RiskXtraSeptember2018

x
www.riskxtra.com
RISKXtra
Security and Risk Management September 2018
Smart GDPR Assurance
Stakeholder Roles in Achieving Data Protection
>
Mind Your Own Business: Community Guarding Examined
Access Control: Techniques for Tackling the Tailgaters
Training and Career Development: Routes to Learning
Fire Safety Management and Installation Supplement

D E S I G N I M A N U F A C T U R E I I N S T A L L
PERIMETER SECURITY
SOLUTIONS
OUR PASSION
IS YOUR SECURITY
High security perimeter and
access solutions, including fence
and gate systems, designed and
built in the UK to answer the needs
of your project, from security
rating of LPS 1175 SR1 to SR5.
Call 0800 408 4749 or visit
www.jacksons-fencing.co.uk/secure

x
RISKXtra
September 2018
Contents
46 The Changing Face of Security Services
Risk Xtra’s quarterly Security Guarding Supplement features
contributions from Axis Security and Amulet Security
Meet The Security Company (pp50-51)
5 Editorial Comment
6 News Update
BSI Data Security Survey. Industry skills and qualifications
review. Home Affairs Select Committee on security post-Brexit
8 News Analysis: Apprenticeships in Security
New BSIA chairman Simon Banks insists that more work needs
to be done to entice higher levels of apprenticeship take-up
across the security business sector. Brian Sims reports
11 News Special: Global MSC Security Conference
Global MSC Security has announced that Risk Xtra will be the
exclusive Official Media Partner for the Global MSC Security
Conference and Exhibition 2018. Brian Sims previews the event
12 Opinion: The Modernisation of CCTV
The modernisation and digitisation of CCTV means challenges
ahead for the police service. Richard Perkins assesses the detail
14 Opinion: Mind Your Own Business
Daniel Hardy outlines the rationale behind an exciting new
community-based initiative that’s seeking to drive change in the
retail sector and create value through shared resources
17 BSIA Briefing
David Wilkinson on the transition from analogue to an ‘all-IP’
platform for telephony and what this means for security systems
50 Meet The Security Company
In association with the NSI, Risk Xtra continues its ‘Meet The
Security Company’ series by featuring Constant Security Services
52 The Security Institute’s View
What makes the modern security professional? As Tony O’Brien
observes, a mixture of physical and cyber security skills is vital
54 In The Spotlight: ASIS International UK Chapter
Patrick Rea advises today’s security companies on how they can
sell security without having to cut the price for the service
56 FIA Technical Briefing
When talk turns towards fire detectors, there really is no excuse
not to test them on a regular basis. Will Lloyd pinpoints why
58 Security Services: Best Practice Casebook
Mark Folmer lists seven key questions companies should ask to
find the right management software for their security workforce
60 Cyber Security in the Public Sector
Cyber security solutions for professionals operating in the public
sector evaluated in detail by Paul McEvatt
62 Training and Career Development
Employees want more training, but are they receiving enough
instruction in all matters ‘Security’? Louise McCree investigates
64 Risk in Action
65 Technology in Focus
67 Appointments
20 Smart GDPR Assurance for a Smarter World
James Willison and Sarb Sembhi highlight stakeholder roles in
achieving data protection (and security) by design and default in
‘Smart Projects’ with Internet of Things devices
23 Techniques for Tackling the Tailgaters
Iain Entwistle looks to solve the issue of security ‘tailgating’
29 Fire Safety Management and Installation
The FIA, Hochiki Europe, Klaxon, Bosch, Kentec, Vimpex and
Advanced all feature in our regular Fire Safety Supplement
43 Building Evacuation: Let The Voices Be Heard
Ian Bridgewater explains the standards that relate to the design,
specification and installation of voice evacuation technology
69 The Risk Xtra Directory
ISSN 1740-3480
Risk Xtra is published quarterly by Pro-Activ Publications
Ltd and specifically aimed at security and risk
management, loss prevention, business continuity and
fire safety professionals operating within the UK’s largest
commercial organisations
© Pro-Activ Publications Ltd 2018
All rights reserved. No part of this publication may be
reproduced or transmitted in any form or by any means
electronic or mechanical (including photocopying, recording
or any information storage and retrieval system) without the
prior written permission of the publisher
The views expressed in Risk Xtra are not necessarily those of
the publisher
Risk Xtra is currently available for an annual subscription rate
(UK only). Telephone 0208 295 8307 for more details
www.riskxtra.com
Risk Xtra
PO Box 332
Dartford DA1 9FF
Editor Brian Sims BA (Hons) Hon FSyI
Tel: 0208 295 8304 Mob: 07500 606013
e-mail: brian.sims@risk-uk.com
Design and Production Matt Jarvis
Tel: 0208 295 8310 Fax: 0870 429 2015
e-mail: matt.jarvis@proactivpubs.co.uk
Advertisement Director Paul Amura
Tel: 0208 295 8307 Fax: 01322 292295
e-mail: paul.amura@proactivpubs.co.uk
Administration Tracey Beale
Tel: 0208 295 8306 Fax: 01322 292295
e-mail: tracey.beale@proactivpubs.co.uk
Managing Director Mark Quittenton
Chairman Larry O’Leary
Editorial: 0208 295 8304
Advertising: 0208 295 8307
3
www.riskxtra.com>

Add more to your security system
Interact, control and integrate your Texecom security system like never before
www.texe.com
Sales: +44 (0)1706 212524

x
RISKXtra
Editorial
Good for Business
For the first time, directors who dissolve companies in order
to avoid paying workers or pensions could now face hefty
fines or be disqualified from running a business. In a bold
and necessary move, the Government is to press ahead with new
plans to safeguard workers, pensions and smaller suppliers
when a company goes bust. Under the shake-up, bosses will face
thorough investigation if they try to escape paying a dissolved
company’s debts to their own staff and creditors.
While the majority of UK companies are run very responsibly,
there are a minority of directors who deliberately seek to dodge
debts by dissolving operations then starting up a near identical
business with a new name. This practice is known as
‘phoenixing’ or ‘bumping companies’. Under the new powers
invoked at Westminster, though, the Insolvency Service will be
able to fine directors who engage in such tactics or even have
them disqualified.
Business minister Kelly Tolhurst said: “The UK is a great place
to do business with some of the highest standards of corporate
governance. Some recent large-scale business failures, though,
have shown that a minority of directors are recklessly profiting
from dissolved companies. This simply cannot continue. That’s
why we’re upgrading corporate governance to give new powers
to relevant authorities to investigate and hold responsible those
directors who attempt to shy away from their responsibilities. We
want to assist in protecting workers and smaller suppliers.”
In parallel, the Investment Association will be asked to
investigate to see if action is needed to ensure that companies
are giving their shareholders an annual vote on dividends.
The Government is further raising standards by ensuring that
bosses explain to shareholders how a given company can afford
to pay dividends alongside financial commitments such as
capital investments, workers’ rewards and pension schemes.
Additionally, the Government is introducing new measures in
response to its corporate insolvency consultation that will give
financially-viable companies more time to rescue their business.
These include giving viable companies more time to restructure
or seek new investment to rescue their business (in turn helping
to safeguard jobs). This enables companies in financial distress
to continue trading through the restructuring process, thus
ensuring that smaller suppliers as well as workers are still paid.
New restructuring plans are afoot to assist in the rescue of viable
businesses and to preserve jobs.
The Government is also announcing new measures designed
to improve the quality of directors’ work by developing proposals
to introduce new and better training for them such that they’re
more aware of their legal duties, while at the same time inviting
ICSA: The Governance Institute to convene a group of investors
and companies in order to develop a dedicated Code of Practice
for external Board evaluations.
These reforms will help to strengthen the UK’s business
environment. An emboldened disqualification regime in
particular is going to be a vital element in ensuring that directors
are less likely to simply walk away from their responsibilities.
Brian Sims BA (Hons) Hon FSyI
Editor
5
www.riskxtra.com>

x
RISKXtra
BSI highlights “significant variations” in
data security readiness within public sector
An in-depth survey conducted by the BSI’s
Cyber Security and Information Resilience
Centre of Excellence in conjunction with
GovNewsDirect has unearthed a range of
inconsistencies in terms of how prepared the
UK’s public sector organisations really are for
potential cyber attacks and data losses.
In the last 12 months, 77% of those
organisations surveyed have suffered a security
breach. The most common causes were staff
error (32%), phishing (30%), malware (18%),
ransomware (11%) and Denial of Service (7%)
attacks. Although 94% of organisations said
they have a plan in place to handle data
breaches, 58% explained they’re concerned or
not confident about being able to access their
application systems in the event of an attack.
In today’s agile working environment, remote
access has become integral to the provision of
public services with over 73% of all staff having
access to e-mails, while nearly one-in-five of all
staff members have access to their
organisation’s Customer Relationship
Management system on a remote basis. The
research also shows that 31% of organisations
offer a BYOD policy that applies to all staff.
The threat of data security breaches is
exacerbated by the rise in ‘shadow IT’ that’s
often used without the authorisation of IT
managers. Organisational concerns around
shadow IT include data loss (82%), security
(78%) and unauthorised applications (51%).
The transition towards cloud-based IT
systems is one of the positive findings of the
research, with 52% of public sector bodies now
using Office 365 and a further 30% in the
process of adopting it.
68% of respondents said that disaster
recovery/business continuity was the main
reason for moving to the cloud, followed by the
ability to provide mobile/remote working
access (58%) and security (57%).
Commenting on the survey, Stephen Bowes
(head of solutions delivery and IT at the BSI)
explained: “The results of our survey highlight
security concerns and implications associated
with the transition to cloud data management
systems as well as the threat of ‘shadow IT’.
The results also show that responsibility for
data security remains something of a grey area
within public sector bodies.”
Bowes added: “Above all, the survey
demonstrates the need for organisations to
invest in training and education in order to
increase awareness of data security challenges
among all staff and stakeholders.”
Skills and qualifications review for security industry in progress at the SIA
The Security Industry Authority (SIA) has begun a wide-ranging review of available licence-linked
qualifications, widening the scope of this work to consider not just the mandatory qualifications
required by the Regulator, but also how to support the industry in addressing the skills and
knowledge needed by operatives throughout their careers and across the spectrum of security
provision. The review process will also look to ensure that robust assessment processes exist to
make certain of the integrity of those qualifications achieved.
Crucial to the success of this project is the engagement of industry and stakeholders. Therefore,
the SIA is conducting a comprehensive consultation exercise. This will include primary research
interviews with hundreds of operatives, focus groups involving businesses and consultation with
expert stakeholders. The process will be completed by the end of 2019 and the new qualifications
made available in Q1 2020.
This review includes consideration of any refresher training that the SIA requires operatives to
undergo. Every five years, the Regulator reviews the qualifications to ensure that they’re still in line
with industry working practice, new risks that might have emerged and technology changes.
Steve McCormick, the SIA’s director of operations and standards, explained: ”This is a very
important piece of work because we have a statutory responsibility to raise standards in the private
security industry. Our aim is to improve the professionalism of security operatives, drive forward
standards in the industry and help protect the public in the UK. I believe that we can facilitate the
development of a new set of qualifications to raise standards over time. We will also help to better
define career paths and opportunities for those joining the workforce. This will assist the industry
to improve the standards of service delivery, while also helping with recruitment and retention.”
The project encompasses a number of key milestones that will need to be delivered before the
new qualifications are made available.
6

News Update
City of London Police and Lloyds
Banking Group forge three-year
partnership in joint bid to fight
economic crime
The City of London Police, the national
policing lead force for countering fraud, has
signed a partnership agreement with the
Lloyds Banking Group which will see the latter
invest £1.5 million in unique policing
initiatives designed to tackle economic crime.
The money will be allocated to several
projects over a three-year period, with the goal
being to strengthen the UK’s financial
capabilities to detect criminals and protect
members of the public and businesses alike.
For example, the partnership will deliver crosstraining
of financial investigators with the
intention of sharing Best Practice and
expertise across both organisations. This will
enhance capability in the detection, prevention
and awareness of economic crime.
In addition, a programme of secondments
and exchanges between the City of London
Police and the Lloyds Banking Group will take
place, thereby helping investigators and
analysts alike to better understand criminal
methodologies and banking practices and how
this affects law enforcement.
During the three-year period, an economic
crime panel of experts will be established
which will allow for a group of volunteer
specialist economic crime advisors to come
together and share expertise and Best Practice
on an ongoing basis.
Alistair Sutherland, the City of London
Police’s assistant commissioner, observed:
“Developing partnerships to tackle fraud is a
cornerstone of our overall approach. This is a
fantastic opportunity to work closely with a
highly regarded and international private
sector partner and share our expertise and
knowledge. We want to do everything we can
in order to prevent economic crime from
ruining lives and businesses. This sponsorship
agreement will assist us with that aim.”
Brian Dilley, Lloyds Banking Group’s director
of fraud and financial crime prevention,
responded: “This is an important partnership
with the City of London Police and a priority
element of Lloyds Banking Group’s
commitment to keep our customers’ money
safe. By working collaboratively under a
public-private partnership, Lloyds Banking
Group and the City of London Police will be
more effective in reducing the harm caused to
our communities by criminals.”
In parallel, the City of London Police’s
Insurance Fraud Enforcement Department has
just delivered the first in a series of regional
engagement workshops, with at least three
more being planned for the coming months.
Brexit negotiators “putting public
safety at unnecessary risk” claims
Home Affairs Committee
“Lack of progress and political red lines” on
both the UK and EU sides are standing in the
way of a security deal and “putting public
safety at serious and unnecessary risk”. That’s
the view of the Home Affairs Committee as
outlined in its follow-up report into UK-EU
security co-operation in the wake of Brexit.
Lack of progress in the negotiations and the
vast gap between the UK and EU negotiating
positions on security mean there’s “a serious
risk” that crucial aspects of security cooperation
will come to an end after Brexit,
when the transition runs out in 2020 or even
as soon as March next year.
“Both the UK Government and EU
negotiators are showing too much rigidity and
putting political red lines ahead of public
safety and security considerations, despite the
strong shared interest in continued close
policing and security co-operation.”
Both the UK and EU would face a security
cliff edge next March if there’s no deal at all,
with serious ramifications for public safety
and the ability to stop criminals in the UK and
the EU. The Committee states: “The
Government must put workable contingency
plans in place for a ‘no deal’ scenario.”
Without agreement on the Second
Generation Schengen Information System (SIS
II), the UK will forfeit access to a database of
76 million alerts. This database helps police
officers to identify suspected offenders in
serious crimes. Losing that intelligence would
pose a severe threat to the Government’s
ability to stop dangerous criminals from
entering the UK and prevent serious crime.
The EU’s proposals for a future extradition
agreement are “significantly inferior” to the
European Arrest Warrant. Current plans would
mean “major obstacles” in bringing serious
offenders to justice.
Plans for extradition during the transition
period, which will enable Member States to
refuse to extradite their own nationals to the
UK, will lead to cases in which justice for
victims is frustrated or otherwise denied, with
criminals able to evade arrest for longer.
“Both sides must drop some of their rigid
red lines and recognise that compromises will
have to be made to ensure that crucial
policing and security co-operation can
continue without a major loss of capabilities.”
7
www.riskxtra.com>

x
RISKXtra
BSIA chairman Simon Banks targets need
for more apprenticeships in security sector
Speaking at the Trade
Association’s Annual
Luncheon and British
Security Awards 2018
Ceremony held in
central London on
Wednesday 11 July, the
British Security
Industry Association’s
(BSIA) new chairman
Simon Banks – cofounder
and Group
managing director at
CSL – emboldened the
excellent and ongoing
Apprentices for Fire
and Security
programme that he
kick-started several
years ago by insisting
that still more needs
to be done to entice
higher levels of
apprenticeship takeup
across the security
business sector.
Brian Sims reports
Pulling no punches, Banks (pictured above)
told the assembled audience at the
London Marriott Hotel on Grosvenor
Square: “Without a talent pipeline the industry
will be finished. The best technology in the
world is useless if it cannot be installed
properly. We must make it plain that young
peoples’ talents will not be wasted if they
decide to venture into the realms of the security
business sector. Our industry is an exciting one,
complete with technology including thermal
imaging, cyber, drones, biometrics and Deep
Learning Video. Next year, we will be inviting
school and college pupils to IFSEC International
and deliberately embarking on the biggest
push for new talent ever witnessed in this
sector. We want the young people of today and
tomorrow to pursue a career that begins with
an apprenticeship.”
Banks continued: “The BSIA supplies
standards. At present, there’s a ‘Tech Invasion’
occurring right across all of the BSIA’s
Membership Sections. On that basis alone,
everyone in this room should aspire towards
standards involvement and help in protecting
our sector from incoming disrupting verticals.
Let’s not forget that, when home automation is
mixed with security, it’s our responsibility –
nobody else’s.”
Astonishingly, the BSIA’s corporate logo is
presently displayed on only 1% of security
installers’ vehicles, but Banks is adamant that,
in light of the above statement on the ‘Tech
Invasion’, installers have never needed their
Trade Association more than they do now.
“BSIA installers are protected, informed and
credible,” urged Banks.
Clearly, the new chairman firmly believes that
the Trade Association needs an enhanced
cohort of installation companies and dedicated
installers within its ranks.
“Our world is changing from an analogue to a
digital footprint,” continued Banks. “2025 will
see over one million lines challenged to a new
technology with BT’s ‘all-IP’ offer. We also have
to navigate Brexit. Clearly, the BSIA is going to
be pivotal for both occurrences.”
BT announced back in early 2016 that, by
2025, “all customers will be using IP Voice”.
This wasn’t a quick decision for BT, but rather
one taken after lengthy and detailed
discussions with the telecoms industry.
It was felt that the ‘end of life’ for the ISDN
and PSTN networks was “inevitable”, with a
2025 ‘cut-off’ affording providers and
customers alike enough time to transition
towards IP-centric telephone solutions.
Respect and co-operation
Manpower (ie security guarding) continues to
form the biggest element of the Trade
Association’s membership. For its part, the BSIA
is continuing with its important work designed
to reach a situation of mutual respect and cooperation
between service providers and clients
in this sphere. “We must continually strive to
increase the trust between private and public
sector services,” highlighted Banks. “Greater
respectability will justify a fair margin for what
is an excellent service.”
Speaking of the industry’s client base, Banks
– who co-founded the CSL Group (formerly CSL
DualCom) in 1996 to manufacture security and
communications products for the security and
fire sectors, and then steadily built the
company to become a global provider of
connectivity solutions – also touched on the
key subject of end user awareness (and
specifically so in relation to the BSIA itself).
“The public needs to know about the BSIA,
while we also need to ensure as a collective
that our sector isn’t overlooked by Government.
Workable standards, credibility, ongoing
collaboration and robust market intelligence
will all help. The BSIA’s logo is a statement of
quality, trust and integrity. We must put forward
that message at every opportunity.”
8

