems.
BUSINESS CONTINUITY
ACCESS CONTROL, INTRUSION DETECTION AND VIDEO MANAGEMENT
VANDERBILT INTERNATIONAL (UK) LTD
Suite 7, Castlegate Business Park
Caldicot, South Wales NP26 5AD UK
Main: +44 (0) 2036 300 670
email: info.uk@vanderbiltindustries.com
web: www.vanderbiltindustries.com
BUSINESS CONTINUITY MANAGEMENT
CONTINUITY FORUM
Creating Continuity ....... Building Resilience
A not-for-profit organisation providing help and support
Tel: +44(0)208 993 1599 Fax: +44(0)1886 833845
Email: membership@continuityforum.org
Web: www.continuityforum.org
www.insight-security.com Tel: +44 (0)1273 475500

CCTV
CCTV
Rapid Deployment Digital IP High Resolution CCTV
40 hour battery, Solar, Wind Turbine and Thermal Imaging
Wired or wireless communication fixed IP
CE Certified
Modicam Europe, 5 Station Road, Shepreth,
Cambridgeshire SG8 6PZ
www.modicam.com sales@modicameurope.com
CCTV SPECIALISTS
PLETTAC SECURITY LTD
Unit 39 Sir Frank Whittle Business Centre,
Great Central Way, Rugby, Warwickshire CV21 3XH
Tel: 01788 567811 Fax: 01788 544 549
Email: jackie@plettac.co.uk
www.plettac.co.uk
CONTROL ROOM & MONITORING SERVICES
CCTV POLES, COLUMNS, TOWERS AND MOUNTING PRODUCTS
ALTRON COMMUNICATIONS EQUIPMENT LTD
Tower House, Parc Hendre, Capel Hendre, Carms. SA18 3SJ
Tel: +44 (0) 1269 831431
Email: cctvsales@altron.co.uk
Web: www.altron.co.uk
CCTV
G-TEC
Gtec House, 35-37 Whitton Dene
Hounslow, Middlesex TW3 2JN
Tel: 0208 898 9500
www.gtecsecurity.co.uk
sales@gtecsecurity.co.uk
ADVANCED MONITORING SERVICES
EUROTECH MONITORING SERVICES LTD.
Specialist in:- Outsourced Control Room Facilities • Lone Worker Monitoring
• Vehicle Tracking • Message Handling
• Help Desk Facilities • Keyholding/Alarm Response
Tel: 0208 889 0475 Fax: 0208 889 6679
E-MAIL eurotech@eurotechmonitoring.net
Web: www.eurotechmonitoring.net
DISTRIBUTORS
CCTV/IP SOLUTIONS
DALLMEIER UK LTD
3 Beaufort Trade Park, Pucklechurch, Bristol BS16 9QH
Tel: +44 (0) 117 303 9 303
Fax: +44 (0) 117 303 9 302
Email: dallmeieruk@dallmeier.com
SPECIALISTS IN HD CCTV
MaxxOne
Unit A10 Pear Mill, Lower Bredbury, Stockport. SK6 2BP
Tel +44 (0)161 430 3849
www.maxxone.com
sales@onlinesecurityproducts.co.uk
www.onlinesecurityproducts.co.uk
CCTV & IP SECURITY SOLUTIONS
PANASONIC SYSTEM COMMUNICATIONS COMPANY
EUROPE
Panasonic House, Willoughby Road
Bracknell, Berkshire RG12 8FP UK
Tel: 0207 0226530
Email: info@business.panasonic.co.uk
AWARD-WINNING, LEADING GLOBAL WHOLESALE
DISTRIBUTOR OF SECURITY AND LOW VOLTAGE PRODUCTS.
ADI GLOBAL DISTRIBUTION
Distributor of electronic security systems and solutions for over 250 leading manufacturers, the company
also offers an internal technical support team, dedicated field support engineers along with a suite of
training courses and services. ADI also offers a variety of fast, reliable delivery options, including specified
time delivery, next day or collection from any one of 28 branches nationwide. Plus, with an ADI online
account, installers can order up to 7pm for next day delivery.
Tel: 0161 767 2990 Fax: 0161 767 2999 Email: sales.uk@adiglobal.com www.adiglobal.com/uk
COMMUNICATIONS & TRANSMISSION EQUIPMENT
KBC NETWORKS LTD.
Barham Court, Teston, Maidstone, Kent ME18 5BZ
www.kbcnetworks.com
Phone: 01622 618787
Fax: 020 7100 8147
Email: emeasales@kbcnetworks.com
WHY MAYFLEX? ALL TOGETHER. PRODUCTS, PARTNERS,
PEOPLE, SERVICE – MAYFLEX BRINGS IT ALL TOGETHER.
