Understanding the Basics of Cyber Hardening for Physical Security Systems

/

Physical security systems have been an important part of our everyday technology for a long time, and they continue to evolve. Traditional security methods have evolved over time into sophisticated digital networks that control access, monitor environments, and protect assets, utilizing advanced technology such as artificial intelligence. However, for these new systems to remain effective, they must be regularly updated. This is where cyber hardening becomes vital, with the goal of fortifying physical security systems against digital threats. 

Throughout this blog post, we will explore the fundamental principles of cyber hardening for physical security systems. This essential concept provides an understanding of how to effectively defend against cyber intrusions, as well as best practices for implementing hardening measures. 

What is Physical Security Hardening?  

Physical security hardening is the process of making systems, networks, and devices more resilient to cyber-attacks and unauthorized access. This includes strengthening communication protocols, authentication methods, and software components to defend against malicious actors. 

The Risks of Missing Proper Cyber Hardening Measures  

The purpose of security systems is to protect your assets and organization. However, without strong cyber-hardening measures, physical security systems become vulnerable to cyber-attacks and can serve as an unprotected entrance for criminals.  

Below are 5 examples of the real consequences of not implementing proper hardening measures: 

  1. Vulnerability to Cyber Attacks - Equipment may be exposed to malware, spyware, denial-of-service (DoS) attacks, or unauthorized access to sensitive data, including intellectual property. 

  2. Physical Threats - Unauthorized individuals gaining physical access to the organization, theft of valuable equipment, and even acts of vandalism and sabotage. 

  3. Regulatory Compliance - Some industries are subject to specific regulations and standards with the intention of protecting people’s privacy, security, and organizational assets. If you and/or your organization do not comply with these regulations, it can result in legal penalties.  

  4. Reputational Damage - Any security incident, particularly those involving physical security, can harm an organization's reputation and undermine the trust of its customers, partners, and stakeholders. In addition, negative publicity can be beneficial for competitors.  

  5. Safety Hazards - In some cases, inadequate security measures can pose a safety risk to employees, visitors, and the general public, interfering with emergency responses or critical industrial processes. 

5 Essential Aspects of Cyber-Hardening  

There are 5 important aspects to consider when implementing cyber-hardening controls on security systems. These 5 aspects include (1) authentication and access control, (2) encryption, (3) patch management, (4) network segmentation, and (5) incident response planning. 

  1. Authentication and Access Control: This aspect serves as the gateway to our assets, so it is critical to implement strong measures. Multi-factor authentication and additional access controls ensure that only authorized personnel have access to sensitive areas or critical systems.  

  2. Encryption: This aspect is critical for data security both in transit and at rest. There are various encryption algorithms for different protocols, but identifying and implementing strong encryption methods is critical for compliance and data security. 

  3. Patch Management: Effective patch management is critical for quickly addressing security vulnerabilities. Regular security updates and patches help mitigate potential exploits, making the system less vulnerable to cyber-attacks. 

  4. Network Segmentation: This aspect improves protection by separating security systems from other networks. This strategy helps to prevent intruders from lateral movement and limits the impact of security. This can be used to isolate the security system network and other networks within the organization. 

  5. Incident Response Planning: Developing an incident response plan entails creating strong response protocols. This plan should be tested regularly and updated as needed to ensure that cyber threats are addressed effectively while minimizing their impact on physical security systems. 

3 Best Practices to Consider Implementing   

3 additional best practices that can be implemented as part of the hardening process include (1) effective vendor management, (2) comprehensive employee awareness programs, and (3) regular security audits. 

  1. Effective Vendor Management: Choosing reputable vendors who prioritize security in their products and services can be extremely beneficial and significantly reduce the risk for your organization without requiring much additional effort "right out of the box". This can be accomplished by evaluating vendor security practices and certifications, ensuring compliance with industry standards. 