News Analysis: Apprenticeships in the Security Business Sector
Banks referenced the horrifying Grenfell
Tower tragedy of June last year, which he
dubbed: “The avoidable disaster.” He ventured:
“In my view, the industry needs a Halo
standard. The public has a right to a Halo or a
Gold standard wherein lives and property
matter. The BSIA has a vital role to play here
through standards and training. It’s training
that delivers the competency.”
Skills for Security is, of course, the BSIA’s
training subsidiary, all the while boldly
providing skills education throughout (and not
just at the point of delivery, either).
The challenges ahead
The security industry and its customers benefit
greatly from the BSIA’s work, but it remains the
case that the organisation is only funded by a
select few. “We simply must correct this
imbalance,” asserted Banks.
“With so many new opportunities on offer,
there has never been a better time to engage
with the BSIA. The entire security value chain
should welcome, adopt and promote new
technologies rather than allow competing
verticals to invade our sector. Standards and
competence underpin our industry and should
not be compromised. Participation in the BSIA
ensures that we all remain relevant and a
competitive force backed up by technology and
skills. The professionalism inherent within the
security business sector will undoubtedly
ensure that we become the first choice for the
provision of leading products and services.”
In closing, Banks explained: “The BSIA is a
listening organisation. It’s a Trade Association
for all companies of all sizes. During my term in
office, I look forward to taking this outstanding
organisation forward. With your help, we will
deal with the challenges I’ve outlined and
embrace the opportunities in front of us.”
James Kelly, CEO of the BSIA, explained to
Risk Xtra: “Simon’s appointment as chairman is
very timely and will be of great benefit to the
BSIA and its members. As we seek to extend
our membership and bring about a deeper
talent pool for the industry, Simon’s enthusiasm
and connections will help us to reach out to
new recruits and maintain a high profile for the
industry’s leading Trade Association.”
Talent and commitment
Kelly began proceedings at the British Security
Awards by mentioning the re-branding of the
event – running in its new guise for the first
time – and boldly stating: “It’s our ambition for
the British Security Awards to become the
national event that recognises the talent and
commitment of our industry’s finest.”
“Next year, we will be inviting school and college pupils to
IFSEC International and deliberately embarking on the
biggest push for new talent ever witnessed in this sector”
Thanking the Trade Association’s members
for their many and varied working contributions
across the year, with those contributions
remaining at the heart of the BSIA’s ongoing
success, Kelly expressed his gratitude for all
those who have given of their time in the past
12 months and more to help the BSIA develop
and achieve its strategic goals.
Indeed, there have been notable successes
during the past year. Political lobbying remains
at the core of the Association and “good
progress” has been made at Westminster. “As a
Trade Challenge Partner, we successfully
lobbied the Government to reverse its planned
removal of Trade Show Access Programme
funding for the overseas trade shows, meaning
that grants are now once again available for
Intersec Dubai, IFSEC South East Asia and
Security Essen,” asserted Kelly.
“We’ve also lobbied various UK and European
organisations to raise awareness of the
challenges and added cost implications posed
by the Radio Equipment Directive, which has
resulted in some useful guidance being
produced and a wider understanding of how
members can achieve compliance,” continued
the CEO. “Further, the BSIA has engaged with
UKAS to lobby for the retention of citing
normative standards on ISO quality
management certificates, with UKAS consulting
on a Policy Paper to introduce this into
recognised industry schemes.”
The next generation
The BSIA’s commitment to training the next
generation continues with its training arm,
Skills for Security, developing a series of
successful apprenticeship training programmes
around the subjects of fire, emergency and
security systems, team leadership and
customer service. The team is also looking at
creating a portfolio of other services focused on
legal training, with briefings on key topics
designed to keep organisations compliant.
The BSIA remains a major contributor to
national, European and International Standards
and the Association has made important
contributions to a number of key industry
bodies, with both members and staff making
representations to Euralarm, the Confederation
of European Security Services, the SIA’s
Strategy and Standards Group and the work of
the Surveillance Camera Commissioner.
BSIA CEO James Kelly (below)
addressed Trade Association
members and their guests at
the British Security Awards
Ceremony in central London
9
www.riskxtra.com>

Inner Range’s Integriti
High Security System is
a complete Hardware/
Software solution designed
specifically for High Security
installations.
Our range includes:
All Software
Hardware Controllers
End of Line Modules
Power Supplies
Keypads
Enclosures
Communications Devices
Access Control Readers
Credentials
WHY TAKE CHANCES?
FULL END TO END DATA ENCRYPTION EXTERNALLY CERTIFIED
T: +44 845 470 5000 | E: ireurope@innerrange.co.uk innerrange.com

x
RISKXtra
News Special: Global MSC Security Conference
Global MSC Security announces Risk Xtra as
Official Media Partner for 2018 Conference
Derek Maltby, managing director of Global
MSC Security, explained: “Risk Xtra is the
ideal Media Partner for the Global MSC
Security Conference and Exhibition 2018 as the
print publication and website’s readers mirror
our delegates. They are end users charged with
managing and mitigating risks for organisations
in the public and private sectors. Not only do
they need to be aware of the changing threat
landscape, but they also want to understand
the latest technology available that will assist
them to defend against it.”
The event is free to attend for all delegates
and also delivers double Continuing
Professional Development points from The
Security Institute for anyone who does attend
the conference programme.
Maltby continued: “The General Data
Protection Regulation (GDPR) has been EU law
since 25 May this year, but there’s still much
confusion and misinformation regarding what
the new data protection regulation means for
the surveillance market and, indeed, the wider
security sector. We’re bringing together many
experts for a one-day conference in the hope of
providing clarification as to the best way
forward in order to safeguard people and
assets while adhering to the law.”
Keynote Speakers
Confirmed Keynote Speakers include:
• Tony Porter QPM LLB MSyl (Surveillance
Camera Commissioner) whose role is to
encourage compliance with the Surveillance
Camera Code of Practice
• Anne Russell (senior policy officer at the ICO)
discussing the GDPR in the context of the
security and surveillance sector
• Peter Spindler MSyI (director of Soter
Protective Services) will draw on the learning
from Operation Yewtree to provide insight into
the role security professionals can play in
safeguarding the vulnerable (and how the
GDPR is applied in this regard)
• Sgt Chris Green (Avon and Somerset Police)
will be talking about reducing harm in the
community by maximising the benefits of CCTV,
and how covert methods and body-worn video
cameras are having a dramatic effect on the
policing of complex problems
• Jim Guiton (Community Control Room
manager at Dacorum Borough Council) is set to
explain how he ensures the Council complies
with the GDPR in relation to its 350-strong
surveillance camera network
• Professor Pete Fussey (criminologist from the
University of Essex) specialises in the subject of
‘Surveillance and Society’
Technology on show
Running alongside the conference itself will be
an exhibition, which opens on the afternoon of
Monday 12 November. The exhibition includes a
presence from the event’s headline sponsor
Genetec as well as event sponsors Bosch, wcctv
and 360 Vision Technology.
Other major exhibitors confirmed to date
include Cortech Developments, Commend UK,
Digital Barriers, Hikvision, Ipsotek,
IndigoVision, Pivot 3, Purdicom, Redvision,
SilverNet, Synectics and The Security Institute.
Also on Monday 12 November, Global MSC
Security will host a Gala Dinner to raise money
for the Royal British Legion and present the
winner of the 2018 Gordon McLanaghan Award
for Security Innovation.
The winner of 2017’s accolade was Cumbria
Constabulary for its work consolidating all six
District Councils’ stand-alone CCTV systems
into one sustainable system that’s run and
monitored centrally by the Constabulary.
Speaking about the journal’s latest Media
Partnership, Brian Sims – the Editor of Risk Xtra
online and in print – observed: “We’re
absolutely delighted to have been chosen by
Derek and Global MSC Security as the exclusive
Official Media Partner for the 2018 Conference
and Exhibition. I’ve attended this event in the
past and the depth of insight imparted for end
users on the day is always first class. This year
will be no exception to that rule.”
• Registrations are now open and exhibitor
packages are still available. For more
information visit
https://www.globalmsc.net/seminars-2/
Derek Maltby:
Managing Director of Global
MSC Security
Global MSC Security
has announced that
Risk Xtra will be the
exclusive Official
Media Partner for the
Global MSC Security
Conference and
Exhibition 2018, which
takes place on
Tuesday 13 November
at the Bristol Hotel in
Bristol. The headline
theme for the 13th
Edition of this hugely
popular annual freeto-attend
event is
‘GDPR, Surveillance
and Security’.
Brian Sims reports
11
www.riskxtra.com>

x
RISKXtra
Modernising and Digitising CCTV:
Challenges for the Police Service
better way of doing things by transcoding video
footage into a standard format that can be
played on any desktop, laptop or smart phone.
The 2025 Digital Policing Vision calls for the
‘transformation’ of police ICT. Police services
are now on the brink of modernising operations
and digital CCTV is a key element of this
process. While the cameras covering public
spaces provide intelligence to both the police
and local authorities, the current infrastructure
is somewhat siloed. That said, there’s an
opportunity to evolve the technology and adapt
it in such a way that it can then help to tackle
current challenges and improve infrastructure.
Currently, the UK’s
public sector is faced
with an economic
climate that demands
today’s services ‘do
more with less’. One
of those services is
surveillance. For their
part, police forces are
now under immense
pressure to cut crime.
With CCTV assisting in
this regard, it’s
nonetheless fair to
suggest that the
modernisation and
digitisation of CCTV
means plenty of
challenges lie ahead.
Richard Perkins offers
a detailed assessment
of the way forward
CCTV played a vital role in identifying the
perpetrators who carried out the London
Underground and bus bombings in 2005,
and has since been important to myriad other
investigations. The footage obtained from CCTV
not only helps reduce costs, time and effort
expended in the security process, but also
improves prosecution outcomes.
The variation of modern crime renders CCTV’s
application imperative to already stretched
police services, as not only does it act as a
force multiplier, but also supports active officer
units on patrol.
CCTV’s role is diverse and, while providing
quality digital evidence to support
investigations, the recordings also deliver
intelligence relating to potential threats –
anything from anti-social behaviour to
terrorism, in fact. It’s estimated that one third
of all cases handled by the Crown Prosecution
Service (CPS) now include CCTV evidence.
However, with CCTV comes copious amounts
of footage. It can be a challenge to sift through
all of the material. Investigators often collect
CCTV video only to find they have no way of
actually playing it. Proprietary codecs are
needed to make videos playable. Sometimes,
they can be hard to find and obtain.
Given the lack of industry standards in CCTV,
the recovery of digital video evidence has
turned into something of a research project.
Digital Evidence Management solutions offer a
Increasing interoperability
In a bid to deter criminals, protect vulnerable
people and effectively prosecute offenders,
modern digital CCTV services are critical.
However, with an emphasis on digital
transformation and the current deluge of data,
it’s important to tackle the interoperability of
CCTV systems between the criminal justice
system, the police and other public services.
In essence, the challenge presented is
around creating a joined-up approach to
replace the current myriad systems and data.
The latter work independently of each other
and are not integrated.
The benefits of a fully-integrated system are
huge and we’re certainly starting to see a
change in the way digital evidence is managed.
Increased interoperability of CCTV would allow
police officers to use data and information
more effectively during investigations. For
instance, officers investigating a case might
track down a suspect’s vehicle by reviewing
CCTV footage and noting the number plate. If
those same officers could then easily access
other surveillance images and cross-reference
the information with other sources, this would
allow them to build a better picture of the
suspect(s) and their movements leading up to
and after the incident.
With many digital video file formats in use,
there are often inconsistencies between police
services up and down the country. This also
impacts the sharing of evidence between the
police and the CPS, although this issue might
be alleviated with the implementation of the
CJS Common Platform Programme.
Industry body TechUK recently stated that, if
online reporting and submission of digital
12

Opinion: The Modernisation of CCTV
evidence such as CCTV were implemented
nationwide, it could save at least £30 million.
It’s therefore important, then, that common
platforms and systems are established to aid
resource sharing as well as the movement of
digital case files and evidence, ultimately
making the process more efficient and
decreasing the risk of loss.
Smart CCTV: a powerful mix
CCTV is often referred to as the unseen ‘eyes’ of
the police, but soon digital CCTV will be
equipped with the brainpower to boot. More
and more, Artificial Intelligence (AI) and facial
recognition technology will become integrated
with CCTV, equipping cameras with the ability
to analyse live video. Combined with the
digitisation of CCTV, this makes for a powerful
mix and enables live footage to be streamed
directly into remote surveillance centres and
Police Control Rooms, helping first responders
quickly identify crimes and incidents.
Just as Automatic Number Plate Recognition
technology is used to help detect vehicles of
interest, police services will begin to embrace
the use of AI for real-time crime reporting. With
real-time automated detection capabilities,
CCTV will scan for missing and wanted
individuals as well as suspicious behaviour
such as attempted theft.
In fact, the technology is already being
trialled. Last summer, South Wales Police used
facial recognition technology to make an arrest
for the first time, identifying the suspect by
matching his face against images stored on a
database. Facial recognition technology and
live streaming could result in a dramatic change
in the way police officers apprehend offenders.
Instead of playing catch-up and using CCTV to
identify where suspects were a few hours ago,
the police could track their location in real-time
using remote access to connected cameras.
Moving to the cloud
With digital CCTV becoming more prevalent and
increasingly moving towards the cloud, footage
is then more easily accessible. CCTV Control
Centres are starting to adapt to the process of
streaming and sharing footage, eliminating the
need for disks and USB sticks.
Currently, when investigating officers are
handed CCTV footage on a disk or a USB stick,
they must first attempt to find the file format.
They can spend hours searching the Internet,
as well as accessing dedicated forums in a bid
to identify the correct file viewing software.
This is hugely inefficient and time-consuming
and has knock-on effects through the entire
criminal justice system.
“The 2025 Digital Policing Vision calls for the
‘transformation’ of police ICT. Police services are on the
brink of modernising operations and digital CCTV is key”
For many investigating officers, collecting
digital evidence is just the beginning. Often,
putting all of the pieces together can be an
even bigger challenge. There can be hours
spent physically collecting CCTV footage from
public and private systems within the vicinity of
a criminal incident. This currently involves
police officers acting as glorified couriers,
driving to CCTV Control Rooms to manually
download footage to disks or USB memory
sticks. It really is a huge waste of time and
valuable resources.
As stated, there’s then the time-consuming
process of sifting through the CCTV evidence in
order to find the right frames. The move
towards standardised digital facilities is
incredibly important and could remove the
need for disks to be personally collected from
sites. By investing in crowd-sourcing and digital
evidence management systems, police services
will be able to invite businesses and the public
to register their CCTV cameras in a secure
portal. This makes the process of sourcing
footage much easier and uses privately
maintained HD footage for the benefit of the
entire criminal justice system.
Value and impact of surveillance
As mentioned previously, the streaming of
digital CCTV has many benefits and, with cuts
to policing resources, there are varying reasons
why such public agencies are keen to ensure
the survival of CCTV monitoring and response
operations. Local councils will be interested in
public safety and traffic management, while
police forces will want footage for evidence and
the detection of crime.
Digital CCTV footage provides an efficient
and accessible way in which to gain clarity on a
situation and build up a bank of evidence.
That’s why it’s important that funding is
retained. Police services can update local
authorities on the extent to which CCTV has
been useful, duly highlighting those
investigations where surveillance has been
significant to a case. Feedback can be provided
on specific incidents to ensure continued
support for this valuable resource.
There’s most certainly a need to standardise,
modernise and also demonstrate the value of
CCTV, then, but it does feel like the UK is on the
cusp of cracking what might best be described
as ‘the CCTV conundrum’.
Richard Perkins:
Regional Director at NICE
13
www.riskxtra.com>