MAYFLEX
Excel House, Junction Six Industrial Park, Electric Avenue, Birmingham B6 7JJ
Tel: 0800 881 5199
Email: securitysales@mayflex.com
Web: www.mayflex.com
DIGITAL IP CCTV
SESYS LTD
High resolution ATEX certified cameras, rapid deployment
cameras and fixed IP CCTV surveillance solutions available with
wired or wireless communications.
1 Rotherbrook Court, Bedford Road, Petersfield, Hampshire, GU32 3QG
Tel +44 (0) 1730 230530 Fax +44 (0) 1730 262333
Email: info@sesys.co.uk www.sesys.co.uk
www.insight-security.com Tel: +44 (0)1273 475500

THE UK’S MOST SUCCESSFUL DISTRIBUTOR OF IP, CCTV, ACCESS
CONTROL AND INTRUDER DETECTION SOLUTIONS
NORBAIN SD LTD
210 Wharfedale Road, IQ Winnersh, Wokingham, Berkshire, RG41 5TP
Tel: 0118 912 5000 Fax: 0118 912 5001
www.norbain.com
Email: info@norbain.com
INTEGRATED SECURITY SOLUTIONS
INNER RANGE EUROPE LTD
Units 10 - 11, Theale Lakes Business Park, Moulden Way, Sulhampstead,
Reading, Berkshire RG74GB, United Kingdom
Tel: +44(0) 845 470 5000 Fax: +44(0) 845 470 5001
Email: ireurope@innerrange.co.uk
www.innerrange.com
UK LEADERS IN BIG BRAND CCTV DISTRIBUTION
SATSECURE
Hikivision & MaxxOne (logos) Authorised Dealer
Unit A10 Pear Mill, Lower Bredbury,
Stockport. SK6 2BP
Tel +44 (0)161 430 3849
www.satsecure.uk
PERIMETER PROTECTION
IDENTIFICATION
ADVANCED PRESENCE DETECTION AND SECURITY LIGHTING SYSTEMS
GJD MANUFACTURING LTD
Unit 2 Birch Business Park, Whittle Lane, Heywood, OL10 2SX
Tel: + 44 (0) 1706 363998
Fax: + 44 (0) 1706 363991
Email: info@gjd.co.uk
www.gjd.co.uk
COMPLETE SOLUTIONS FOR IDENTIFICATION
DATABAC GROUP LIMITED
1 The Ashway Centre, Elm Crescent,
Kingston upon Thames, Surrey KT2 6HH
Tel: +44 (0)20 8546 9826
Fax:+44 (0)20 8547 1026
enquiries@databac.com
INDUSTRY ORGANISATIONS
PERIMETER PROTECTION
GPS PERIMETER SYSTEMS LTD
14 Low Farm Place, Moulton Park
Northampton, NN3 6HY UK
Tel: +44(0)1604 648344 Fax: +44(0)1604 646097
E-mail: info@gpsperimeter.co.uk
Web site: www.gpsperimeter.co.uk
POWER
TRADE ASSOCIATION FOR THE PRIVATE SECURITY INDUSTRY
BRITISH SECURITY INDUSTRY ASSOCIATION
Tel: 0845 389 3889
Email: info@bsia.co.uk
Website: www.bsia.co.uk
Twitter: @thebsia
POWER SUPPLIES – DC SWITCH MODE AND AC
DYCON LTD
Unit A, Cwm Cynon Business Park, Mountain Ash, CF45 4ER
Tel: 01443 471900 Fax: 01443 479 374
Email: sales@dyconpower.com
www.dyconpower.com
THE LEADING CERTIFICATION BODY FOR THE SECURITY INDUSTRY
SSAIB
7-11 Earsdon Road, West Monkseaton
Whitley Bay, Tyne & Wear
NE25 9SX
Tel: 0191 2963242
Web: www.ssaib.org
UPS - UNINTERRUPTIBLE POWER SUPPLIES
ADEPT POWER SOLUTIONS LTD
Adept House, 65 South Way, Walworth Business Park
Andover, Hants SP10 5AF
Tel: 01264 351415 Fax: 01264 351217
Web: www.adeptpower.co.uk
E-mail: sales@adeptpower.co.uk
INTEGRATED SECURITY SOLUTIONS
SECURITY PRODUCTS AND INTEGRATED SOLUTIONS
HONEYWELL SECURITY AND FIRE
Tel: +44 (0) 844 8000 235
E-mail: securitysales@honeywell.com
UPS - UNINTERRUPTIBLE POWER SUPPLIES
UNINTERRUPTIBLE POWER SUPPLIES LTD
Woodgate, Bartley Wood Business Park
Hook, Hampshire RG27 9XA
Tel: 01256 386700 5152 e-mail:
sales@upspower.co.uk
www.upspower.co.uk
www.insight-security.com Tel: +44 (0)1273 475500

SECURITY
ANTI-CLIMB SOLUTIONS & SECURITY PRODUCT SPECIALISTS
INSIGHT SECURITY