  2. Comprehensive Employee Awareness Programs: Another good practice is to provide a comprehensive awareness program for staff and employees. Human error remains one of the most serious vulnerabilities in any security industry, including physical security. Organizations that provide security training empower employees to recognize and respond to potential threats, giving them the skills they need to protect sensitive information and infrastructure. 

  3. Regular Security Audits: Conducting regular security audits is an important component of effective cyber hardening in physical security. This enables organizations to identify vulnerabilities and weaknesses in their systems and take appropriate action. To accomplish this, it is critical to employ tools, methodologies, and security professionals who can assess the effectiveness of existing security controls and identify areas for improvement. 

Cyber Hardening is a Critical Safeguarding Task 

Implementing cyber hardening in physical security systems is an important task that any organization must prioritize in order to protect its critical assets and infrastructure. With the constant evolution of cyber threats, adaptation is required to ensure ongoing protection and resilience against new vulnerabilities. Physical security cyber hardening can have a significant impact on your organization's survival, therefore ensure you take the proper precautions and measures needed to ensure your cyber hardening is up to speed.  

 Meanwhile, stay tuned for more cybersecurity-related blog posts coming soon!  

- Safeguards Consulting Cyber Security Team.  

An Update From IAPSC: EBSP 24-01 School Security

/

Our firm is proud to highlight and acknowledge an important document from our friends at the International Association of Professional Security Consultants (IAPSC).  

Our firm is proud to highlight and acknowledge an important document from our friends at the International Association of Professional Security Consultants (IAPSC).  

IAPSC recently released a vital document entitled, “Evidence Based Security Practices: The Effectiveness of School Security Measures on School Shooting Incidents” as written by Katherine L. Perez, PHD.   

If you are not familiar with IAPSC, it is one of the most well-known, respected, and recognized security consultant associations in the industry. Its overarching goal is to establish and uphold the highest industry standards for professionalism and ethical behavior, while also allowing potential clients to choose from a distinct pool of professional, ethical, and competent security consultants. Their membership process is also extremely rigorous, but becoming a member is a prestigious honor and a fantastic opportunity for any security consultant. 

However, there is more to IAPSC; in 2022, the association established the Evidence-Based Security Practices Committee (EBSP), which seeks to evaluate existing research on security, crime prevention, and other topics of interest to security and crime prevention professionals and end-users in order to advance security through various research and evidence-based practices. 

Throughout the EBSP 21-01 School Security document, leading experts in the field assess existing research on school security while also providing industry insights, limitations, recommendations, and more. One of the most discussed topics in the document is school shootings, as evidence shows that these types of incidents are unfortunately on the rise. Furthermore, firearms remain relevant as child and adolescent fatalities in the United States increase. This evidence, along with numerous other reported incidents and situations, demonstrate that as security consultants, we must be prepared for many more parents, policymakers, and officials calling for increased security measures in colleges, universities, and schools. 

Our firm strongly recommends that you read the IAPSC's evidence-based research document because its extensive research and recommendations will help those who want to better understand the impact of security measures, redirect their efforts, evaluate their efficacy, and overall improve their safety and security within a school setting. This is also an excellent resource because many other documents in the industry omit evidence from their conclusions. However, this document provides detailed evidence and reasoning to back up its findings, limitations, and recommendations. 

 

To read EBSP 21-01 School Security, visit:  

IAPSC EBSP-24-01 School Security (Perez) 

 

To learn more about IAPSC, visit:  

International Association of Professional Security Consultants: Home (iapsc.org) 

 

To learn more about EBSP, visit:  

International Association of Professional Security Consultants: Evidence-Based Security Practices Committee (EBSP) (iapsc.org) 

 

Release of the June 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the May issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. This year, we are celebrating its first anniversary and our firm’s 14th anniversary, and we would love to invite you to subscribe for free in honor of both!   

Some of the items we included in our May issue were:    

+ A client spotlight piece on Cookout.    