x
RISKXtra
Community Guarding in the Retail Sector
It would appear that any attempts to buck
these trends are simply not working, with the
BRC also stating that retailers spent the same
amount on non-cyber crime prevention in a 12-
week period as they did the previous year.
All of this is occurring at a time when the
police service has lost nearly 16,000 officers
across England and Wales – the equivalent of
all the forces in the South West of England.
That has meant the police service’s ability to
respond to incidents has been seriously
affected. There’s now a determined focus on
crime prevention rather than prosecution.
Tough trading
conditions in the High
Street right now have
been well documented
but, with theft and
violence also on the
rise, the time has
surely come for a
radical new approach
towards security. With
this firmly in mind,
Daniel Hardy explains
the rationale behind
an exciting new
community-based
initiative that will
drive change and
create value through
shared resources
What are your views on the
Community Guarding idea?
Send your thoughts about the
initiative via e-mail to
enquiries@national
businesscrimesolution.com
Well-known retailers including Maplin,
Toys R Us and Poundworld have already
disappeared in 2018 and, according to
an analysis of the UK’s Top 500 towns and cities
compiled by the Local Data Company for
PricewaterhouseCoopers, there were 5,855
store closures last year alone.
Meanwhile, the number of new High Street
stores opening in 2017 fell to a total of 4,083
from 4,534 in 2016. According to the Office for
National Statistics, there have been 83,500
retail redundancies since the beginning of 2017.
It’s undoubtedly a pretty grim picture.
Online retailing has definitely had an impact.
The British Retail Consortium’s (BRC) research
finds that online sales of non-food items have
soared over the past five years from 11.6% of
the total market in December 2012 to 24.1% in
December last year. However, the Internet isn’t
the only thing to blame for the decline in the
High Street’s fortunes.
Acts of theft and violence are also shockingly
high. The BRC’s 2017 Retail Crime Survey
reported that the total direct cost of crime has
risen 6% year-on-year to just over £700 million,
while the direct cost of customer theft has
grown by £65 million. That’s up by 15%. It
seems one particular trend that’s rapidly
spinning out of control is the amount of danger
that those employed in retail face during their
working day, with the rate of incidents of
violence with injury doubling in 2017 to total six
per every 1,000 members of staff.
Effecting positive change
Within the retail sector, any attempts to deal
with these issues have often focused on hiring
security officers which, although effective in
certain circumstances, isn’t the whole answer.
This additional expense, compounded by the
level of crime, violence, higher business rates
and increased footfall, means that it’s simply
financially non-viable to keep some stores
open. It’s clear that there has to be a radical
reappraisal of how retailers, the police service
and specialist security providers work together.
The seeds of change were sown with the
Violence Reduction Strategy, a collaborative
initiative pioneered by central Government, the
BRC, the National Police Chiefs’ Council (NPCC),
the Association of Convenience Stores, the
National Business Crime Solution (NBCS), the
Association of Police and Crime Commissioners
and USDAW, the Trade Union for shop workers.
As a result, a major retailer, Mitie and the
NBCS decided to take this further by
developing a new retail security model named
Community Guarding. Based on the belief that
co-operation, knowledge sharing and pooled
costs between retailers creates value through
flexible resources with a wider reach, the NBCS
believes that it could positively contribute
towards contemporary business objectives by
harnessing the power of data collection,
analytics and insight.
In turn, this will build increased capacity and
engagement by linking large corporates, local
SMEs, the community, the police service,
councils and other stakeholders to counter the
negative economic effects of persistent retail
crime and episodes of anti-social behaviour.
Proof of the pudding
Although the Community Guarding concept
sounded good in theory, the only way in which
14

Opinion: Mind Your Own Business
to ascertain its viability was to put it to the test.
By partnering with the Police and Security
Group Initiative, Sussex Police and a major
retailer, a pilot scheme deployed community
guards across Brighton & Hove and nearby
areas working in tandem with the Sussex
Warden initiative deployed by SWL Security, in
turn ensuring all major Sussex conurbations
received a community security resource.
Community Guarding uses existing Security
Industry Authority (SIA)-accredited personnel to
act as High Street security to support the local
retail community, displacing criminality from
not only retail premises, but also from local
central business districts. This is achieved
through a two-tier security resource – a
traditional static presence in high risk stores
supplemented by high visibility patrolling in
areas agreed by local police that supports their
own stated initiatives.
In addition, the pilot sought to conduct
evidential capture, support criminal and civil
justice processes and report on the presence of
known criminals to police and the business
community in order to prevent offending.
Six community security officers spent the first
two weeks of the pilot undertaking engagement
with local businesses and supported local
policing operations with a view to project
launch at the Brighton Pride event. They
maintained a high visibility presence in areas
known to be at elevated risk and there was a
positive reaction from members of the public,
who were pleased to see an extra resource
being deployed in the community.
The team also built a good relationship with
other local security firms, the Brighton & Hove
Business Crime Reduction Partnership and local
police to share intelligence between the
organisations. Their activities also included
talking to members of the homeless community
to offer help by putting them in contact with
volunteer agencies working with Brighton City
Council, which could then assist with food,
benefits and housing issues.
Keep talking
Local businesses in the patrol vicinity away
from the major retailer who funded the initial
proof of concept could request support from
community officers by contacting staff at Mitec,
the Mitie Control Room located near Belfast.
These deployments were supported locally by
the use of the Business Crime Reduction
Partnership radio link such that businesses
could communicate effectively.
The community guards assisted in arrests,
searching offenders and diffusing volatile
situations, rendering First Aid and carrying out
welfare checks, gathering intelligence and
evidence of crimes and generally helping
members of the public.
Since the start of the pilot, the community
guards have reported over 1,500 incidents and
450 crimes, conducted 800 rough sleeper
enquiries and detained 59 individuals until
police officers could attend the scene. In a twomonth
period in 2017, among many other
activities, the community guards arrested a
man with five outstanding warrants, supported
a vulnerable female who had escaped from
hospital and intervened in a road rage incident
that developed into a physical altercation.
Setting the standard
Due to the pilot project’s success, the NBCS
and its partners are confident the same model
could be developed and rolled out across the
country. As well as the many benefits that it
offers retailers and law enforcement agencies,
it also represents a valuable opportunity for the
security industry – and the security guarding
sector in particular – to elevate its position and
create a new type of highly-trained, skilled and
service-driven operative.
There’s a vicious circle at play, whereby
customers don’t value guarding services highly
enough and are not willing to pay higher fees.
This means that the sector struggles to attract
high quality individuals from a diminishing pool
of talent due to the low rates of pay that
operatives receive, which then renders the
security industry an unattractive career choice.
To address this issue, work is underway to
establish a set of operational standards via
appropriate bodies like the SIA and the NPCC.
It’s hoped that the development of a nationally
recognised and accredited enhanced security
standard for individuals will raise the credibility
of the private security industry.
It has been mooted that this standard should
include areas such as statement writing,
evidential capture and continuity, the use of
body-worn video, initial responder First Aid
training, an understanding of civil powers,
dealing with vulnerable people, technology
awareness and its use, Community Safety
Accreditation Scheme powers, Project Griffin
awareness and, importantly, corporate
accreditation through the SIA’s own Approved
Contractor Scheme.
Daniel Hardy:
Managing Director at the
National Business Crime
Solution (NBCS)
*Mind Your Own Business is the
space where the NBCS examines
current and often key-critical
business crime issues directly
affecting today’s companies. The
thoughts and opinions expressed
here are intended to generate
debate and discussion among
practitioners within the
professional security and risk
management sectors. If you would
like to make comment on the
views outlined, please send an
e-mail to: brian.sims@risk-uk.com
**The NBCS is a ‘Not-for-Profit’
initiative that enables the effective
sharing of appropriate data
between the police service, crime
reduction agencies and the
business community to reduce
crime and risks posed to all. By
providing a central repository
where business crime data is
submitted, shared and analysed,
the NBCS is able to gather the
necessary intelligence and support
to more effectively detect, prevent
and, subsequently, respond to
crimes affecting the UK’s business
community. For further information
access the website at:
www.nationalbusinesscrime
solution.com
“The British Retail Consortium’s 2017 Retail Crime Survey
reported that the total direct cost of crime has risen 6%
year-on-year to just over £700 million, while the direct cost
of customer theft has grown by £65 million”
15
www.riskxtra.com>

Make sure you can evacuate everyone eryone
safely from your building by having a
FREE SITE SURVEY via Evac+Chair’sair’s
team of evacuation specialists.
CALL 0121 796 1427
For a FREE Evacuation Assessment
or Visit:
EVACCHAIR.CO.UK

x
RISKXtra
BSIA Briefing
Many readers of Risk Xtra will be well
aware that BT has announced its plans
to transition to an all-IP digital platform
over the coming years and expects to complete
the change by 2025. In particular, BT has been
seeking a way in which to identify its
consumers who have a ‘Special Service’ (such
as an alarm or telecare service) operating
within their premises, as these services may be
impacted by the change to all-IP.
The security and fire industries still harbour a
significant number of customers who rely on
analogue phone lines to provide voltage and
dial tone to connected alarm devices. This
configuration will change with the transition to
an all-IP digital platform.
BT envisages that security service providers
will cease buying analogue equipment in the
near future, and that they’ll move to more
compatible solutions designed to communicate
digitally. With the recent announcement of the
opening of BT’s Digital Services Lab at its R&D
Centre, alarm providers (ie installers and
manufacturers) are now able to test both their
existing and any new ‘all-IP’ systems.
BT is extremely keen to work with the BSIA
and the wider security and fire industries to
protect consumers during this transition phase
by ensuring that those who rely on their current
analogue alarm devices move to the new digital
phone service in a controlled manner, in turn
ensuring that alarm services continue to
perform their critical role.
Programme of change
Antoine de la Gardette, who heads up the
engagement team for BT, explained: “It’s really
important that we impart the message of the
switchover to the industry as quickly and as
widely as possible. It’s a massive programme of
change, bigger than the switchover from
analogue TV to digital TV, and we want to make
sure nobody is left vulnerable when the
analogue systems stop working.”
BT has asked the BSIA to contact all of its
members, firstly to convey their desire to help
with testing of alarm equipment at the BT Lab
and, secondly, to request that Alarm Receiving
Centres (ARCs) provide information to help to
manage the transition (namely the in-bound
telephone numbers they use to receive alarm
signals). BT will be able to use this information
confidentially to mark BT’s customer accounts
to show that they may have a ‘Special Service’,
such as an alarm system, and to make sure that
these customers are advised by BT to contact
their alarm service provider before changing.
It’s important to emphasise that BT is only
asking for the phone numbers that alarm
Transforming the UK’s
Telephone Network
As part of a global transformation of telephony services, the
UK is undergoing the transition from an analogue to an ‘all-
IP’ platform. The British Security Industry Association (BSIA)
is working closely with Ofcom, communication service
providers and other stakeholders to ensure that the security
business sector has the opportunity to voice its concerns and
expectations as well as raise awareness of the changes and
impact this will bring. David Wilkinson has the detail
devices dial into (ie ARC receiver numbers) and
not those of service users. These ARC numbers
will likely appear on BT customers’ accounts
and can be used to alert those customers to the
need for further checks. Any information that’s
given to BT will not be used for any other
purpose and will be protected. BT has offered
non-disclosure agreements for those who are
concerned about matters of confidentiality.
It’s also worth noting BT has advised that, as
an interim solution, the organisation would
provide an Analogue Telephony Adapter port
with its new home hub, which could help to
keep some current products working until such
time that they can be upgraded or replaced. It
should be stressed, however, that the new
home hub provides no battery back-up.
Therefore, phone connectivity will be prevented
when home power fails.
Any voice band alarm data exchange could
also be affected by the new IP networks, and so
would at least require further testing.
David Wilkinson:
Director of Technical Services
at the British Security Industry
Association
17
www.riskxtra.com>

x
RISKXtra
BSIA Briefing
*If you’re happy to provide
your ARC receiver numbers to
BT Consumer or if you have
any queries on these issues
please contact the BSIA via e-
mail at technical@bsia.co.uk
or by calling 01905 342020. If
you wish to contract BT
Consumer direct e-mail
btdigitalvoice@bt.com
**Interested parties who wish
to arrange testing of their
signalling equipment (ie
communication using the
PSTN) should contact BT via
https://www.btplc.com/
DigitalServicesLab/index.htm
Therefore, alarm system suppliers should be
consulted as to how their solutions would
continue to operate reliably in this situation.
The BSIA welcomes these very supportive
steps from BT, and we recognise the desire for
alarm service providers to identify or develop
new digital solutions for their customers, while
also providing additional time for the necessary
transition. We continue to work with Ofcom and
telecommunication solution providers in order
to secure similar supportive measures across
the industry.
From PSTN to all-IP
The Public Switched Telephone Network (PSTN)
is a circuit-switched telephone network
operated by national and regional operators,
providing infrastructure and services for public
telecommunications. The PSTN consists of
telephone lines, fibre optic cables, microwave
transmission links, cellular networks,
communications satellites and undersea
telephone cables, all interconnected by
switching centres that allow most telephones to
communicate with each other.
Originally a network of fixed-line analogue
telephone systems, the PSTN is now almost
entirely digital in its core network and includes
mobile and other networks, as well as fixed
telephones. The Integrated Services Digital
Network (ISDN) came about in 1986, allowing
both voice and data services to be delivered
simultaneously. For the technology and services
at the time, it served its purpose and continued
to do so for many years.
PSTN circuits in use
Due to the changes in technology, PSTN and
ISDN are now out of date, as are their
associated maintenance and running costs.
Despite having been updated radically over the
decades since they were introduced, the lines
are still essentially the same in set-up and
design as the original phone lines of the 1800s.
There are approximately 29 million PSTN
circuits still in use across the UK. As of 2018, BT
wants to convert as many of them as possible
and, to attain the desired target figure by 2025,
will need to convert the lines at a rate of
238,000 per month.
There are a total of nine million burglar
alarms in the UK, and work is progressing in
communicating the opportunity migration
offers and the benefits of working in
collaboration with other industry stakeholders.
What is an all-IP network?
An all-IP network is a packet-based network in
which all data is transferred in the same way
and independent of the access or transport
technology. Industry parlance these days points
towards the ‘next generation network’ to
describe the all-IP network.
A next generation network is able to provide
services, including telecommunication services,
and can make use of multiple broadband
technologies in which service-related functions
are independent from underlying transportrelated
technologies. It offers unrestricted
access by users to different service providers
and supports generalised mobility which will
allow the consistent and ubiquitous provision
of services to users.
PSTN and all-IP will differ heavily in terms of
the equipment that they require and also in
relation to how they go about delivering their
calls. While PSTN requires physical lines, all-IP
is digital and requires nothing more than the
Internet to be fully operational.
It’s worth pointing out that the move to all-IP
services isn’t just happening here in the UK.
Some Scandinavian countries have completely
switched, while Europe as a whole is moving
towards all-IP networks.
Although the BT ISDN ‘end of life’ of 2025
hasn’t been set in stone, businesses will be
unable to buy systems that use ISDN and PSTN
after 2020. If you currently have a traditional
ISDN/PSTN-based system, it’s recommended
that you make plans now to look into the
alternative. Although the switch-off isn’t for
another seven years, it’s best to plan ahead and
work towards migrating sooner rather than
later after finding out all of the benefits the
replacement IP-based systems have to offer.
Set against the background of this transition
development, the BSIA has been hosting highprofile
Forum-style events across the UK
focused squarely on how changes to the
telecommunications network may affect the fire
and security industries. The final events in the
series will be held in Manchester and Belfast
later in the year. Further information can be
found on the BSIA’s website (www.bsia.co.uk).
“There are approximately 29 million PSTN circuits still in use across the
UK. As of 2018, BT wants to convert as many of them as possible and,
to attain the desired target figure by 2025, will need to convert the
lines at a rate of 238,000 per month”
18

x
RISKXtra
Advertisement Feature
Mitigating Terror in the Workplace
While many of us plan and prepare for the
practical side of disaster management,
the questions around our team
members’ safety are arguably the most difficult
to address. Yet, with our most important assets
being our people, is there perhaps more that
we can – and should – be doing to protect them
in the event of an incident?
The type of incidents businesses face could
vary greatly depending on a number of factors,
from geography and the working environment
through to individual ways of working and the
job roles performed. Some examples include
natural disasters (storms, earthquakes, floods
and natural fires), man-made events (fires,
airplane crashes, public transport disruption
and road incidents), criminal activities
(terrorism, shootings, riots and vandalism) and
business continuity issues (such as power
outages, water or gas leaks and cyber attacks).
The number of terrorist attacks has also
risen in recent years. In 2016, 77 countries were
affected by terrorism, with Europe experiencing
the greatest increase. Data revealed that there
were 30 attacks in Western Europe in 2016
compared to 23 in 2015, two in 2014 and five in
2013. Such incidents are beyond our control
and often take us by surprise.
Businesses that once faced few large-scale
threats are now witnessing a burgeoning
number of events happening around them.
Coupled with an increasingly varied and mobile
workforce, this means that locating staff and
managing the effects of an incident have
become even more unpredictable and difficult
issues for businesses to remedy.
Managing employees
Perhaps the first step (and the greatest
challenge) in the aftermath of an incident is
locating employees who could be affected and
ensuring their safety.
As more firms turn towards less traditional
ways of operating, such as using remote and
lone workers, manual methods are no longer a
viable solution. Calling employees individually
is far too time-consuming during a time-critical
situation, while missing a call leaves both the
employee and the employer in the dark.
Fortunately, developments in technology
and the widespread use of mobile devices are
providing solutions to many of our incident
management challenges. Whether it be warning
individuals of a nearby incident, providing
peace of mind for friends, family and employers
or communicating practical advice necessary
for keeping safe, technology is able to offer a
solution. How, though, can technology provide
a way for businesses with a large and varied
workforce to locate and protect their staff?
Introducing IncidentEye
At StaySafe, we’ve recently launched a new app
called IncidentEye, which has been specifically
designed to help organisations locate and
protect employees as quickly and effectively as
possible during an emergency. IncidentEye
allows end users to quickly answer the most
important questions a business faces in the
aftermath of an event (ie are my employees in
the affected area and are they safe?)
The IncidentEye app can be distributed via
MDM from the Apple App Store or Google Play
and lays dormant on an employee’s phone until
an incident is activated in the hub. Using
geofencing, the affected area can be isolated
on a map. All employees within the vicinity will
be alerted via the app with details of the event
and prompted to specify whether they’re safe
or in danger. This enables the employer to
focus on employees who need assistance, with
no disruption for unaffected members of staff.
IncidentEye maintains privacy by notifying
employees whenever their location is collected.
Location data should only ever be used for
safety purposes which is maintained through a
fair use policy and the inability to view location
details without employee knowledge.
When an incident is active, monitors can
view employees’ safety status in real-time and
respond accordingly. In-app messages may be
sent to the affected individuals (or groups of
individuals) complete with crucial information.
For example, the end user organisation may
choose to instruct those in the affected area to
evacuate, warn those nearby to avoid the
affected area or provide official Government
advice on how to deal with the situation.
Businesses are
increasingly facing a
growing number of
large-scale incidents
that can affect the
well-being of
employees and an
organisation’s ability
to operate. In the
aftermath of a terror
attack or other
disaster scenario, any
failure to respond
effectively leaves the
business and its
employees vulnerable,
while also costing
valuable time and
resources in the
process. Alan Coulter
searches for a solution
Alan Coulter:
Director of IncidentEye at
StaySafe

