Before you decide on any augmentation, upgrade, or other change in security, we
generally recommend that a full security audit or review be conducted. An audit will
assist in the planning of security strategies and the development of programs to
enhance the safety and security of your facilities, assets, and personnel.
A security audit is an in-depth, highly detailed, and comprehensive analysis of all
issues which could conceivably have an impact on the security situation of an organization.
The security audit always exceeds the client's expectations, as all facets of
your business and security are examined, often beyond the scope of the audit. The
audit process is highly interactive and collaborative, based on intensive and extensive communications between our consulting team and employees of the
client's facility or organization, law enforcement officials, equipment suppliers,
government agencies, and other resources or pertinent parties.
The security audit employs the following process:
- Identify the client’s concerns and articulate the focus and scope of the assignment.
- Consider the host of potential issues which have even a remote relationship with the focus or scope of the report.
- Select a list of issues to be examined.
- Identify the resources to be used on the project.
- Prepare a customized questionnaire document for use by the project team.
- Commence interviews, research investigation, and site inspection to fully explore all security related issues.
- Perform a "penetration test", assuming the role of a potential infiltrator to locate gaps in the umbrella of protection at the subject facility or organization.
- Perform a "threat assessment", evaluating the likelihood of and susceptibility to various types of potential damaging situations. This process of risk analysis which, while not a science, takes a common sense approach to perceived and experienced exposures.
- Identify and articulate all current vulnerabilities to criminal or competitive activity.
- Analyze all vulnerabilities in the light of the operating issues, business climate, and other site specific considerations which will influence the extent and type of measures most appropriate and feasible.
- Develop a comprehensive list of recommendations designed to establish an integrated effective security program.
The security audit will also serve as a blueprint for preparing workers and protecting the environment and a company's reputation from all forms of risk and threat. Such a program can demonstrate that the company has taken all reasonable precautions prior to any incident. From a liability-mitigation perspective alone, a security audit has great value.