+ A special Memorial Day message from our firm.    

+ An exclusive article on the impact of the Mercury access controller transition by our Founder.  

+ A list of beneficial industry events, that includes events we are supporting/speaking at, as well as other events we recommend attending.    

+ Our list of useful blog articles.     

+ A selection of key industry news and updates.     

+ A quick industry tip as provided by our experts.    

If interested, please subscribe using the hyperlink included below.    

Newsletter Signup — Safeguards Consulting, Inc.    

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for my firm to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our June issue!    

Celebrating 14 Years of Visionary Leadership: A Tribute to Our Founder

/

Today, we mark a significant milestone in our company's history. It has been 14 incredible years since Safeguards Consulting was founded! This occasion is a testament to our Founder, Mark Schreiber’s, unwavering dedication, perseverance, and innovative spirit. 

Fourteen years ago, Schreiber had a vision to create a company that would seek to be its clients' most trusted advisor. Today, our firm is proud to protect our client's assets, facilities, and more through our various physical security technology consulting and design services while adhering to the highest level of integrity and professionalism. From humble beginnings to the thriving organization, we are today, Schreiber has been the driving force behind our success and teamwork. 

Over the years, he has also demonstrated exceptional leadership, guiding our company through periods of growth, change, and innovation. His ability to inspire and motivate has created a culture of collaboration, creativity, and continuous improvement. Under his guidance, we have achieved numerous milestones, including celebrating our 14th anniversary this year, our 1st newsletter anniversary of the Safeguards Consulting Chronicle, numerous new clients, as well as many other milestones.  

However, Schreiber's impact goes beyond just business accomplishments. He has created a work environment that values empathy, respect, and open communication. He has fostered a sense of community, where every team member feels valued, heard, and empowered to make a difference. In addition, in a remote environment where our entire firm works digitally apart, we still feel connected through constant communications, celebrations, and team bonding activities. Throughout the years, our team has expanded in numbers and distance, but we remain steadfast in providing excellence and becoming stronger than ever.  

As we celebrate this anniversary, we want to express our deepest gratitude to Schreiber for his tireless efforts, unwavering commitment, and infectious enthusiasm. His leadership has been instrumental in shaping our company into the trusted advisor that all our clients, partners, friends, and industry peers know today.  

Here's to many more years of innovation, growth, and success under Schreiber's visionary leadership! We are honored to work alongside them and look forward to the exciting opportunities that lie ahead. 

Our Founder's Experience as a Director at the 2024 IAPSC Conference

/

Last week, our Founder, Mark Schreiber, had the privilege of attending the 2024 IAPSC Conference in Jacksonville, Florida. As a respected member of the security industry, he was thrilled to connect with fellow professionals, learn from industry experts, and share his own insights on the latest trends and best practices. 

In addition, Schreiber also attended the conference as an elected Director of IAPSC. Throughout the conference, he worked on collaborating with other board members to plan the future growth of the association. As a result, our team is beyond excited to see what new changes await IAPSC and the impact the board will create this year!  

The conference was a true success, with a packed agenda that featured informative sessions, engaging discussions, and valuable networking opportunities. Schreiber was honored to be a part of the event, alongside other esteemed professionals in the field. 

Following his return, Schreiber stated, "It is an honor and privilege to have been selected to be on the IAPSC Board of Directors in 2024 as a way of transcending our industry and the many organizations that benefit from IAPSC members. I look forward to enabling strategic decisions for the organization so that it may continue growing and becoming more effective in supporting its members. Additionally, it was very encouraging to attend the 2024 conference and witness the excitement and energy from the current leadership and members and to reaffirm the vast knowledge and experience the IAPSC members represent. I feel that this was a milestone event that promises great things for the organization in the coming years".  

One of the highlights of the conference was the opportunity to share knowledge and experiences with like-minded individuals. Schreiber was proud to contribute to the discussions, sharing his expertise and gaining valuable insights from others. The exchange of ideas and perspectives was enriching. The security industry is in good hands with such a dedicated and passionate community. 