x
RISKXtra
Smart GDPR Assurance for a Smarter World
Something needs to
change when you’re
confronted by the
present situation
whereby devices
professing to be
‘Smart’ or part of a
‘Smarter System’ ask
for personal data, but
are then easily hacked
into by criminals such
that valuable personal
information can be
stolen. In an exclusive
article for Risk Xtra,
James Willison and
Sarb Sembhi examine
stakeholder roles in
achieving data
protection (and
security) by design
and default in ‘Smart
Projects’ with Internet
of Things (IoT) devices
We’ve just published a new approach to
the European Union’s General Data
Protection Regulation (GDPR) for
security professionals and the stakeholders
whom they deal with on a daily basis. The 40-
page White Paper, which is sponsored by Axis
Communications, stands out because, until
now, many colleagues in the security world
have lived under the mistaken assumption that
GDPR compliance isn’t something that falls
within their remit, but is instead managed
either by legal, IT or compliance professionals.
At least in part, this is based on the belief
that their security teams are not data
controllers or processors. As far as they’re
concerned, the lengthy 200-plus pages of
legislation issued by the EU isn’t something
they need to worry about.
However, the in-house security manager can
often be described as a project manager in a
large-scale surveillance system
implementation, for example, and will therefore
need to ensure that the devices and systems
duly deployed are secure by both design and
default. He or she should also work closely
alongside others involved with the project to
guarantee that the systems and devices
employed harbour data protection (ie privacy)
by design and default.
In the first half of the White Paper, which is
entitled ‘Smart GDPR Assurance for a Smarter
World’, we cover in some detail the different
ways in which the Internet and the increasing
volume of data which connects to IoT systems
has meant that personally identifiable
information is now placed at a higher risk than
it was back in the 1990s.
As Professor Klaus Schwab, CEO of the World
Economic Forum, has stated on page 59 of his
book entitled ‘The Fourth Industrial Revolution’
(published in 2016): “The digital
transformations of industry mean that
businesses will need to invest heavily in cyber
and data security systems in order to avoid
direct disruption by criminals and activists or
unintentional failures in digital infrastructure.”
This has led to the GDPR being written for
the protection of the individual’s data privacy
and security. It also usually means that the
systems involved – and, indeed, those who
manage them – often need to demonstrate
compliance through the transaction of Data
Protection Impact Assessments (DPIA) because
of their large-scale nature and the use of
innovative technologies such as biometrics and
CCTV in ‘Smart Buildings’.
IoT ‘Smart’ environments
In our new White Paper, we’ve deliberately
dedicated a chapter to those technologies,
products and services related to large-scale IoT
‘Smart’ environments and briefly outline some
that have provided greater functionality, but
that have also created increasing concerns in
terms of the data collected (or around what
that data is used for).
This includes a consideration of key areas
such as Big Data analytics, cloud computing,
Artificial Intelligence, machine learning,
sensors, medical devices, physical security
systems, surveillance monitoring and Security
Information and Event Management services.
We then proceed to introduce scenarios such
as ‘Smart Vehicles’ and ‘Smart Buildings’
because these are prime examples of how
stakeholders are involved in the protection of
high volumes of data and, given the connection
here to the individual (whether that’s a
passenger or consumer), their privacy and
security is vulnerable to attack from those with
criminal intent on their minds.
For the various owners of large IoT
installations such as ‘Smart Buildings’ or
‘Smart Cities’, for instance, processing data in
compliance with the GDPR becomes something
of a complex procedure since there’s a vast
number of suppliers who contributed to the
final working solution and may not have known
20

Data Protection Considerations for Smart Security Projects
what they need to do in order to assist with
that compliance.
In the second half of the document, we group
together important control mechanisms for all
the stakeholders in a large IoT ‘Smart’ project.
The various groups of obligations across the
supply chain in order to comply with the GDPR
can be broken down into the following:
• the obvious legal obligations of data
controllers and data processors to comply with
the GDPR
• the less obvious obligations of manufacturers
to (a) comply with the clarified ‘Opinion’ of the
Article 29 Working Party and (b) assist
customers in complying more easily with their
own legal obligations
• the obligation of the pre-production suppliers
to ensure that the service they provide assists
the manufacturer in meeting its own obligations
(and those of its customers)
• the obligation of the post-production
suppliers to ensure that the service they
provide assists the manufacturer in meeting its
own obligations (and those of its customers)
The major difference between the last two
here is that the third group could design data
protection and security into the product or
service at an earlier stage of the development,
whereas the fourth group mainly implements
the controls once they’re already built into the
product or service provided.
Our White Paper is targeted at the last three
groups on the assumption that most data
controllers and data processors know they
need to comply with the GDPR. To help in
attaining that state of compliance, we’ve
included collated lists of seven groups of
control mechanisms, in turn enabling the
supply chain stakeholder to ensure that it’s
providing added value to be competitive and
make IoT products and services more secure
with built-in functionality which places data
protection at the very heart of the service.
“The digital transformations of industry mean that businesses
will need to invest heavily in cyber and data security systems
in order to avoid direct disruption by criminals and activists or
unintentional failures in digital infrastructures”
Pre- and post-production phases
We focus on the role of manufacturers, project
managers, designers, consultants, software
suppliers and installers in the pre-production
and post-production phases of any large-scale
project. What we discuss applies to SMEs who
could be component manufacturers or codemakers.
Hence, there’s the inclusion of small
and medium-sized enterprises (SMEs) who
might act as suppliers to the larger enterprise.
In fact, it’s often SME data which is less
secure and provides an ‘easy way in’ for a cyber
attacker to gain access to personal information
which might then engender a large fine from
the Information Commissioner’s Office postinvestigation.
It’s now vital that project
managers who are responsible for these
systems give the organisation assurance that
valuable information is protected. Failure to do
so could mean quite serious implications for
the security team as past cyber attacks have
included compromises of HVAC as well as CCTV
and other physical security systems.
Should a hefty fine result, it’s then likely that
questions will be asked of the security team. In
point of fact, the largest fines to date for
Target’s data breach have involved an HVAC
system third party supplier.
Our White Paper covers a wide range of
principles and control mechanisms which, if
readily practised, will make a real difference to
the security strategy and management of these
risks. We emphasise how large volumes of data
and innovative technologies in large-scale
projects such as ‘Smart Buildings’, ‘Smart
Shopping’ and ‘Smart Healthcare’ now involve
new requirements from the GDPR for DPIA.
The security manager may not be required to
lead the assessment, but he or she will need to
understand a complex risk scenario (which our
White Paper introduces). The project manager
can evidence good security practise by
requiring stakeholders – ie the systems
manufacturers, designers, integrators and
installers – to actively demonstrate that they’re
following the legislation.
We welcome Axis Communications’
demonstrable commitment to the GDPR and its
ongoing support for privacy and security by
design and default, and also recognise the
excellent work that the business has
undertaken internally to achieve some of the
recommendations proposed.
Steven Kenny (industry liaison for
architecture and engineering at Axis
Communications) writes in the Foreword to our
document: “GDPR compliance is the first step
in winning back trust from a public wary of
corporate overreach on issues of personal data.
Companies that see beyond compliance and
embrace the underlying logic of ‘privacy by
design’ are the ones who’ll succeed in the long
term in defending against cyber attacks and
maintaining reputations. If the conversation has
changed into something more positive, the
challenges of GDPR compliance and developing
a strong security culture remain.”
James Willison BA MA MSyI:
Founder of Unified Security
Sarb Sembhi CISM is CTO and
CISO at Virtually Informed
It’s recommended that all
stakeholders collaborate and
establish diverse cross-functional
teams, as discussed in the White
Paper ‘Supporting Enterprise
Security Risk Management: How
Vendors Can Support ESRM and
CSM’ (published by Unified
Security Ltd in 2017)
• To download copies of
‘Smart GDPR Assurance for a
Smarter World’ visit
http://www.axiscommunications.com/
smart-assurance-wp
21
www.riskxtra.com>

thepaper
Business News for Security Professionals
www.thepaper.uk.com
The latest must-read financial and business information for professionals
operating in the security and fire sectors
News and Opinion, Business Matters, The View from Westminster,
Technology Updates, Vertical Focus, Appointments
EVERY FORTNIGHT: Details of M&A,
Market Trends and Research
PUBLISHED IN PRINT. Available
only via
subscription.
Register online
today!

x
RISKXtra
Building Management: Access Control
Security is an extremely important aspect of
managing any facility, of course, no matter
how big or small the building may be. For
many years, plenty of building owners and
managers chose to establish highly visible
patrol regimes conducted by security officers to
reduce criminals’ opportunities to commit
crime. Although such patrols act as a visible
deterrent, the most effective option is a
physical access control system such as a
security portal that operates 24/7.
These control systems provide the most
effective way in which to allow authorised
people entry, while acting as a deterrent or a
physical barrier for the unauthorised. In
addition, as well as providing unmanned
security and preventing tailgating around the
clock, a physical access control system can
help companies keep track of the number of
visitors entering the building each day.
Tailgating, which is where a person gains
entry to a building or restricted area without
presenting a valid security permit such as an ID
card or a badge, is one of the most common
causes of unauthorised entry. Also known as
‘piggybacking’, it can occur at any entrance or
exit. All buildings are potentially vulnerable.
In the majority of cases, tailgating happens
unintentionally and is carried out by authorised
personnel unwittingly (for example, when
someone follows a colleague through a
turnstile or speed gate without using their own
pass, or when someone holds the door for
another person, which people are inclined to do
out of kindness). In strict access controlled
environments, however, this can cause major
problems as it may allow would-be intruders to
gain easy entrance into sensitive and highly
restricted parts of the building.
People and assets placed at risk
It’s worth noting here that it’s more common,
and much easier, for an unauthorised person to
gain access into a building or restricted area by
closely following another person through an
entrance, rather than duplicating security
passes or hacking an IT system.
Despite – in most cases – tailgating occurring
innocently, it can put the safety of people and
any assets stored in the building at risk should
an intruder (or intruders) with malicious intent
in mind enter a restricted area of the building in
this way. In commercial buildings, it could also
result in episodes of sensitive data being
stolen, or perhaps valuables being removed
from staff cloakrooms.
For sectors such as the leisure industry,
where controlled access is required, people
may resort to tailgating to gain free entry,
Techniques for Tackling
the Tailgaters
which results in a loss of revenue for
businesses such as leisure centres and gyms.
Once entrance control systems have been
bypassed through tailgating, it’s almost
impossible to confirm who has the right to be in
the building and who doesn’t without rechecking
everyone’s ID badge, card, biometrics
or PIN. In addition, in the event of an
emergency, if an individual isn’t recorded as
being in the building, even if they do have the
authority to be on the premises, then they’re
unaccounted for during a headcount.
It’s for these very reasons that a good deal of
effort has gone into developing modern
entrance control systems that actively prevent
unauthorised access and tailgating.
Many of the latest devices work by only
permitting one authorised person to enter or
leave the building at once using an intelligent
physical barrier, or electronically by
incorporating sensors that detect when an
unauthorised individual attempts to ‘piggyback’
their way into the building.
Making the right choice
When it comes to choosing an anti-tailgating
device, the most appropriate system depends
on the specific entry point that needs to be
secured. The options range from mechanical
and optical turnstiles and security portals
through to smart access control systems
integrated within a building’s existing
infrastructure and access control system.
Whether it’s a
commercial office or a
hospital, managers
and owners must
account for the safety
of a building’s
occupants. As times
and technologies have
changed, so too have
the solutions available
to provide more
effective entrance
security. Here, Iain
Entwistle looks at the
problems that can
arise as a result of
security ‘tailgating’
and how this process
can be prevented
23
www.riskxtra.com>

x
RISKXtra
Building Management: Access Control
Iain Entwistle:
Product Marketing Manager at
Meesons A.I. Ltd
Security portals can prevent unauthorised
access and are a good choice where 24/7
unmanned access control is required. Portals
are a standalone air-lock unit providing a high
level of security and very effective at preventing
tailgating. Some such portals incorporate an
APD (Anti-PiggyBacking Device) which scans
the portal with an ultrasonic sensor to ensure
that only one person has entered. If more than
one person is present in the portal, an alarm is
triggered and the transit is denied.
APDs are therefore highly capable of
detecting whether there’s more than one user
in the portal at any given time.
In larger portals, a two-zone pressure mat is
usually incorporated to add an extra verification
parameter, which requires the person to stand
in a specification zone when inside. It’s worth
bearing in mind that some systems using
weight sensors require cutting into the floor
and can have a maximum weight limit, resulting
in additional works/cost or a solution that’s not
fit for purpose. It’s always worth asking these
kinds of questions before specifying a security
portal as it avoids any complications and
additional costs further down the line.
In buildings such as banks and Data Centres
and for Critical National Infrastructure, where
higher levels of security are required, it’s
recommended that alternative glazing is
considered, including anti-vandal and bulletproof
specifications. It may also be necessary
to incorporate metal detectors into the portal.
Further peace of mind for specifiers and end
users is available through product approvals
such as the Loss Prevention Standard LPS 1175
that ensures the delay within ‘Deter, Detect,
Delay’ to allow other security protocols to be
actioned should a tailgating attempt escalate to
a physical attack. LPS 1175 affords reassurance
that products meet the highest security
standards of intruder-resistant building
components, strong points, security enclosures
and free-standing barriers.
Testing and surveillance audits
Third party certification issued by the Loss
Prevention Certification Board is based on a
combination of testing and ongoing
surveillance audits. Importantly, this provides
security specifiers with another level of
assurance that LPS 1175-rated security portals
“Once entrance control systems have been bypassed
through tailgating, it’s almost impossible to confirm who
has the right to be in the building and who doesn’t without
checking everyone’s ID badge, card, biometrics or PIN”
will continue to deliver the performance
achieved during testing procedures.
Security portals for employee-only access
points, such as service areas and back offices
where higher numbers of staff may come and
go, also reduce operating costs as the need for
higher levels of security personnel is reduced
within such areas.
For mixed use developments, where a high
aesthetic brief is set and a security team is
already in place, speed gates are a popular
choice. Anti-tailgating is incorporated through
the use of sensors that cause the glass wings
to close on unauthorised users who attempt to
follow closely behind. When an attempt at
tailgating takes place, security officers are
alerted through an in-built alarm system, which
can be programmed for manned intervention.
In order to increase the level of security and
assist officers still further, speed gates may be
supplied with a unique pressure-sensitive
cabinet top feature. This will sound an alarm
and/or alert security via the access control
system should an individual use the cabinet to
attempt to climb over the glass wings.
Option of remote control
A ‘fail safe’ feature that can be activated during
an emergency, thereby avoiding the need for a
separate emergency exit, can also be
incorporated into these designs.
In addition, an optional control panel device
for remote controlling of the speed gates,
which can be free-standing or mounted to a
desk, will allow security personnel or reception
staff to control multiple lanes per panel.
Bar turnstiles, which comprise a barrier arm
that’s installed at waist height and electricallycontrolled
using an access card, are also an
option where minimal aesthetics are required.
However, they do present a risk of individuals
attempting to climb over or under the bar
(although this issue has now been addressed
by the development of infrared anti-climb
sensors within systems that alert security
personnel). There are also full-height turnstiles
that present a more robust physical barrier.
The options available to end users for
increasing levels of building security are
continuously developing, and particularly so
when it comes to entrance control solutions
designed to prevent tailgating. LPS 1175 is an
important security standard for forced entry
resistance. Security specifiers who select LPS
1175-rated security portals can do so in the full
knowledge that they offer a very robust
entrance control solution that has the ability to
stop malicious attackers attempting to gain
forced entry in their tracks.
24