Units 1 & 2 Cliffe Industrial Estate
Lewes, East Sussex BN8 6JL
Tel: 01273 475500
Email:info@insight-security.com
www.insight-security.com
CASH & VALUABLES IN TRANSIT
CONTRACT SECURITY SERVICES LTD
Challenger House, 125 Gunnersbury Lane, London W3 8LH
Tel: 020 8752 0160 Fax: 020 8992 9536
E: info@contractsecurity.co.uk
E: sales@contractsecurity.co.uk
Web: www.contractsecurity.co.uk
QUALITY SECURITY AND SUPPORT SERVICES
CONSTANT SECURITY SERVICES
Cliff Street, Rotherham, South Yorkshire S64 9HU
Tel: 0845 330 4400
Email: contact@constant-services.com
www.constant-services.com
ONLINE SECURITY SUPERMARKET
EBUYELECTRICAL.COM
Lincoln House,
Malcolm Street
Derby DE23 8LT
Tel: 0871 208 1187
www.ebuyelectrical.com
LIFE SAFETY EQUIPMENT
C-TEC
Challenge Way, Martland Park,
Wigan WN5 OLD United Kingdom
Tel: +44 (0) 1942 322744
Fax: +44 (0) 1942 829867
Website: www.c-tec.com
PERIMETER SECURITY
TAKEX EUROPE LTD
Aviary Court, Wade Road, Basingstoke
Hampshire RG24 8PE
Tel: +44 (0) 1256 475555
Fax: +44 (0) 1256 466268
Email: sales@takex.com
Web: www.takex.com
FENCING SPECIALISTS
J B CORRIE & CO LTD
Frenchmans Road
Petersfield, Hampshire GU32 3AP
Tel: 01730 237100
Fax: 01730 264915
email: fencing@jbcorrie.co.uk
INTRUSION DETECTION AND PERIMETER PROTECTION
OPTEX (EUROPE) LTD
Redwall® infrared and laser detectors for CCTV applications and Fiber SenSys® fibre
optic perimeter security solutions are owned by Optex. Platinum House, Unit 32B
Clivemont Road, Cordwallis Industrial Estate, Maidenhead, Berkshire, SL6 7BZ
Tel: +44 (0) 1628 631000 Fax: +44 (0) 1628 636311
Email: sales@optex-europe.com
www.optex-europe.com
SECURITY EQUIPMENT
PYRONIX LIMITED
Secure House, Braithwell Way, Hellaby,
Rotherham, South Yorkshire, S66 8QY.
Tel: +44 (0) 1709 700 100 Fax: +44 (0) 1709 701 042
www.facebook.com/Pyronix
www.linkedin.com/company/pyronix www.twitter.com/pyronix
SECURITY SYSTEMS
BOSCH SECURITY SYSTEMS LTD
PO Box 750, Uxbridge, Middlesex UB9 5ZJ
Tel: 0330 1239979
E-mail: uk.securitysystems@bosch.com
Web: uk.boschsecurity.com
INTRUDER AND FIRE PRODUCTS
CQR SECURITY
125 Pasture road, Moreton, Wirral UK CH46 4 TH
Tel: 0151 606 1000
Fax: 0151 606 1122
Email: andyw@cqr.co.uk
www.cqr.co.uk
SECURITY EQUIPMENT
CASTLE
Secure House, Braithwell Way, Hellaby,
Rotherham, South Yorkshire, S66 8QY
TEL +44 (0) 1709 700 100 FAX +44 (0) 1709 701 042
www.facebook.com/castlesecurity www.linkedin.com/company/castlesecurity
www.twitter.com/castlesecurity
SECURE CONNECTIVITY PROVIDERS
CSL
T: +44 (0)1895 474 474
sales@csldual.com
@CSLDualCom
www.csldual.com
SECURITY PRODUCTS
EATON
Eaton is one of the world’s leading manufacturers of security equipment
its Scantronic and Menvier product lines are suitable for all types of
commercial and residential installations.
Tel: 01594 545 400 Email: securitysales@eaton.com
Web: www.uk.eaton.com Twitter: @securityTP
INTRUDER ALARMS AND SECURITY MANAGEMENT SOLUTIONS
RISCO GROUP
Commerce House, Whitbrook Way, Stakehill Distribution Park, Middleton,
Manchester, M24 2SS
Tel: 0161 655 5500 Fax: 0161 655 5501
Email: sales@riscogroup.co.uk
Web: www.riscogroup.com/uk
SECURITY SYSTEMS
VICON INDUSTRIES LTD.
Brunel Way, Fareham
Hampshire, PO15 5TX
United Kingdom
www.vicon.com
www.insight-security.com Tel: +44 (0)1273 475500