The IAPSC team also deserves a huge thank you for organizing such a fantastic event. The conference was meticulously planned, and every detail was carefully considered to ensure a seamless and enjoyable experience for all attendees. 

As we look back on the conference, our team is already excited about next year's event, and we cannot wait to reconnect with old friends, make new connections, and continue to learn from the best in the industry!  

Release of the May 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the April issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. We started the newsletter last January and now reaches security professionals around the globe in celebration of our firm’s 14th anniversary, we would love to invite you to subscribe for free!  

Our newsletter covers numerous industry events, news, and updates. Some of the items we included in our April issue were:    

+ A client spotlight piece on Mycoworks.    

+ A special 14th-anniversary message from our firm.    

+ An exclusive article on Devaluing Skills in the Industry as observed by our Founder.  

+ A list of beneficial industry events, that includes events we are supporting/speaking at, as well as other events we recommend attending.    

+ Our list of useful blog articles.     

+ A selection of key industry news and updates.     

+ A quick industry tip as provided by our experts.    

If interested, please subscribe using the hyperlink included below.    

Newsletter Signup — Safeguards Consulting, Inc.    

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for my firm to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our May issue!    

Release of the April 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the March issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle.  

 Our team started the newsletter in January 2023 and now reaches security professionals around the globe, and our firm would love to invite you to subscribe in honor of our firm’s 14th anniversary!    

 Our newsletter covers numerous industry events, news, and updates. Some of the items we included in our March issue were:     

+ An industry friend spotlight piece about ASIS International.      

+ An exclusive article on “Is Your Security Standardized?”.   

+ A list of beneficial industry events, that includes events we are supporting/speaking at as well as other events we recommend attending.     

+ Our list of useful blog articles.      

+ A selection of key industry news and updates.      

+ A quick industry tip as provided by our experts.     

If interested, please subscribe using the hyperlink included below.     

Newsletter Signup — Safeguards Consulting, Inc.  

 If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for Safeguards Consulting, Inc. to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our April issue!     

Schreiber Aids ASIS Technical Committee with The New ASIS International Standard

/

Safeguards Consulting, Inc. is pleased to announce that the ASIS International standard has been revised and is now available to read! The document is titled "Introducing the ASIS Security Risk Assessment Standard: A Comprehensive Framework for Assessing Security Risks".  

The new standard's goal is to help you measure the effectiveness of each component of your facility's security plan, ensuring that your plan includes a robust process for identifying, analyzing, and evaluating risks to your organization and its assets.  

Our Founder, Mark Schreiber, also had the honor of serving on the ASIS Technical Committee, which helped to revise and design the new standard. 

After its publication, Schreiber stated, "It was an honor to serve on the ASIS Technical Committee that revised this standard to make it more effective for use by professional practitioners. I hope that the industry finds this update useful when implementing the ASIS International standard in their security plans."  

Overall, we are proud of the hard work that went into revising the standard, and we are excited to see the difference it makes in facility security plans around the world!  

To learn more about the new Security Risk Assessment Standard (ASIS SRA-2024), visit:

Introducing the ASIS Security Risk Assessment Standard: A Comprehensive Framework for Assessing Security Risks (asisonline.org)

To download the new Security Risk Assessment Standard (ASIS SRA-2024) eBook, visit:

Security Risk Assessment Standard (ASIS SRA-2024) - eBook (asisonline.org).  

To obtain a soft copy of the new Security Risk Assessment Standard (ASIS SRA-2024), visit:

Security Risk Assessment Standard (ASIS SRA-2024) (asisonline.org).  