x
RISKXtra
Advertisement Feature: HVM Solutions Guide
Blocking Tactics: Developments in HVM
The use of vehicles as
a means to undertake
a range of crimes,
whether they be acts
of terrorism, ram-raids
or attempts at
vandalism, has been a
prominent feature of
news headlines
throughout 2018.
Risk Xtra outlines
some of the latest
security solutions
available to practising
risk management
professionals
With the ever-evolving nature of vehiclecentric
criminal attacks requiring even
greater innovation on the part of
security professionals when it comes to
mitigation, it’s good to know that there are
specialist manufacturers on hand to ensure that
individuals and companies can be protected
from potential threats and that both buildings
and their contents may be very well secured.
One of those manufacturers, namely Heald,
invests significant funds in R&D to enhance the
range and functionality of products available on
the market that meet the needs of whichever
perimeter needs to be protected. This has led
to the company’s award-winning Matador
product evolving to fit a variety of end user
requirements. Available as a static or sliding
bollard and in surface or shallow mount
configurations, the Matador has developed to
offer multiple power functions including
hydraulic and electro-mechanical.
While used to protect some of the world’s
most prestigious buildings and pedestrianised
areas (such as the historic French Quarter in
New Orleans), the Matador is also the perfect
solution for temporary events due to its quick
and easy installation and the ability to operate
this solution from a generator or temporary
power supply. Earlier this year, the Matador
secured the World Snooker Championships,
held as always at The Crucible in Sheffield.
The only product of its type available on the
market to be IWA 14 tested to halt a 7.2-tonne
truck travelling at a speed of 40 mph, the
Matador offers a static solution, but can secure
a perimeter in such a way that still enables
access to authorised vehicles and emergency
responders in the event of an incident occurring
within the perimeter zone.
Risk and security managers should note that
Heald designs and manufactures a range of
perimeter protection products, from road
blockers and bollards right through to other
forms of traffic control solutions.
Range of services
Frontier Pitts is the award-winning British
manufacturer of security gates, automatic
barriers, road blockers, rising and static
bollards, pedestrian control gates, turnstiles
and the Terra HVM range which has been
successfully IWA 14 and PAS 68 impact-tested.
From its UK headquarters in Crawley, Sussex,
Frontier Pitts can provide a complete range of
services including design, site surveys,
manufacture, installation and maintenance.
Since 2004, the business has fulfilled
customers’ requirements to protect their sites
from acts of terrorism where a vehicle may be
used as a weapon. Today, Frontier Pitts has the
complete range of its impact-tested products
listed within the Centre for the Protection of
National Infrastructure’s (CPNI) catalogue of
such solutions. This includes a range of HVM
solutions to mitigate ‘vehicle as a weapon’-
style attacks. The company’s Terra gates, Terra
barriers, Terra blockers and a wide range of
rising and static Terra bollards have all been
impact-tested to IWA 14 and PAS 68.
Retractable bollards
One of Frontier Pitts’ latest products is the HVM
PAS 68 Terra Quantum side-folding retractable
bollard. With a shallow foundation depth of
only 450 mm required on site, the Terra
Quantum bollard has been successfully PAS 68
impact-tested to halt a 7.5 tonne vehicle
travelling at a speed of 30 mph (48 kph),
resulting in zero penetration.
With the security threat ever-changing,
Frontier Pitts has also designed the LPS 1175 bifolding
and sliding Platinum Security Gate
range to Security Rating 2 and 3, which means
that this solution is proven to withstand
forcible attack by an intruder using readily
available hand tools.
Security and risk managers should note that
the Terra Diamond turnstile boasts a Security
Rating of 3 and 4 and has been ‘Approved for
Government Use’ by the CPNI.
To mitigate multiple threats, it’s the case
that a layered security approach should be
employed. LPS 1175-rated security gates can be
interlocked and backed-up by HVM equipment
in order to achieve the ultimate protection.

INTRODUCING HEALD’S
NEW ELECTRO MECHANICAL
PRODUCT RANGE
BE SMART!
Read Risk Xtra Magazine on
your tablet or smartphone
using the FREE app
OUR EM RANGE USES
60% LESS ELECTRICITY
TO OPERATE!
QUICKER INSTALL
REDUCED CARBON FOOTPRINT
NO LARGE CABINET
FIND OUT MORE AT
INTERNATIONAL SECURITY EXPO
STAND NUMBER K50
28 - 29 NOVEMBER
www.heald.uk.com
+44(0)1964 535858
info@heald.uk.com
Heald Ltd
@healduk

2018
OLYMPIA LONDON, 28 – 29 NOVEMBER 2018
EVOLVING SECURITY
THROUGH INNOVATION
12,500+
Global Visitors
350+
Commercial &
Homeland Exhibitors
110+
Countries
Represented
Topics covered
Global Counter Terrorism
Crisis Response & Business Continuity
Critical National Infrastructure
Hotel, Retail, Night Time Economy
& Education Security
NEW for 2018
Cyber, IT and Data Security
Designing Out Terrorism
Major Events & Stadium Security
Building & Facilities Management
Transport & Border Security
Back by popular
demand
INTERNATIONAL SECURITY EXPO
Hear from cities
blighted by recent
terrorist attacks
Protecting Urban Spaces
Physical products showcased in an urban and crowded places environment with scenario based live demonstrations.
Bollards, blockers, street furniture and more over watched by CCTV surveillance and tracking all feeding back to a central control room.
NOT TO BE MISSED!
Free to attend register now: www.internationalsecurityexpo.com

FIRE SAFETY
Management & Installation
Fire Protection and Prevention
with Technology and Innovation
x
Special Supplement in association with:
RISKXtra

FIRE SAFETY
What you need to know about installing
fire detection and alarm systems
What do you need to know in order to safely and correctly install a fullyfunctioning
fire detection and alarm system within a building?
There are many aspects at play here: fire safety
legislation, Building Regulations, Health and
Safety (since there’s plenty of opportunity for
accidents when working with tools and up ladders)
and knowing what to do with the old equipment
(there are laws governing disposal of electrical
waste). These are not necessarily the first things
that spring to mind. Having a secure knowledge of
system components, fault-finding and installation
methods are the far more visible and vital parts of
the role, but all of the above help towards
broadening the installer’s knowledge.
Luckily, all of the above can be learned on the
Fire Industry Association’s (FIA) new qualification
pathway. The qualification pathway is currently the
only pathway of courses that will lead to a
nationally recognised qualification set at Level 3 on
the Regulated Qualifications Framework. This
translates as a Level 4 on the European
Qualifications Framework, meaning that those
individuals undertaking the qualification will meet
the level specified in the EN 16763 Services
Standard, which was released last year.
EN 16763 ‘Services for Fire Safety and Security
Systems’ outlines the minimum levels of education
that technicians should have at their disposal.
Although not mandatory by law, the Services
Standard specifies that those working on a system
should be qualified to at least Level 3 on the
European Qualifications Framework.
In a nutshell, EN 16763 lays out a Europe-wide
benchmark of quality that should be expected and
maintained throughout the industry. It sets out all
the prerequisites for the levels of skill, knowledge
and education that should be expected.
EN 16763 is all about hitting quality standards
for fire safety systems, focusing on who’s actually
doing the work and whether they’re doing it
correctly. With life safety systems, it really isn’t
acceptable that, in 2018, people are able to claim
that they can do the job without a certain level of
expertise behind them, but that’s what this
standard aims to define. The message is clear –
education is key. Fire detection and alarm installers
must be educated to at least Level 3 on the
European Qualifications Framework.
“The FIA’s
qualification pathway
is currently the only
pathway of courses
that will lead to a
nationally recognised
qualification set at
Level 3 on the
Regulated
Qualifications
Framework”
30
www.riskxtra.com

Thankfully, those taking the installation
qualification can rest assured in the knowledge
that they’ll be able to both meet and exceed the
standard, providing employers with quality
technicians and the customers of installation
companies with greater confidence in the level of
skill that they’re purchasing.
Qualification structure
There are four units to complete in order to become
qualified, and each has a range of topic areas that
are taught in detail from a syllabus set by the FIA’s
Awarding Organisation (ie the examination body).
(1) Foundation Course
(2) Health and Safety
(3) Environmental
(4) Advanced Installer
Although these courses are numbered 1-4 in
this list, it’s important to note that this is just a
suggested order of study. The learner must study
the Foundation Course first and then the remaining
three units of the qualification can be studied in
any desired order of preference.
After passing all four units, the learner will then
be awarded the FIA Awarding Organisation’s Level
3 in Fire Detection and Alarm Installation, Theory
and Regulatory Requirements.
“In a nutshell, EN 16763 lays out a Europe-wide benchmark of
quality that should be expected and maintained throughout
the industry. It sets out all the prerequisites for the levels of
skill, knowledge and education that should be expected”
(8) System Design (according to the requirements
of BS 5839)
(9) Explosive Environments
(10) False Alarms and Unwanted Fire Signals
Health and Safety
The eight areas of study necessary for this unit are
as follows:
(1) Health and Safety Legislation
(2) Manual Handling
(3) Working at Heights
(4) Lone Workers
(5) Provision and Use of Work Equipment
Foundation course
This unit is the first unit to be studied on the
qualification pathway. The Foundation in Fire
Detection and Alarms is a two-day intensive course
and runs throughout the year at locations across
the UK. Training is delivered by professionals
within the fire industry who have a background of
both training and extensive technical expertise.
Instruction is delivered in class through means of
PowerPoint presentation and a course handbook.
As the name ‘Foundation’ suggests, this course
covers a broad base of knowledge that will prepare
learners to undertake further fire detection and
alarm courses. There are ten areas within the
syllabus and all of these are assessed.
Throughout the course, all of the areas are
covered by the trainer. More extensive notes are
available in the course Handbook, which is given to
learners on the first day of study.
The ten areas of study are as follows:
(1) Legislation
(2) Standards, Codes of Practice, Guidance and
Technical Notes
(3) Working with Third Parties
(4) Documentation
(5) Fire Events
(6) Passive protection
(7) Fire Detection and Alarm System Technology
www.riskxtra.com
31

FIRE SAFETY
“All pre-learning materials are freely available whether
you’ve booked a course or not, so you can get started even
before you’ve booked. However, attendance in class is a
necessary part of the qualification, so these two methods of
study should complement each other”
About the FIA
The FIA (Fire Industry
Association) is a not-forprofit
organisation. We’re
the leading Trade
Association for the fire
industry in the UK. The
education and training that
we offer through our
qualifications and industry
recognised courses exists
to provide you with a high
level of knowledge and
understanding that will
help to develop your career
and build your business.
Our courses are
delivered by experienced
professionals from the
industry, who can not only
deliver the learning, but
also answer questions and
provide real-life examples,
enabling all delegates to
deliver excellent results for
their host organisations.
In tandem with our
website (www.fia.uk.com),
we aim to provide a service
that both contributes to
and promotes technical
developments in the
industry. Standards are
constantly being revised
and updated and it’s vital
to stay up-to-date with the
changes. By taking our
qualifications and courses
and using our extensive
Resource Library, you can
be sure that you’ll be well
informed of any changes as
and when they happen.
Regulations (PUWER)
(6) Personal Protective Equipment (PPE)
(7) Asbestos
(8) Control of Substances Hazardous to Health
(COSHH)
Environmental
This unit also has eight areas of study. These are:
(1) Environmental Law
(2) Restriction of the Use of Certain Hazardous
Substances in Electrical and Electronic Equipment
(RoHS)
(3) Waste Electrical and Electronic Equipment
(WEEE)
(4) Waste Management
(5) Energy Consumption
(6) Ionising Radiation Regulations IRR17
(7) F-Gas
(8) Ozone-Depleting Substances (ODS) (Halon)
Advanced Installer
This unit is designed to further develop knowledge
and understanding gained in completing the
Foundation Course. While the Foundation
introduces a range of topic areas, this unit focuses
in even further, examining how fire safety law,
Codes of Practice and guidance can be applied to
the role of the systems installer.
You will then develop your knowledge and
understanding into the application of systems
installation, systems testing and fault-finding and,
of course, the documentation necessary for
installation and handover to other key
stakeholders (including commissioning
technicians and end users).
The course has five areas of study (labelled A-E
on the syllabus set by the FIA Awarding
Organisation). These are as follows:
(1) BS 5839/IS 3218
(2) The Construction (Design and Management)
Regulations (CDM) 2015
(3) Building Regulations
(4) Installation Methodology
(5) Documentation
Assessment procedure
Long gone are the days of putting pen to paper
(well, maybe not so long). All assessments on the
qualification pathway are taken digitally on a
tablet at the end of each individual unit.
The assessment for each course is a series of
multiple choice questions designed to challenge
the knowledge and understanding of the learner.
As the learner progresses from the Foundation
Course to the other units, the knowledge gained in
previous units will be built upon and tested.
As with all formal examinations, the usual rules
apply: no talking, texting, conferring or reference
material allowed. However, the advantage here is
that those walking out of the examination can be
proud of the fact that they passed on their own
brain power and knowledge alone (and, later on,
can use that knowledge in the workplace).
Pre-learning materials
For those worried about examinations, fear not.
The FIA has put together a number of pre-learning
materials that are freely available on our website.
A word of advice... Use the pre-learning
materials to study before attending the course and
don’t neglect this. These are an important part of
the course and help learners on the way towards
achieving a pass for the qualification.
Those who do pre-study tend to do a lot better
on the courses than those who don’t, purely
because attending the courses will then draw on
anything you may have learned through self-study
and develop that knowledge even further.
All pre-learning materials are freely available,
whether you’ve booked a course or not, so you can
get started even before you’ve booked. However,
attendance in class is a necessary part of the
qualification, so these two methods of study
should complement each other to realise a more
rounded learning experience.
Other courses
The FIA will be releasing other units in
Maintaining, Designing and Commissioning Fire
Alarm Systems over the coming weeks and months
(at the time of writing one of the units listed is
gearing up for release), so now is the perfect
moment to start on the initial units if you’re
interested in becoming qualified.
The best way in which to remain up-to-date with
the latest developments is to head to the FIA’s
website and sign up for the training newsletter.
Simply go to www.fia.uk.com and click ‘Sign up
to e-News’ at the top of the page
www.fia.uk.com
32
www.riskxtra.com

TCP/IP
network
PAVIRO
Public Address and Voice Evacuation System
with Professional Sound Quality
Flexibility from the start
PAVIRO offers you smart features making system specification and installation faster, simpler
and more efficient than ever before. Design a complete system with just a few parameters. Avoid
unexpected costs thanks to the system’s extreme flexibility and low operational costs. What‘s
more? The new Dante network interface module ensures IP networking functionality allowing
larger areas with more audio channels with up to four decentralized controllers.
Find out more at boschsecurity.com

FIRE SAFETY
Hochiki launches FIREscape+
FIREscape+ features
Hochiki Europe’s
highly successful and
cost-effective
FIREscape emergency
lighting system, as
well as its ESP
intelligent range of
fire detection products
Hochiki Europe brings combined
emergency lighting and fire
detection system to market
ochiki Europe, the leading manufacturer of
Hlife safety solutions, has launched
FIREscape+, an innovative system which
combines emergency lighting, fire detection and
wayfinding technology. The solution, which is
the first of its kind, significantly enhances
building occupants’ safety during an emergency,
while simultaneously offering additional
efficiencies for building owners.
FIREscape+ features Hochiki Europe’s highly
successful and cost-effective FIREscape
emergency lighting system, as well as its ESP
intelligent range of fire detection products. By
combining the two ranges and creating dual
function exit signs, Hochiki Europe can now
offer integrated life safety and innovative
wayfinding technology in one system.
Innovative wayfinding
In the event of a fire, dynamic emergency exit
signs will illuminate with a red cross to prevent
building occupants using an escape route
compromised by fire. Meanwhile, in unaffected
areas, the exit signs will illuminate with the
internationally recognised BS EN ISO 7010 green
graphic to safely guide building occupants to
the closest available emergency exit. This
ensures that building occupants are given the
best possible opportunity to escape, even if
they’re unfamiliar with the building layout.
Intelligent false alarm
management
The integration of Hochiki Europe’s Enhanced
Systems Protocol technology also offers a
number of benefits when it comes to false alarm
management. Every 24 hours, the system
checks for any changes to the environment and
recalibrates the sensors to suit.
In addition, each sensor can be individually
adjusted to match the expected risk of its
environment, while alarm verification
technology uses time delay algorithms to
eliminate unwanted alarms. These features help
to ensure that the life safety system operates at
optimum performance at all times.
Efficient installation and
maintenance
FIREscape+ is the only truly combined fire
detection and emergency lighting solution
currently available on the market. A single panel
controlling both fire detection and emergency
lighting units on a single low voltage cable can
cut costs by up to 40%.
Ian Watts, emergency lighting manager at
Hochiki Europe, noted: “We know that our
customers, and especially those working with
large premises, want to be able to specify and
install the most effective life safety solutions at
an affordable cost. By integrating our fire
detection and emergency lighting technology,
we’re able to offer an innovative range that
helps them do just that.”
Watts added: “The launch of FIREscape+ has
been greatly anticipated. Now, the release to
market marks another exciting development for
Hochiki Europe and a great milestone for the
Hochiki Corporation, which celebrates its 100th
Anniversary this year.”
For more information about FIREscape+ visit
www.hochikieurope.com/product/firescapeplus
34
www.riskxtra.com

