A real security solution

January 2013 Security Services & Risk Management

I want to tell you a story about why an independent security risk assessment is different from a risk assessment done by a security provider.

Andre Mundell
Andre Mundell

A few years back a new client phoned us with a recurring problem. Criminals had captured one of the guards on the premises and used his radio to establish the whereabouts of the rest of the security team. After capturing the entire security staff, they had been able to rob the company of assets worth thousands.

The client had switched security providers only to have this scenario repeated another four times. Each of these security providers had ostensibly performed a security risk assessment on the property, but they had all recommended solutions which matched the services and products that they offered rather than tailoring solutions to their client’s needs.

We were then asked to do a security risk assessment on the premises in question.

After identifying all the relevant issues the client finally understood how and where the criminals were gaining access to the property and came to the following conclusions:

* The previous security companies had not considered effective lighting options.

* They had not considered thermal products while the neighbourhood and premises itself were very dark, and some of these security providers did not even know the basics of how thermal products work.

Because of the size and layout of the premises, we suggested the following:

* That their security service provider (Company A) be retained and allowed inside the premises.

* Because of the fact that criminals always managed to overpower and take these guards captive, we recommended that another security service provider (Company B), be placed on the outside of the premises in plain clothes.

After a few months, the same criminals attacked the client’s premises again. Company A had not been made aware of Company B, and there was no radio link between the two. This meant that the criminals also had no knowledge of Company B. Company B saw the guards from Company A being overpowered, reacted accordingly by informing the SAPS and their own armed reaction vehicles and in the end, the criminals were apprehended.

The above is a classic example of why security service providers cannot do security risk assessments, and also why they cannot tell you when they find risks that cannot be handled by one of their services or products. Hence the fact that it is imperative that companies employ the services of independent security risk assessors who will suggest real solutions to eliminate the client’s security risks as identified and explained in the final assessment. This in turn will allow the client to ensure that those risks are properly addressed as per the solutions suggested in the security plan.

No security company will advise a client to hire their competition to protect one area while they themselves protect another. Being independent and unaffiliated we were able to see the real risks involved and made solution based suggestions based on the client’s individual and working environment security needs.

It is better that a security risk assessment is done by an independent security risk assessor. Assessors cannot do an objective security risk assessment or ensure relevant and correct solutions if they are affiliated to any security provider or supplier.

Companies requesting security usually assume that their appointed security provider has done a security risk assessment; and most security providers will say that they have done a risk assessment. However, they will have performed a product assessment, not a security risk assessment. Security providers cannot and in most cases will not reveal your true risks to you.

I would like to stress to all corporate MDs, CEOs and small business owners the importance of protecting your company’s assets and employees. Gather all your facts before accepting any proposal for security services or products.

I again want to emphasise the fact that security providers and suppliers are not equipped to do security risk assessments. The fact that they are mandated to perform any and all assessments to reflect their service or product as the best option for you restricts them from being able to do effective and objective security risk assessments.

For more information contact Alwinco, +27 (0)71 319 4735, aviljoen@alwinco.co.za, www.alwinco.co.za





Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Stolen credentials on the Dark Web
October 2019 , Cyber Security, Security Services & Risk Management
Over 21 million credentials belonging to Fortune 500 companies, 16 million of which were compromised during the last 12 months, are up for sale.

Read more...
Stolen credentials on the Dark Web
October 2019 , Cyber Security, Security Services & Risk Management
Over 21 million credentials belonging to Fortune 500 companies, 16 million of which were compromised during the last 12 months, are up for sale.

Read more...
Vodacom and SAPS launch MySAPS mobile app
October 2019 , Security Services & Risk Management
Vodacom, in partnership with the South African Police Service, will empower citizens to contribute to their own safety as well as the safety of their communities through the newly launched MySAPS app.

Read more...
Enterprise security must change
October 2019 , Cyber Security, Security Services & Risk Management
The recent wave of cyberattacks against local banks has highlighted the importance of protecting data against malicious users.

Read more...
Drones improve risk management
October 2019 , Security Services & Risk Management
Indwe embraces drone technology to help improve risk management and optimise insurance.

Read more...
Body-worn cameras transforming security
October 2019 , CCTV, Surveillance & Remote Monitoring, Security Services & Risk Management
Police Service Northern Ireland now has over 7 000 officers using 2 500 cameras covering approximately 173 000 incidents each year.

Read more...
Protecting your customers’ data
October 2019 , Training & Education, Security Services & Risk Management
Simon Murrell, head of development and executive director at BrandQuantum says companies need to protect their customers from identity theft and data breaches.

Read more...
Success lies in planning
November 2019, Vox Telecom , Security Services & Risk Management
A safe and smart city will only be successful if it is planned properly, if there is buy-in from all the stakeholders and if it is managed efficiently.

Read more...
Matching governance to context
November 2019, ContinuitySA , Security Services & Risk Management
When building resilience and planning for business continuity, take proportionality to heart, advises Michael Davies, CEO of ContinuitySA.

Read more...
Essential tips for a successful disaster recovery plan
November 2019 , Security Services & Risk Management
Arcserve Southern Africa offers six crucial steps necessary to design a successful disaster recovery (DR) plan.

Read more...