Celebrating 14 Years of Safeguards Consulting: A Journey of Physical Security Excellence

/

Sunday will mark a significant milestone for Safeguards Consulting, Inc. as we proudly celebrate 14 years of delivering physical security technology consulting and design services and remaining our clients’ most trusted advisor. Since our founding on April 7th, 2010, we have remained fully committed to protecting our clients and their employees, valuable assets, organization, facilities, and more.  

Over the past 14 years, we have witnessed the ever-evolving threat landscape and have continually adapted our strategies to stay ahead of the curve. Our dedicated team of experts has worked tirelessly to provide tailored physical security and design services to organizations of all sizes and industries, ensuring that they remain resilient and prepared in the face of emerging threats.  

As we reflect on this journey, we extend our deepest gratitude to our clients, partners, and team members who have been vital to our success. Your trust, support, and collaboration have been the driving force behind our growth and achievements. 

Looking ahead, we remain steadfast in our commitment to excellence, innovation, and customer satisfaction. With each passing year, we strive to elevate our standards and empower businesses to navigate the complexities of the digital world with confidence. 

In celebration of our anniversary, our Founder, Mark Schreiber has provided a special message, “It is amazing to think that 14 years have passed since Safeguards Consulting was incorporated. Although much time has transpired, my gratitude and appreciation for my family, employees, clients, partners, industry friends, and supporters has remained constant.  I cannot express how grateful I am for each and every one that has been part of this journey.  

As I step back and reflect, it is truly a blessing how much the firm has grown over the years. We now serve clients all across the globe and are constantly expanding our portfolio as their trusted advisor. I am truly grateful that our firm has the opportunity to serve our clients and protect their organization's people and assets.  

Thank you again for allowing us to live up to the role of your trusted advisor over the past 14 years. I am confident that we will continue to exceed expectations, grow, and further establish ourselves as an international resource for even more great organizations".   

Thank you again for 14 remarkable years. We strive to have many more years of success and growth while also remaining your most trusted advisor.  

Sincerely,  

The Safeguards Consulting Team 

Release of the March 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the February issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. Our team started the newsletter in January 2023 and now reaches security professionals around the globe, and our firm would love to invite you to subscribe!   

Our newsletter covers numerous industry events, news, and updates. Some of the items we included in our February issue were:    

+ A client spotlight piece about Clemson University.     

+ An exclusive article on “The Best of Breed vs. Service Support”.  

+ A list of beneficial industry events, that includes events we are supporting/speaking at as well as other events we recommend attending.    

+ Our list of useful blog articles.     

+ A selection of key industry news and updates.     

+ A quick industry tip as provided by our experts.    

If interested, please subscribe using the hyperlink included below.    

Newsletter Signup — Safeguards Consulting, Inc. 

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for Safeguards Consulting, Inc. to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our March issue!    

Release of the February 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the January issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. We started the newsletter in January 2023 and now reaches security professionals around the globe, and our firm would love to invite you to subscribe!   

Our newsletter covers numerous industry events, news, and updates. Some of the items we included in our January issue were:    

+ A client spotlight piece on Laurens Electric Cooperative.    

+ A special message celebrating our newsletter’s first anniversary as well as an exclusive New Year's message.   

+ An exclusive article on “The Demand for Holistic Security Risk”.  

+ A list of beneficial industry events, that includes events we are supporting/speaking at as well as other events we recommend attending.    

+ Our list of useful blog articles.     

+ A selection of key industry news and updates.     

+ A quick industry tip as provided by our experts.    

If interested, please subscribe using the hyperlink included below.    

Newsletter Signup — Safeguards Consulting, Inc. 

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for Safeguards Consulting, Inc. to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our February issue!    