What Fire System Would You Choose
to Protect Scotland’s Most Sacred Site?
Iona Abbey is a globally important
heritage site, only accessible by two
ferry rides, when the weather allows.
You can imagine the fire protection
challenges.
It’s protected by an Advanced intelligent
fire system, because our products lead the
way in performance, reliability and ease-ofuse.
From simple sites to large, challenging
networks we continue to set the Standard in
Fire Systems around the world.
Contact us now for a demo or to discuss your site.
www.advancedco.com
Tel: +44 (0)1670 707 111 Fax: +44 (0)1670 707 222
Email: sales@advancedco.com Web: www.advancedco.com

FIRE SAFETY
Pulse Alert VADs
lower installation
costs, making the
latest fire evacuation
technology affordable
and, importantly,
without compromising
performance
EN54-23 for VADs
Pulse Alert Technology is fully
compliant with EN54-23, the
European Standard for Visual
Alarm Devices (VADs). EN54-
23 specifies the minimum
performance requirements for
VADs, providing performance
criteria and test methods in a
uniform and consistent way.
This affords manufacturers a
mechanism to specify VAD
device performance, allowing
system designers to choose
the most appropriate device
for a particular application
Pulse Alert Technology
Fire alarm systems should be able to evacuate Sonos Pulse and Nexus Pulse LED circuits are both
everyone. Relying on audible fire alarm
designed to provide over five years of continual
notification alone, however, disadvantages operation without any degradation of light output
those individuals with hearing impairments or • Lens Technology The optics for both ceilingmount
and wall-mount versions are optimised to
those working or living in a sound-reducing
environment. Even something as simple as wearing produce an even light dispersion over the covered
a pair of headphones could prevent someone from area. This minimises ‘hot spots’ and ensures that
hearing an audible fire evacuation warning. In all of the available light is contributing towards
order to truly evacuate everyone from a building, alerting people of a fire emergency
fire alarms should signal effectively using light as
well as sound.
Coverage details
Klaxon Signals’ Pulse Alert Technology is a The simpler an evacuation system is, the more
beacon warning system which produces a light effective it’s likely to be. Sonos Pulse and Nexus
output that can protect most rooms with just a Pulse fulfil evacuation requirements with just a
single device. Using new LED lighting technology single device for most rooms. Ceiling-mounted
derived from automotive applications, it disperses devices are rated at 15-metre diameter coverage,
light evenly and efficiently, maximising its
while wall-mounted devices can cover an 11.5 x 11.5
effectiveness. The solution’s
square metre room. System
patented electronic design also
design requirements are
maximises electrical efficiency
therefore made easier,
and reduces current
evacuation messages are
consumption, minimising the
clearer and more people are
cost of ownership and allowing
protected than ever before.
more devices to be installed on
a single alarm system.
Energy efficiency
Pulse Alert Technology
Pulse Alert technology ensures
provides all the benefits that an
that Klaxon’s VADs notify all
EN54-23-compliant system can
personnel of a fire emergency
bring, while answering all of the
while also reducing the power
design challenges in doing so. This
consumption of each device. This means
means a greater coverage area with lower current that systems can be upgraded without imposing
consumption and greater flexibility for system any restrictions on the number of devices used or
designers, as well as reduced cost of ownership for compromising system performance.
end users – all without compromising on
Low power consumption is vital to fire system
evacuation notification performance.
designers and installers – Sonos Pulse and Nexus
Pulse ensure that all buildings can realisee the
Pulse Alert Technology
very best fire evacuation scenario.
Pulse Alert is able to provide EN54-23-compliant
visual alarm signalling without any increase in Low installation costs
power consumption because of three technological Pulse Alert VADs devices lower installation costs,
breakthroughs:
making the latest fire evacuation technology
• Intelligent Power Management Pulse Alert affordable and without compromising
converts power intelligently, minimising power performance. A wider coverage area per device
usage and presenting a near-perfect current source reduces both the number of devices required and
to fire alarm panels. This means the Sonos Pulse expensive cabling requirements, while in parallel
and Nexus Pulse VADs require less power than low current consumption removes the need for
previous models, while also exceeding EN54-23 additional power supplies.
light output requirements
With a greater coverage pattern, fewer devices
• LED Drive Pulse Alert features the latest high are needed to cover open areas. Sonos Pulse
power LED technology and advanced LED drive ceiling-mount units have a 15-metre coverage
circuitry, further improving efficiency, light output diameter capable of covering a 10 x 10-metre room
performance and long-term device reliability with a single device.
36
www.riskxtra.com

FIRE SAFETY
End-to-End Fire Protection
Integrating fire alarm
and voice evacuation
systems into networks
on an IP-level
emerges as a futureproof
strategy with
significant benefits
uk.boschsecurity.com
38
The combination of fire alarm and voice
evacuation systems has emerged as the
status quo over the past few years across a
wide range of sites. Significant safety benefits
arise from combining fire alarms with clear voice
alarm capabilities as studies have demonstrated
that voice alarm with clear instructions
significantly improves fire evacuation times when
compared to mere noise alarms.
Future levels of technology and automation in
buildings and industrial facilities are only going to
rise. Electrical hazards, combustible chemicals and
complex as well as extensive cabling have further
increased the fire loads. Smouldering cable fires
develop slowly and over extended periods of
overheating, subsequently placing high demands
on an addressable system of panels for fire
detection at an early stage. These IP-based
solutions are ideally combined with voice
evacuation to move people out of dangerous areas
as fast and efficiently as possible.
Need for IP network integration
However, the combination of fire alarm and voice
evacuation doesn’t equal integration of these
systems on a network level. In many installations,
fire detection and emergency PA technologies
currently co-exist as separate systems, which can
prove to be somewhat roblematic.
Bosch covers fire detection and evacuation with
a suite of compatible solutions. The company’s
modular Fire Panel 5000 Series includes highquality
panels and peripherals designed for
accurate and early detection and high immunity to
false alarms. A typical network can encompass 20
panels with up to 32,000 detection points. At
Munich Airport, the company has installed 19
panels and 18,000 automatic fire detectors.
On the other side, Bosch’s proven Plena,
Praesideo and PAVIRO voice evacuation systems
deliver clear voice messages, including prerecorded
warnings for emergency situations. In
terms of scalability, the Plena Voice Alarm System
supports small applications with up to six zones
and 254 fire detectors, while PAVIRO supports
medium-sized venues with up to 492 zones and
2,000 detectors. Praesideo secures larger
buildings and complex configurations.
Interfacing these two technologies is simple.
Without the need for additional hardware or
cables, Bosch’s Smart Safety Link creates a standalone
interface between voice evacuation and fire
alarm systems in buildings of all sizes. It requires
no installation of additional General Purpose Inand
Outputs between voice evacuation controllers
to distribute the alarm trigger, in turn bringing
down installation times.
Enhanced functionality and scalability
Aside from ease of installation, Bosch’s Smart
Safety Link achieves new levels of building safety
by creating a single IP-based interface (or multiple
interfaces) between the company’s performanceproven
fire alarm and voice evacuation systems.
Fully customisable to client specifications, the
scalable system supports a new generation of
dynamic evacuation protocols for a fast and
targeted emergency response.
These protocols include phased evacuation or
multi-staged dynamic evacuation targeted to
specific zones in a building (for instance to give
priority to evacuating people in closer vicinity to a
fire). The system provides targeted acoustic and
visual signals to guide people to safety and can be
configured into six-to-500 zones depending on
building size and complexity. This also allows for
evacuating large buildings such as Shopping
Centres, train stations or industrial facilities in
several phases in order to ensure orderly vacation
of the building and prevent panic or delays.
The system is also highly scalable. With only
one fully-expanded panel, complex medium-sized
systems with up to 4,000 detection points can be
created. The networking of several panels lends
itself to wide area coverage at large sites and
between facilities across property lines.
In addition, the combination of Ethernet and
controller area networking allows the greatest level
of flexibility for all kinds of applications, as well as
the connection of even more panels in a single
network structure.
The system can exchange data with
infrastructure solutions such as the Building
Integration System via open IT standards including
OPC. This unlocks a range of possibilities for
integration with other critical infrastructure
systems (such as video surveillance infused with
intelligence and building automation).
Ultimately, investing in the integration of fire
alarm and voice evacuation systems provides
buildings of all types and sizes with end-to-end fire
protection, from early-stage detection through to
an orderly evacuation. It also affords system
operators the peace of mind of knowing that their
systems are future-proof in light of fire safety
legislation as well as technological progress.
www.riskxtra.com

FIRE SAFETY
Kentec introduces
four-way Relay Unit
New unit eases maintenance without
compromising safety on site
entec, a leading life safety
Kcontrol systems manufacturer, has launched a four-way
Relay Unit aimed at both conventional and addressable
extinguishing systems in order to enable key maintenance to be
undertaken without compromising safety.
The four-way Relay Unit enables third party systems (eg
HVAC, security and access control, etc) connected to the fire
alarm panel to be isolated such that repairs and maintenance can
be completed without compromising the integrity of the overall
installation. Volt-free contacts mean that voltages are kept
completely separate, in turn increasing overall system safety.
The solution features four pairs of up to 125 V DC at 5 AMPs or
250 AC at 10 AMPs-rated relay contacts housed in a robust sheet
steel enclosure that can be operated using switch negative
signals from up to four control panels. Isolated switches and
status LEDs are provided for each relay.
Kevin Swann, managing director at Kentec, has stated that the
four-way Relay Unit is an important addition to Kentec’s portfolio
of high quality and reliable safety control systems.
“The Relay Unit enables easy isolation for installers and
engineers,” explained Swann, “and with relays each up to 10
AMPs, it has the capacity to isolate high power equipment. It’s
the ideal demarcation point for third party equipment.”
The UK’s leading
independent manufacturer
and supplier of Alarm
System Products and
Accessories for Building
Infrastructure Systems

FIRE SAFETY
Vimpex makes move into manufacturing
Vimpex is a UK-owned business that has
been at the forefront of fire alarm and
evacuation equipment and alarm system
accessory products for nearly 25 years. The
company is proud to be a trusted distributor,
and is now even more prouder to bring its
expertise into the manufacturing of those same
life-saving products.
Thanks to a recent grant funding from bodies
such as South East Business Boost, Southend
Best Growth Hub, Manufacturing Growth
Programme and, most valuably, Essex Rivers LLG
(LEADER), the business has transformed itself
into a specialist electronics manufacturer.
This evolution in direction will now provide
Vimpex with a platform for significant growth
through increased efficiencies, development of
its own products and IP – such as Identifire, Fire-
Cryer and Hydrosense – along with an energetic
push for growth through export. The company is
excited by the opportunities created by this
investment, which will see it develop markets
for Vimpex-produced and distributed products.
This move into a manufacturing model has
allowed Vimpex to create a phenomenal
capacity for business growth. Not only will the
business grow financially though this move, but
it will also create significantly more skilled jobs
for local people. That’s something about which
the company is extremely proud.
Vimpex’s experience in the distribution side
of this industry has established its reputation
worldwide, and it now looks forward to leading
this exciting venture into manufacturing.
Takt is
the panel
for larger sites
Taktis® is Kentec’s most powerful and sophisticated analogue addressable
fi re panel. Intelligent and technically robust, the next generation Taktis 16L has
enhanced integration and networking capabilities designed to meet the current
and future needs of larger buildings and installations. As a truly Open Protocol
panel it offers installers and their customers maximum fl exibility in systems’
design, site-customisation and in the third-party devices that they use.
+44 (0)1322 222121 www.taktis.co.uk

FIRE SAFETY
Ensuring Fire System Effectiveness at Historic Sites
The characteristics of heritage buildings tend to
be complex. Ensuring the safety and integrity
of occupants, infrastructure and contents
within is of paramount importance, and especially
so where large numbers of staff and visitors are
involved, such as in stately homes, museums or
other historical attractions.
An in-depth fire risk assessment covering active
and passive protection methods needs to be
carried out and, in the case of historic structures,
normally needs to be supplemented with a more
in-depth fire safety management plan in line with
the Regulatory Reform (Fire Safety) Order 2005.
Discrete detection
Features such as irregular room geometry, large
windows, archways, open fireplaces and high,
suspended or decorative ceilings can create
detection challenges. The standards for detector
placement are dictated by BS 5839 in the UK,
which also gives detailed guidance on the options
for different detection types in unusual spaces.
Another key to effective fire safety is to ensure
that critical or high-risk areas, such as kitchens,
boiler rooms or gallery spaces, are specified for a
higher level of detection, using single or multiple
detector types so that incidents are confirmed as
quickly as possible.
Extreme care must be taken to ensure that
smoke can reach detectors. For this reason, there
are many detection methods suitable for historic
structures. Commonly, you may find many of them
on a single system, including:
• Optical smoke detectors – the most common type
of detector with many detection options available
and analysis methods used
• Heat detectors – commonplace in spaces such as
kitchens, where steam from cooking smoke is very
often present
• Wireless point detectors – these offer a far less
invasive solution to their cabled counterparts and
are faster and cheaper to install
• Aspirating detectors – widely used in harder to
access spaces such as cellars or attics, they
continually sample the air several times a second,
and can be set to various sensitivity levels
• Beam detectors – work well in taller spaces such
as great halls or chapels and function on the basis
of smoke obscuration of a beam of light
• Video and CCD-driven flame detectors – flames
will often (but not always) be detected after
smoke. These devices are useful where quickly
visible flame fires are more likely
• Linear heat or heat sensing cable – This can be
run through any area and is especially suited to
sensitive installations. It alerts the fire system to
tiny changes in temperature, even pinpointing the
exact location
Matters of compliance
BS 5839-1:2017 recommends that the system user
appoints “a single, named member of the premises
management to supervise all matters pertaining to
the fire detection and fire alarm system”. This
places responsibility firmly in the hands of one
individual whose role is “to ensure that the system
is tested and maintained in accordance with the
recommendations of this part [Section 7: User’s
responsibilities] of BS 5839”.
Service Tool from Advanced is a simple and
efficient tool offering a range of features that can
demonstrate proof of servicing by allowing you to
download service reports, inspect device history
and keep track of service schedules. This tool for
powerful and flexible service reporting helps to
ensure compliance and delivers peace of mind to
the individual with ultimate responsibility.
In conclusion, historic structures have always
presented a unique challenge for the fire system
industry, but innovation is delivering more choice
and performance for end users, specifiers and
responsible individuals within the sector. The
choices made need to be based on a thorough
understanding of the technology and standards
present within the context of a particular site.
System selection
A fire in any building
can have grave
consequences, of
course, but such
episodes occurring
within historic
structures pose a
particular challenge
for the people and
systems responsible
for protecting them
Advanced has produced a
comprehensive brochure for fire
protection at historic and
heritage sites which is available
by sending an e-mail to:
marketing@advancedco.com
At the centre of any active system is the fire panel – single or multi-loop, standalone
or networked. The choice available is wide and the installation costs are likely to
dwarf equipment prices. For this reason, finding a system that’s easily installed, with
flexible cabling, a range of communication options, multiple cause and effect
options to accommodate the wide range of uses, room sizes, layouts and technical
challenges should be the priority.
A recurring challenge is to make the system as unobtrusive as possible without
impacting performance. Thanks to repeater panels, such as Advanced’s TouchControl
touchscreen, the larger fire panel can be hidden from view. TouchControl is designed
to suit many locations and flush fit, and includes new performance features such as
digital zone plans and active maps highlighting fire status throughout a site.
www.riskxtra.com
41

Evacuate everyone
EN54-23 Approved Fire Beacons
Seminars
EN54-3 Sonders & Beacons
Nexus 105/110/120 Sounders
Sonos Sounder Beacon
Tel: +44 (0)1706 233879

x
RISKXtra
Emergencies and Life Safety: Voice Evacuation
When confronted with an emergency
situation, individuals don’t always react
as expected. It might seem logical to
suggest that, in the event of a fire, people
would panic and react immediately, but this
type of behaviour is considered a myth as, in
many cases, the sound of a fire alarm is either
completely ignored or building occupants
otherwise look for the reaction of others before
doing anything themselves.
Pre-movement time – ie the time it takes from
an alarm sounding to the building occupants
initiating their escape – is very significant and,
in some instances, more significant than the
distance travelled to an exit.
If further proof were needed about the
reluctance of certain people to act
appropriately in a fire alarm situation, it’s worth
remembering the events of 8 May 1979, when a
fire broke out on the second floor home
furnishings department of the Manchester
branch of Woolworths, leading to the tragic
deaths of ten people. It transpired that a
number of customers in the restaurant
apparently refused to leave the store and that
some even continued to queue at an
abandoned checkout. It was suggested that
those in the restaurant section declined to
leave because they’d just paid for their meals.
Since the tragic events of that day, it seems
that little has changed. A survey conducted by
the Building Research Establishment found
that, in the event of a fire, only 13% of people
responded to a bell or sounder warning, while
45% reacted to a written text message display.
What’s particularly interesting is that some
75% responded positively to a spoken message
from a voice evacuation system.
Route planner
Whether it’s a rail terminal, a workplace, a
school, a sports stadium, a Shopping Centre or
a restaurant, the principles of making sure
people are routed to a safe place are the same.
The ability to easily navigate a route to safety is
crucial, yet evacuation from public buildings is
usually hindered by a lack of detailed
knowledge of the internal connectivity of the
building space along with confusing and poorly
thought out instructions.
Studies have shown that occupants tend to
use familiar routes – typically the exit through
which they entered the building. Research
conducted by academics at the University of
Greenwich under the banner ‘Human Behaviour
in Fire Networks’ (HUBFIN) discovered that only
38% of people see passive signage in an
emergency. Voice evacuation systems, however,
are able to communicate any dangers simply,
Building Evacuation:
Let The Voices Be Heard
effectively and without any ambiguity, giving
clear directions on how occupants must react.
Standards and increased support from
manufacturers are helping to further awareness
of the benefits of using voice evacuation
systems. Foremost is BS 5839 Part 8, which is
the Code of Practice for the Design, Installation,
Commissioning, Servicing and Maintenance of
Voice Evacuation Systems. It states that a true
voice evacuation system is a highly secure
public address (PA) solution which includes
several features such as monitoring of all
internal and external circuits, a number of prerecorded
emergency messages, battery back-up
and a secure link to a fire alarm panel.
BS 5839 Part 8 defines five types of voice
evacuation system, ranging from automatic
evacuation to full manual control, with the
specification depending on the cause and
effects of the fire detection strategy. It also
provides specific requirements for audibility
and intelligibility of the system.
BS EN 54 is a suite of European guidelines
that harmonises fire detection and fire alarm
system design, installation and servicing. BS
EN 54-16 specifies that a rack system must be
certified as a complete unit. It’s not viable to
use components from various third party
suppliers, as this doesn’t guarantee integrity
and reliability.
Also, since the Construction Products
Regulation came into force, it’s illegal for a
manufacturer to sell voice evacuation products
Despite the clear
benefits of integrating
voice evacuation as
part of a life safety
infrastructure, there’s
no mandatory
requirement in the UK
to do so. Here, Ian
Bridgewater explains
how such systems can
keep building
occupants safe
Ian Bridgewater:
Director at TOA Corporation UK
43
www.riskxtra.com>

x
RISKXtra
Emergencies and Life Safety: Voice Evacuation
that are not third party certified to EN54-16 for
voice alarm control and indicating equipment,
EN54-4 (covering power supplies) and EN54-24
for loudspeakers.
Thorough risk assessment
As with any proposed life safety equipment
installation, it’s first of all necessary to carry
out a full and thorough risk assessment. The
introduction of the Regulatory Reform (Fire
Safety) Order 2005 (RRFSO) brought together
all the elements of fire safety. It places the onus
on a designated ‘responsible person’ within an
organisation to carry out assessments to
identify, manage and reduce the risk of fire.
When it comes to fire detection, the RRFSO
states that the primary purpose is to detect the
presence of fire at an early stage and provide
audible and/or visual warning to the building
occupants to allow for an orderly evacuation.
Within high-rise buildings, for example,
ensuring that a voice evacuation system is fit
for purpose and commissioned so that, in the
event of a fire, people are guided to safety in a
structured manner is imperative. The latest
state-of-the-art ‘intelligent’ voice evacuation
systems incorporate a number of essential
features that can prioritise which levels to
evacuate first as part of a phased evacuation
strategy, thereby avoiding a potentially
catastrophic mass stampede. This is very
important in multi-use locations where floors
can be used for different purposes.
Most of today’s modern networked systems
are also equipped with a live speech capability
so that, when necessary, the pre-configured
messages may be overridden and people
spoken to directly. Also, if a building houses a
number of people who have impaired hearing, a
voice-based system can be used in conjunction
with flashing beacons to provide a visual
indication that there is indeed a fire alert.
Leading the way
Surprisingly, in the UK there’s no regulatory
requirement for buildings to have a voice
evacuation system installed, even though
buildings requiring phased evacuation can
benefit from an element of voice as part of a
comprehensive detection and response
strategy. This is in stark contrast to some other
countries, such as the United Arab Emirates
“Most of today’s modern networked systems are also
equipped with a live speech capability so that, when
necessary, the pre-configured messages may be overriden
and people spoken to directly”
(UAE), which has introduced some leadership
to this subject with its excellent Fire and Life
Safety Code of Practice.
Now considered one of the world’s definitive
documents on life safety provision, adherence
to this Code of Practice is mandatory on all new
UAE building projects. It classifies any building
with seven or more levels as a high-rise and
states that, in these locations, a voice-based
evacuation system must be used.
However, it isn’t only seven-storey buildings
where this type of fire safety system is a must –
structures larger than 2,800 m 2 , or which have
1,000 persons living or working in them are also
included, as are warehouse or distribution
facilities of 5,000 m 2 or more.
Likewise, Germany’s DIN VDE V 0827
standard for emergency and danger response
systems was implemented in July 2016 with the
objective of providing technical assistance for
emergencies and dangerous situations.
Requirements are now in place governing the
technical systems that trigger alarms in
dangerous situations, call for help, warn those
involved or issue audible instructions.
More than meets the eye
As well as performing a fundamental role as
part of a life safety infrastructure, a voice
evacuation system can also maximise return on
investment by acting as a PA solution to issue
audible instructions in addition to broadcasting
pre-programmed voice messages, issuing live
announcements or even playing music.
A terrorist incident, a traffic accident, an
intruder, air pollution or even a dangerous dog
roaming around are some of the situations that
could require clear communication within a
building. UK schools, for example, are
increasingly looking to develop coherent
strategies for lockdown procedures. They can
use voice-enabled technology to allow
emergencies to be immediately reported to a
central location.
In a fire situation, minutes and even seconds
could mean the difference between life and
death. Even though voice evacuation has
obvious benefits, the regulations are lacking.
This type of technology is still principally used
only as directed by a Fire and Rescue Authority,
or where the provision of a PA system to meet
other needs makes the incremental cost
significantly lower than where a simple upgrade
from sounders is being considered.
However, there are now growing calls for
tighter regulation that makes the use of voice
evacuation in certain environments mandatory
here in the UK. These calls should be heeded
and actively supported.
44

We go to greater lengths.
Axis Security – setting new standards in customer service.
• Our employees – are highly trained, valued and rewarded
• Our proactive management approach – ensures service is continually improving
• Our intelligent technology – ensures open lines of communication and transparency
• Our prestigious industry recognition – includes 3 Security Guarding Company of the Year awards
T. 020 7520 2100 | E. info@axis-security.co.uk | axis-security.co.uk

x
RISKXtra
The Changing Face of Security Services: Case Study
Front-of-House and Security in Unison
Acuity, Axis Group’s
Front-of-House
division, is delivering
a combined security
and professional
reception services
contract to the British
Medical Association’s
(BMA) headquarters in
Tavistock Square,
central London. Risk
Xtra reports
46

x
RISKXtra
The Race to the Bottom in Security
Services: Playing A Loser’s Game
Security can often feel
like a sector that’s in
the doldrums, much of
which is down to the
constant flurry of
negative outsourcing
stories unveiled within
the national press.
Sometimes,
outsourcing’s
condemnation is
justified, asserts
Darren Read.
Carillion’s collapse,
for example, shone a
telling light on areas
in need of real reform
including public sector
procurement and the
‘race to the bottom’
that now pervades the
outsourcing of
facilities services
48

The Changing Face of Security Services: Output Specifications
little-to-no facilities for mental health support
or other health issues.
The second possibility could be the pricing of
security services ‘at cost’ (as in without any
added margin for profit). This would, if
anything, exacerbate the existing issue, with
providers looking to squeeze profitability from
other avenues.
On both counts, it’s security staff who will
suffer the most. Not just – and reprehensibly so
– in terms of a reduction in life expectancy, but
also by dint of not having a single iota of
benefits at work or job satisfaction. As it
stands, a career in security isn’t an attractive
option for prospective employees, resulting in
an impending talent gap so vast we may not be
able to recover from it.
As an industry, we have an image problem.
Ultimately, the solution is to collectively
articulate the value of our services much better
and re-brand the industry. After all, there’s
virtually no public or private organisation that
doesn’t have a security provision in some shape
or form – be it in-house or outsourced.
According to the Ministry of Defence,
approximately half a million people are
employed in the private security sector and the
security industry contributes roughly £6 billion
to the UK’s economy each year. If we’re
indispensable, why are we not priced as such?
When we consider the potential risks that
would come from security service failure, to put
such a small price on the safety of people
seems flippant to the point of being insulting.
Our image overhaul could start with a reevaluation
of the nuts and bolts of the
specification process, which itself hasn’t been
altered for years. Security is the last stream of
facilities management that uses input
specification, which is now widely considered
to be outdated and clunky. We’ve lagged behind
other sectors, such as cleaning, that now
primarily use output specifications – giving
them the license to offer their expertise and
define what equates to a high level of
performance on their contracts.
If we adopt output specification like our FM
peers, perhaps then we would have the
opportunity to not only demonstrate our
expertise, but also actively collaborate with
clients on producing contracts that are flexible
and tailored to their unique requirements.
Likewise, in the bid process, rather than
using language that centralises on price and
cost savings, we must explain how good
security can offer a return on investment. We
can do this by weaving the customer service
value of security staff into our proposition as
well as tackling the misconception that
security is an unskilled profession. Of course,
we know full well the value of security to our
client’s day-to-day operations. We’re not just
mitigating risk. Often, it’s a customer service
role – a concierge is frequently the first
individual a customer meets when visiting a
building and can therefore set the tone for the
rest of their visit on site.
Communicating value
Every day, I hear of staff going that extra mile
and doing wonderful things for our clients, but
are we communicating this value to prospective
clients? No, we’re not. If we don’t reflect the
value we see in our services in our pricing, how
can we blame organisations for only caring
about the costs as opposed to the value good
security can bring to their business?
A shopper looking to buy a sofa will not
necessarily purchase the cheapest sofa they
can find. They will take into consideration the
quality of the sofa, customer service, product
warranty and returns policies. Paying more is
offset by the perceived benefits of these
factors. This is the scenario we really need to
be striving for in security.
There’s an opportunity here to galvanise our
industry and drive some much-needed change,
as well as improve the perception of security,
and outsourcing in general, in the eyes of the
general public and prospective clients alike.
Darren Read:
Managing Director of Amulet
Security
“If we adopt output specification like our FM peers,
perhaps then we would have the opportunity to not only
demonstrate our expertise, but also actively collaborate
with clients on contracts that are flexible and tailored”
49
www.riskxtra.com>

x
RISKXtra
Meet The Security Company
company that can respond and is always
capable of delivering, often at little or very
short notice.
This is the twelfth
instalment in a series
of articles for the
readers of Risk Xtra
where we shine the
spotlight on NSIapproved
businesses
for the benefit of risk
and security managers
who purchase security
guarding as well as
systems-focused
solutions. Answering
our questions on this
occasion is Christine
Lee, co-founder and
managing director of
Constant Security
Services
About the National Security Inspectorate
Risk Xtra: Can you briefly describe your
business’ activities and what you consider to
be your USP as an organisation?
Christine Lee: Constant Security Services
supplies the very highest quality security and
support services. We are an independent,
family-run, privately-owned and national
award-winning business. We are security
specialists and do not diversify. The security of
our clients is truly our foremost priority.
We have grown for over 30 years and now
employ well over 700 colleagues who work on
assignments throughout the North and the
Midlands. We have industry-leading customer
and client retention numbers, which is evidence
of our culture of quality, care and responsibility.
Our quality management, accreditations,
memberships and industry involvement have
made us quite a unique company in the
marketplace and an exclusive proposition for
customers and new colleagues alike.
We’re a small company in comparison to the
household names in our industry, but this is
exciting for us, our clients and our colleagues
as we have the ability to move at a fast pace in
responding to requests for services and to
solve problems. We’ve become well-known as a
The National Security Inspectorate (NSI) is a wholly-independent, not-for-profit
company limited by guarantee and operates as a UKAS-accredited certification
body specialising in the security and fire safety sectors.
For over 40 years, the NSI has served to protect businesses, homeowners
and the general public alike, raising standards by providing robust and high
quality audits of both security and fire safety service providers.
Risk Xtra: What do your clients value most
about the services you deliver?
Christine Lee: Clients most value our
immediate ability to respond to any eventuality,
with the flat management structure of the
business meaning accessibility to all. The
openness of our operation allows for no
dilution of responsibility.
We also recognise that our customers choose
us and remain with us due to our enduring
commitment to care and responsibility
throughout the business. As a family-run
operation, we’re dedicated and loyal and this is
something that customers and colleagues can
really buy into and trust.
Our values of care and responsibility in
everything we do act as the guiding principles
regarding every aspect of our operation.
Risk Xtra: How do you feel accreditations
have assisted your company?
Christine Lee: Accreditations have assisted us
in really streamlining the business by helping
us to understand and recognise areas of the
company where improvements could increase
our efficiency and improve our service. They
have also driven greater understanding of
process interconnectivity.
Our accreditations have allowed us to verify
to our customers and colleagues that we’re a
high-quality company that can be trusted.
We’ve been able to build our brand as a
business around quality standards and
accreditations, demonstrating our integrity,
professionalism and ongoing commitment to
Best Practice and innovation.
Risk Xtra: Specifically, what value does ACS
registration and NSI Guarding Gold approval
bring to your business and its clients?
Christine Lee: ACS registration and NSI
Guarding Gold approval bring credibility. They
are both clearly demonstrable and transparent
50

Meet The Security Company: Constant Security Services
In association with the
methods by which customers can understand
the independent verification of our service
offer. They know they will receive the highest
quality of service from the company. They will
be doing business with an organisation that
they can absolutely trust.
Risk Xtra: In practice, what are the main
differences between ACS registration and NSI
Guarding Gold approval?
Christine Lee: The ACS takes an holistic view of
the business and hopefully motivates members
to recognise real value in areas other than just
financial return. The ACS registration is
significant as this is a scheme run by the
Security Industry Authority (SIA) that has
powers to terminate membership in case of
poor performance or criminality.
From our perspective, NSI Guarding Gold
approval is entirely indispensable. Through the
Inspectorate, we are able to demonstrate
standards that are far higher than those
demanded by ACS registration.
Risk Xtra: How do you feel technology has
changed the industry over the last couple of
years and what do you believe will be the
direction of travel in the future?
Christine Lee: The development of CCTV along
with remote monitoring capabilities has
certainly altered the industry somewhat over
the last few years. We have seen a number of
traditional static security guarding customers
work with us on innovative projects which have
resulted in the incorporation of CCTV systems,
linked to our CCTV monitoring facility and
supported by our mobile response which has
resulted in head count rationalisation on some
sites. This has brought significant cost savings
for those end users involved.
In the future, the industry will undoubtedly
move towards the increased use of drone and
robotic technology. We don’t view technology
as a threat to our industry, but rather as a tool
that can help us to provide an even higher
quality service for the end user customer.
Risk Xtra: When it comes to negotiating
contracts and responding to tender requests,
what aspects are of most value to customers
and how are these changing?
Christine Lee: Reputation is hugely important,
but accreditation and certification is vital.
Without recognised accreditation, standards
and memberships we wouldn’t be invited to
tender for many contracts.
However, although there’s a slow change
towards better understanding of our quality
standards among the end user cohort, many
tenders still contain simple ‘tick box’-style
quality questions and don’t allow suppliers to
demonstrate differentiation. Unfortunately, in
some cases the criteria involved are clearly
price-driven with little consideration for added
value and quality of service provision.
Risk Xtra: How has Government legislation
(eg the National Minimum Wage, the
National Living Wage and changes to holiday
pay) affected your business? Do you believe
such legislation is a good thing?
Christine Lee: Legislation regarding wages and
other Terms and Conditions has been very well
received and is certainly a good thing up to a
point. For those of us who remember the days
when staff were forced to work excessive hours
to earn reasonable money, the situation today
is dramatically improved.
That said, I’m concerned about the impact on
peoples’ career development aspirations when
supervisor and managerial differentials are
being eroded as they cannot continue to
maintain 4% annual increases.
Risk Xtra: What are the most important
attributes you look for in your security
officers and staff members in general?
Christine Lee: An inability to integrate into a
culture that’s friendly, welcoming, collegiate
and positive and wherein customers,
colleagues and other stakeholders share equal
standing. We’re fortunate to have enthusiastic
colleagues. After any audit, I’m regularly asked
“How did we get on?” by members of staff. I
believe that this demonstrates my front line
colleagues are truly bought into what we’re
trying to achieve with the business.
Risk Xtra: How can the SIA, the NSI and
industry standards best serve the sector in
addition to the needs of your company’s
clients and the wider public interest? Will
the planned introduction of business
licensing be a positive step?
Christine Lee: At times, the industry has
attempted to become more collaborative, but
unfortunately this still has some way to go.
Security companies are, of course, competitors,
but greater co-operation would undoubtedly
strengthen us all. It would be great if this is
something the NSI could assist in harnessing.
Regarding business licensing, we’re entirely
open-minded on this issue. If it can be
demonstrated that the proposed business
licensing will improve the industry and the
people working within it then we will absolutely
support such a move. If it’s just an expensive
‘token’, however, then we will not.
Name
Christine Lee
Job title
Managing Director
Time in security business
sector
I’m the co-founder of
Constant Security Services,
which began life in 1981
Location of the business
The company is based in
Mexborough, South Yorkshire
and serves clients throughout
the North and the Midlands
Areas of expertise
Static security guarding,
special event stewarding and
door supervision, mobile
patrols, keyholding and
response, open/lock visits,
CCTV remote monitoring,
security training, risk
assessments and security
surveying, security screening,
integrated services and
specialist FM consultancy
Accreditations
QMS operates to ISO
9001:2015 (and specifically
the Codes of Practice for BS
7499, BS 7858, BS 7984, BS
7960, BS 8406 and BS 7958).
NSI Gold Award Member.
Registered ACS business with
the SIA for security guarding,
keyholding, Public Space
CCTV Surveillance and door
supervision services
Christine Lee: Co-Founder and
Managing Director of Constant
Security Services
51
www.riskxtra.com>