Schreiber’s Presentation at the 2024 US CPTED Association’s Second Annual Conference

/ University of South Florida Marshall Student Center /

We are proud to share that the 2024 US CPTED Association’s Second Annual Conference was a success! The conference was held at the University of South Florida Marshall Student Center from February 7 to February 9th. The US CPTED Association is a national network that focuses on supporting Crime Prevention Through Environmental Design (CPTED) practitioners as well as creating educational and networking opportunities to further support those within the industry and the spread of CPTED practices. CPTED as defined by the association is, “the proper design and effective use of the built environment can lead to a reduction in incidents and fear of crime and improvement in quality of life”. Safeguards Consulting is a proud supporter of the association. In addition, our firm is also proud that we can offer CPTED services to our clients. This service offering not only allows us to be “ahead of the game” in our industry but it also allows us to better serve our clients and their needs. If you are interested in learning more feel free to contact us via our “Contact” page or visit the US CPTED Association’s website as found at the bottom of our post.  

Overall, there was an excellent turnout this year and a wonderful selection of both sessions and speakers. Among those was a session by our Founder, Mark Schreiber, who presented his presentation on “Being Proactive as Possible with University Campus Safety Using CPTED”. Schreiber is also the Director and overall proud supporter of the 2024 US CPTED Association. His session took place on Wednesday, February 7th from 11 – 11:50 am. The focus of his session was on the various work we did through a unique opportunity with The University of New Mexico in 2023. During this project, we worked for our architectural firm partner, Sasaki Associates, to deliver an Integrated Campus Plan for the UNM where safety was the primary focus. The Integrated Campus Plan we provided covered the development and growth of the university for the next 20 years! We also supported the university's team by providing various CPTED, safety, and security recommendations that not only highlighted focus areas for development but also guided the overall development recommendations within the plan due to our past success with the university and CPTED practices. Safeguards Consulting and Schreiber would also like to thank Jeff McDonald from The University of New Mexico for taking the time to present with him as well as everyone who came to support Schreiber and McDonald in their session!  

Following the event’s conclusion, Schreiber stated, “We had an amazing turnout especially with this being only the second year of the conference. Overall, the conference went well, and we had an impressive sharing of knowledge between both attendees and the presenters. I am looking forward to next year’s event in San Diego and expect to have an even larger audience!”.  

Overall, Safeguards was proud to sponsor this year’s conference and to support the association! In addition, we were proud to have Schreiber representing us at this year’s event!  

 If you are within the security industry, we highly encourage you to visit the US CPTED’s website as linked below to learn more about the association and its mission as well as to further expand your knowledge of what CPTED is and what its application may look like.  

 To learn more about the US CPTED Association visit:  

US CPTED Association - Intention Through Design - CPTED Memberships 

 To learn more about the conference visit:  

Conference Information - US CPTED Association 

Release of the January 2024 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the December issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. We started the newsletter in January 2023 and now reaches security professionals around the globe, and our firm would love to invite you to subscribe!  

Our newsletter covers numerous industry events, news, and updates. Some of the items we included in our December issue were:   

+ A client spotlight piece on The US CPTED Association.   

+ A special Christmas message from our firm.

+ An exclusive article on AI: A Paradigm Shift For Our Industry

+ A list of beneficial industry events, that includes events we are supporting/speaking at as well as other events we recommend attending.   

+ Our list of useful blog articles.    

+ A selection of key industry news and updates.    

+ A quick industry tip as provided by our experts.   

If interested, please subscribe using the hyperlink included below.   

Newsletter Signup — Safeguards Consulting, Inc.    

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for Safeguards Consulting, Inc. to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our January issue!   

Release of the December 2023 Safeguards Consulting Chronicle

/

We are proud to share that we recently released the November issue of our firm's monthly newsletter, The Safeguards Consulting Chronicle. We started the newsletter in January 2023 and now reaches security professionals around the globe, and our firm would love to invite you to subscribe!   

Our newsletter covers numerous industry events, news, and updates.

Some of the items we included in our November issue were:    

+ A client spotlight piece on Glen Raven.    

+ A special Thanksgiving message from our firm.  

+ An exclusive article on Crime Prevention Through Environmental Design (CPTED) for Team Building.    

+ A list of beneficial industry events, that includes events we are supporting/speaking at as well as other events we recommend attending.    

+ Our list of useful blog articles.     

+ A selection of key industry news and updates.     

+ A quick industry tip as provided by our experts.   

If interested, please subscribe using the hyperlink included below.   

Newsletter Signup — Safeguards Consulting, Inc.     

If you subscribe to our free newsletter, you gain access to all the exclusive security content mentioned above as well as additional content we hope will help you in your role as a security professional. It is also a wonderful way for Safeguards Consulting, Inc. to stay in contact with you regarding company news, updates, or events so please consider subscribing in time for our December issue!    

Included below is a sample of our previous issue for November.

Schreiber To Speak at BSides Security Conference 2023

/ BSides Security Conference 2023/

We are excited to share that our Founder and President, Mark Schreiber will be speaking at the BSides Security Conference in Greenville, SC on October 28th, 2023! The conference will take place from 7:30 to 4:30 p.m.

BSides is an event driven by information security community members. These events serve to create collaboration among all of its attendees by having them take part in various events such as discussions, demos, and more. 

Schreiber will be presenting at 10:25 a.m. on "Drones: A Converged Threat to Cyber and Physical Security Teams". In his session, he will cover...

  • The current capabilities of drones and counter-drone systems. 

  • How to identify their legal and regulatory operating environments. 

  • Practical actions that all organizations can implement to address this disruptive technology. 

We hope to see you in attendance! 

To learn more about the event visit: 

Home | Bsides Greenville

 

To read more about Schreiber's session visit: 

Schedule | Bsides Greenville

Schreiber To Speak at CONSULT Technical Security Symposium 2023

/ Hyatt Regency Louisville, Kentucky /

We are excited to share that our Founder and President, Mark Schreiber will be speaking at the upcoming CONSULT Technical Security Symposium on October 13th - 16th at the Hyatt Regency in Louisville, Kentucky! 

(Park Suite | Sunday, October 15, 10:45 AM - 12:00 PM): CPTED - Think Outside the Box

His first session, "CPTED - Think Outside the Box" will cover how physical security consultants can "think outside the box" when it comes to providing facility hardening measures. This at times means providing additional or more unique services when it comes to providing clients with a higher customer value. 

However, this can prove challenging due to having to get creative when thinking outside of traditional design. One of the most successful "out of the box" ideas that have been implemented by experienced consultants, however, is the application of Crime Prevention Through Environmental Design (CPTED).

The International Crime Prevention Through Environmental Design Association defines CPTED as, "a multi-disciplinary approach of crime prevention that uses urban and architectural design and the management of built and natural environments". This idea is focused more on behavioral science than target-hardening strategies. This strategy is concentrated on utilizing environmental design concepts to deter criminal conduct and sustain legitimate use by employing various resources such as architecture, engineering, landscaping, facility operations, signage, and lighting to lessen the necessity of traditional technical and operational security elements. Overall, its goal is to create an environment where legitimate users feel secure while criminals feel vulnerable. In order to create this environment and overall senestation, users of CPTED employ four vital elements of natural and man-made conditions: Natural Surveillance: Natural Access Control; Territorial Reinforcement; and Maintenance / Management.

Joining Schreiber to expand on the idea of CPTED, is a panel of highly experienced consultants and educators who have implemented CPTED into their own designs for various clients and organizations. The panel includes Dan Keller (American Crime Prevention Institute), Phil Santore (Introba), and Robert Summers (Summers Associates).  

We hope you will consider joining this session and will consider implementing CPTED applications into your own designs following the session! 


(Park Suite | Sunday, October 15, 2:45 - 4:15 PM): ChatGPT and Similar Tools to Know ... Tools to Use?

Schreiber's second session, "ChatGPT and Similar Tools to Know .. Tools to Use?" will cover the basic definition of artificial intelligence (AI), its various forms and categorization, and the risks and benefits of utilizing AI in both the security and marketing industries. Afterward, Schreiber will dive into a demonstration of various forms of AI that prove to be efficient when implemented from a marketing standpoint or to be more specific a security marketing standpoint. During this portion of the session, attendees will also be invited to participate following the demonstration of the various forms of AI to gain hands-on experience with the tools presented. 

Joining Schreiber in presenting will be Jim Elder (Secured Design). Together they will cover how ChatGDP can inspire new ideas. However, they will also cover how the over-reliance on these tools can inspire conflict to arise. Some of the various risks of using an artificial intelligence tool are that they can be utilized to fake identities, create spear phishing attacks, and spoof audio and video content. Attendees in this lab will gain first-hand experience with ChatGPT in a series of instructor-led exercises while seeing how their peers have utilized it within their own work while also discussing more implications for the technology within the security and security consulting industries.

We hope to see you in attendance this Friday through next Monday (October 13th - 16)! 

To learn more visit: 

CONSULT Sessions (attendconsult.com) 

To learn more about CPTED prior to attending the first session visit: 

ICA home page (cpted.net) 

DHS CISA Releases ChemLock Program and Training

/

The U.S. Department of Homeland Security, Cybersecurity & Infrastructure Security Agency (CISA) implemented a program in late 2021 to support organizations that manufacture and manage chemicals that could be used for nefarious purposes.

The new “ChemLock” program focuses on facilities that manage chemicals of a dangerous nature and provides resources for the managing companies to protect these chemicals and perform proper security risk management. Website: https://www.cisa.gov/resources-tools/programs/chemlock

Safeguards Consulting has attended some of the ChemLock trainings and found them to include solid, fundamental concepts and practices that apply to any size of business and great material for the start of a physical security program in these environments.

We recommend checking out this program to aid your professional practices!

Utility Compliance Requirements - Aspirational or Inspirational?

/

As Safeguards Consulting supports all types of utility clients, with electrical utilities being our largest group, we have been involved with the security compliance requirements for electrical utilities for many years.

The guiding compliance requirements for electrical utilities is the NERC Critical Infrastructure Protection (CIP) requirements within their reliability standards: https://www.nerc.com

As we look back on this process, the need for defining security standards is well recognized and the goal of the CIP requirements had great intentions, but as we see the effect today, we must ask: Are these CIP requirements inspirational, or simply aspirational?

Safeguards Consulting has taken these requirements seriously with the focus on the primary intent of the security requirements (as explained in the detailed addenda), but there is a great deal of flexibility in the application of the requirements and we have seen some lackluster implementations that “meet” the compliance language.

As we regularly see, the design and implementation of security solutions is equally as important as the overarching security plan and operations, so it truly does matter which players are on each team… This is where the commitment and experience can make a drastic difference in the real-world effectiveness of professional security operations.

Future Manufacturing Plants

/

Safeguards Consulting’s founder, Mark Schreiber, was able to participate in the Chief Executive’s “Smart Manufacturing Summit” that took place in Louisville in June 2023.

From this conference, Mr. Schreiber brought back useful insights as to not only what is desired by manufacturing companies today, but also what the future environment for manufacturing may include.

A large part of this future is the digital transformation of the manufacturing environments, which will require not only data visualization, but also digital twin solutions.

We see security operations being a critical part of this digital transformation and hope to share some interesting case studies in the near future.

Mark Schreiber to Speak at ASIS GSX 2023!

/

We are proud to share the great news that a presentation proposal for the 2023 GSX Conference by our Founder, Mark Schreiber, was recently approved!

Mark will be speaking with two other industry colleagues, Kelly Watt and Kelly Stewart, about the applications of Digital Twin technologies for security operations and highlighting the various benefits that they have for the protection of organizations.

Learn more at the official ASIS International conference website:

https://gsx23.mapyourshow.com/8_0/sessions/session-details.cfm?scheduleid=33