x
RISKXtra
‘What makes the
modern security
professional?’ As Tony
O’Brien observes, the
right combination of a
security mindset, hard
and soft skills,
technical ability, selfawareness
and
adaptability is almost
impossible to define.
Today, and
increasingly so, it’s all
about an individual
who’s every bit as
comfortable in the
cyber world as they
are in the physical
space and who readily
understands the
connectivity (and
indeed, the
interdependency) of
both realms
Creating The Security
Professional of The Future
As converged security services develop at a
rapid pace, finding people with this
diverse skill set is proving to be somewhat
challenging for many reasons. There’s a
requirement, then, to talk about building these
professionals from the ground up and assess
what we can do now to prevent the rest of the
industry from becoming the next dinosaurs.
When I think of the pace at which the world is
evolving and developing, it both amazes and
worries me. If we consider that, just ten years
ago, many of the platforms we now use on a
daily basis didn’t even exist, and that in five
years’ time they’ll likely be obsolete, this
illustrates precisely how quickly the world – not
to mention ourselves as its inhabitants – can
evolve. It also illustrates how those who are not
willing to adapt and develop can be left behind
in the wake of evolution.
The security industry isn’t immune to this
risk, and particularly so in the area of cyber
security. I would estimate (both anecdotally
and from the new entrants I see coming
through the doors) that 90% of the physical
security industry is well below a basic level of
understanding in areas of cyber security, cyber
crime and information security. To change this
situation could take a generation. However,
given the pace at which these areas are
evolving, our current security population could
be seen as obsolete long before that time.
As someone who teaches in this industry
both at entry level and higher up, I will be the
first to admit that the current training system
will not be fit for purpose in even two-to-three
years. It’s barely plugging the gap now. We
have large skills gaps in the cyber security area
and a large pool of under-trained physical
security operatives. This system, I believe, is
the very root of the problem.
Typically, we still treat the two areas as
completely separate roles when they’re not. Of
course, at higher levels the technical skills
involved will differ, but as converged services
become a reality, every single security operative
needs to be at least familiar with both
information and cyber security basics.
The problem I see daily is that professionals
operating in the physical security industry still
perceive that cyber security isn’t their job.
There’s a real fear of the subject. It’s the fear of
the unknown and the fear of new challenges
that terrifies the physical security industry and
those resident within. What we’re left with is a
group of security specialists who know a lot
about crime prevention and the essence of
what a crime looks like in their field.
We also have a cyber security industry
predominantly made up of IT specialists who
know lots about the cyber world, but not a
great deal when it comes to how criminals think
and act, or indeed about the knock-on physical
consequences of cyber security.
Why can’t we determine to build security
operatives with a skill set in both?
This issue then escalates at the security
management level, where we have people
promoted from within the physical security
ranks or recruited from policing and military
backgrounds. They possess high levels of
physical security knowledge, but no idea about
cyber or information crime. Upskilling these
individuals (of which I count myself as being
one) is both challenging and time-consuming.
Ultimately, the pace of skills development is
always going to struggle to keep up with the
pace of change.
Pathways for transition
Currently, there are very few pathways whereby
physical security professionals can transition to
cyber security and even fewer pathways in the
opposite direction. There are some, but they
52

The Security Institute’s View
often require many years of study and at an
advanced level.
My own opinion here is that we don’t need to
develop many more pathways between the two
areas. Instead, we need to begin treating the
two areas as a single field, and building entry
level training programmes for the future
security specialist which afford a solid
grounding in both areas.
At the top level, we will always have
specialists like there are in every professional
field, but this is where the specialisation should
start. Once all security professionals have a
solid competency level across security fields,
then we can branch off into specific fields
where the individual’s passions or career
opportunities lie. This is the way in which every
other professional field works.
Consider medicine, teaching or the sciences
as the perfect examples. Every professional
here receives a basic grounding in the
fundamentals and then chooses their specialist
area at a higher level. If we want to be seen as
a profession and not just a job, then this is
where we need to be aiming. We simply cannot
continue to ‘silo’ our efforts or both sectors will
inevitably suffer over time.
Building from the ground up
My suggestion is that we begin to develop an
international occupational standard for the
future security operative. You will note that I
said international standard as part of the
International Labour Organisation’s
International Standard Classification of
Occupations (ISCO) which informs many
countries’ national occupational standards. This
would be a move beyond the typical focus in
most countries on developing national
occupational standards for security operatives.
We now live in a global world, both in terms
of cyber and physical security. Our future
training needs to reflect this reality and equip
security professionals to work in a global
landscape. Security in the future will have
fewer physical and national boundaries and we
must equip ourselves now for this eventuality.
This will take time to develop and, in the
meantime, we can begin to take steps with
programmes that we already have in place to
make them better suited. Until we can converge
cyber, information and physical programmes,
we can begin to insert modules into the current
programmes so as to begin to give each area
basic knowledge of the other.
This works both ways. Just as our current
physical security training programmes have
limited or no content on cyber security, the
same applies in the cyber security sphere.
I don’t see too many cyber security
programmes out there at any level which cover
areas such as criminal mindset, securing
physical assets or even police statement
writing. Beginning to introduce these subjects
into each area can really help in setting the
groundwork for the future development of
converged security programmes.
While we can begin to introduce these
subjects to the industry at entry level, I
certainly believe that we should be looking to
develop robust, converged security
programmes at certificate, diploma and degree
levels before the specialisation begins at
Master’s level and beyond.
Appreciating the cyber risk
It’s difficult for an individual who has worked in
physical security for many years to appreciate
the cyber risk and to comprehend the skills
required to be proficient. Now that cyber
incidents have started to manifest themselves
in real physical injuries and deaths, perhaps
the risks involved will become more apparent.
There’s huge scope here for both sides to
work together to everybody’s benefit. There is
currently a large skills gap in the cyber security
area. There’s also a pool of talent resident at
mid-level in the physical security arena who
would love to help out, but simply don’t have
the tools to do so. While it may take some time
to help them develop those tools, spending
that time would certainly be proven to be a
worthwhile endeavour.
Planning for the future
That only provides a temporary respite,
however. The cyber security arena will continue
to grow, as will all other areas of the industry. I
sincerely hope that we’re not sitting here in a
number of years’ time having the same
conversation. In order to avoid that scenario,
we have to begin planning, developing and
implementing training programmes for future
security operatives which reflect not just
today’s risks, but also the foreseeable risks of
five and even ten years’ time down the line.
The development of this generation of
security professionals has the potential to be
the vanguard for the future of the industry, but
only on the proviso that we determine to act
now. If we wait, it could be too late even for the
next generation.
The Security Institute’s View
is compiled and edited by Dr
Alison Wakefield FSyI
(Chairman of The Security
Institute) and Brian Sims BA
(Hons) Hon FSyI (Editor of
Risk Xtra)
Editors’ Note: Any security
practitioner can commence
their cyber security education
online (and at no cost) via the
FutureLearn ‘Introduction to
Cyber Security’ course.
There’s also the option to pay
£62 for a certificate of
achievement. The course
development was supported
by the UK Government’s
National Cyber Security
Programme. It provides GCHQ
‘Certified Training’ and is also
IISP accredited
Tony O’Brien:
Managing Director of Security
Operative Training Services
“We now live in a global world, both in terms of cyber and
physical security. Our future training needs to reflect this
reality and equip professionals to work in a global landscape”
53
www.riskxtra.com>

x
RISKXtra
Selling Security Without Cutting The Price
In a buyers’ market, and whether we like it or not, price can
be the issue that ultimately decides which suppliers are
chosen by buyers, but does it have to be like that for security
businesses? As Patrick Rea explains, there are new
opportunities available for those security companies with a
strategy in place that wholly understands how buying
decisions are really made (and who makes them) and who
can clearly differentiate their offer, while also proving their
stated business case
Patrick Rea FCIM:
CEO of Rea Marketing, a
Security Marketing Specialist
and a Member of ASIS
Narrow your focus to your best market.
Mass marketing is dead: there are too
many companies selling generic security
solutions to the same audience, so the solution
is to narrow your focus on a group of buyers
with a problem for which you can offer a
specific security and service solution. Then
engage them through ‘key account’ marketing.
To fully understand their needs and issues,
develop contacts and manage the relationship
through to the sales ‘close’. Thereafter, make
sure you retain them as clients.
This whole process requires profiling your
best clients and developing a new database of
prospects. It also includes finding niche market
opportunities, such as those present within
logistics chains and networks or perhaps new
sectors with a common security problem.
Understand those companies involved and the
key decision-makers.
Understand what buyers really want. This is
very much the era of the buyer as the dominant
partner in the buyer-seller relationship. They
are resistant to indiscriminate ‘me too’
approaches. Buyers decide what they want,
which suppliers they want to see and,
ultimately, whom they’ll work with.
The key, then, is to completely understand
the buyers’ process: how security needs arise
and develop, how buying decisions are made
and who makes and influences those decisions.
Only then can you build awareness and
enquiries through marketing.
You need to ensure the sales team develops
a good rapport and degree of trust with your
prospects and customers. This wins sales,
keeps the relationship alive and, importantly,
retains and ring-fences business.
Map the buying process
There’s a step-by-step process major buyers of
security follow in each and every market sector.
First, they are unaware that they have a
problem. Then they know they have a problem
and look for information. They then select
candidate suppliers, ask for quotations and,
finally, choose a vendor.
“Today’s business buyers don’t contact
suppliers directly until 57% of the purchase
process is complete. You have to ensure you’re
part of that first 57% of the process” (B2B
Marketing Summit).
The best strategy is to be there at the start of
the process. You need to build awareness and
trust early in the buying process if your
company is to have any chance of influencing
the brief and the ultimate buying decision.
You’re then ready and prepared to provide the
information and attention that the buyer needs
to choose your solution.
Plan your sales and marketing process. You
want a step-by-step process that matches the
buyers’ process to (1) generate awareness and
(2) enquiries and then (3) develop leads and (4)
close them. Finally, there’s the overriding desire
to (5) retain clients. Consistency is the
important factor in all of this. A transparent and
measurable process affords you full control of
your sales pipeline. It’s ‘scalable’, so you can
either step up or reduce activity according to
your business needs.
When you have an agreed process you can
then align your Customer Relationship
Management (CRM) System in support such
that leads are recorded and tracked, responses
and required actions scheduled, the results
measured and relationships managed.
CRM is an approach to manage a company’s
interaction with current and potential
customers. It uses data analysis about
customers’ history with a company to improve
business relationships with customers,
specifically focusing on customer retention and
driving sales growth. One important aspect of
the CRM approach is the systems that compile
data from a range of different communication
channels, including a company’s website, the
telephone, e-mail, live chat, marketing
materials and, more recently, social media.
Through the CRM approach and the systems
used to facilitate it, businesses are able to
learn more about their target audiences and
how to best cater to their needs.
You first need to map out the key steps in
your process, then specify the tactics and tools
required for the task of lead generation.
Purposefully differentiate your business from
that of your competitors not on price, but on
54

In the Spotlight: ASIS International UK Chapter
the value delivered. If you focus on price, the
buyer will make a decision based on that too,
but there will always be a competitor who’ll be
willing to sell at a lower price – perhaps
because they are a start-up or simply desperate
for the business. As we know, this tactic isn’t
sustainable in the longer term.
Instead, you can differentiate on those issues
where you have (or can otherwise create) a real
advantage – perhaps in relation to your
experience in the sector, the service range,
systems, support and back-up. Maybe even all
of these or, indeed, other areas as well.
You also need to prove the business case and
the Return on Investment (RoI). This might be
by demonstrating the cost savings of your
solution or the losses that will subsequently be
prevented. It will take work and analysis to
develop evidence of the RoI.
Most importantly, though, the business case
is proven and demonstrated through Case
Studies and solid testimonials.
Build rapport and trust
Trust makes all the difference in building the
critical relationships that underpin a successful
sales and marketing process. Proven methods
to build awareness, understanding and trust
include accreditations and awards, using
LinkedIn to develop contacts and provide
authoritative Publisher Posts (increasingly this
is a key method to build your brand, if you
know how to work with it), the use of Case
Studies (on the basis that good application
stories show the real-world problems you solve
and how you solve them) and the leveraging of
relationships (ie collaboration with third
parties, such as through professional
associations and companies that offer
complementary services).
A common thread in all of this is content:
Case Studies, security tips, advice and news.
It’s all about demonstrating thought leadership.
This makes a positive impression by showing
your experience and areas of expertise, but the
process does demand an experienced and
dedicated writing resource.
Does ‘content’ really produce results?
Research shows that it does. “You can deliver
four times as much Return on Investment from
content marketing than from adverts” (B2B
Marketing Summit). Case Studies in particular
provide unique, benefit-laden content
encompassing insights, guidance and evidence.
Choose your methods wisely
Both your time and budget will likely be limited
so you need to pick marketing media and
methods wisely. Ideally, focus on a limited
number and do it well and consistently.
Frequently, we are asked about the following
specific areas:
Facebook and Twitter campaigns: Perhaps. It
really depends on whether or not the decisionmakers
and buyers in your sector are consistent
users of social media
LinkedIn: Definitely. Increasingly, LinkedIn is
used by all B2B sectors, but it needs a wellhoned
process to produce sales. Too often,
companies energise a ‘Connection’ and then
don’t know what to do next
Search Engine Optimisation (SEO): Perhaps.
This is because most B2B security buyers rarely
locate suppliers based on a Google Search.
They prefer to contact companies with whom
they have some pre-existing relationship or
knowledge. You need an ongoing programme to
create awareness and understanding. SEO can
be useful, but such a campaign requires a real
understanding of (1) how buyers buy security
and what they look for and (2) the quality of
your dedicated web landing page.
“Today’s business buyers don’t contact suppliers directly
until 57% of the purchase process is complete. You have to
ensure that you’re part of that first 57% of the process”
55
www.riskxtra.com>

x
RISKXtra
Despite the ongoing
best efforts of industry
bodies such as the
Fire Industry
Association when it
comes to shouting
loudly about the need
for Best Practice
within the fire safety
space, there will
always be a few
lingering cases of
poor practice. When
talk turns towards fire
detectors, there really
is no excuse not to
test them. Will Lloyd
outlines precisely why
Will Lloyd: Technical Manager at
the Fire Industry Association
Fire Detector Testing:
Best Practice Makes Perfect
Perhaps the most common example of poor
practice is simply not testing present fire
detectors at all. The fact of the matter is
that all such detectors located on site should
be tested over a 12-month period. This is to
ensure that, no matter where a fire might
originate, there’s an assurance that the area
where the fire has indeed broken out is covered
by a working detector.
Simply put, when you need a fire detector to
work, you really need it to work. Unlike a
mobile phone or a TV or any other
entertainment device that can easily be
replaced at any time (you might feel like you
cannot live without a mobile phone, but trust
me you can), a detector cannot wait to be
replaced. It needs to be replaced as soon as
possible so that people are safe from the
danger that fire brings. Life safety isn’t
something to ‘forget to test’ or ‘do later’ – the
process is active and ongoing, and it’s
important to make sure that it’s right.
Need for competence
For those working within the fire detection and
alarm maintenance sector, it’s vital that the
term ‘competence’ is understood. Under current
fire safety legislation, only a ‘competent’
individual should carry out the testing work. A
‘competent’ person in this regard is defined as
an individual with the relevant current training
and experience, and with access to the
requisite tools, equipment and information, and
who’s capable of carrying out a defined task.
Let’s break this down. First, the individual in
question needs to be properly trained and have
the right level of experience. Experience is
simple – it’s gained over time on the job.
Training helps to complement that. The Fire
Industry Association (FIA) now offers vocational
qualifications in fire detection alarm
maintenance and installation, so it’s fairly
simple to make sure that aspect is ticked off.
The second part of current legislation to pay
attention to is the tools and equipment that the
individual’s using. There are so many anecdotes
of improper testing equipment. Some people
have been known to use a hairdryer or paint
stripper heat guns to test a heat detector. Not
only is this an example of the improper use of
equipment, but it may even melt the detector
and/or damage the sensors and components
inside, thus rendering the detector useless.
Another classic example of malpractice is
when a screwdriver is used to short the
thermistor to obtain a fire signal on the panel.
This should be avoided at all costs as it simply
changes the electrical signal and doesn’t test
the sensors in the detector which, obviously,
defeats the entire object of testing a detector
that’s designed to activate when the presence
of heat/smoke is sensed.
Training requirements
In the above cases, the individual would not be
classed as ‘competent’ in the eyes of the law
and the immediate remedy would be to obtain
the correct equipment immediately and
organise some proper training, such as the FIA’s
Advanced Maintainer Level 3 qualification.
Training is the vital part because even with
the right equipment and tools, there’s still the
chance to use them in the wrong way.
Standards such as BS 5839-1 cover this, so
making sure that there’s proper training on this
standard is a step in the right direction.
Sometimes, people want to do the right thing
and procure the necessary tools, but perhaps
don’t have the right knowledge and experience
to use them correctly. The advice here is
simple: read through the instructions that came
with the equipment and, if all else fails, ask for
technical support (either from the manufacturer
of the product or the FIA).
Testing equipment such as aerosol
dispensers can also be problematic. This is an
example of using the correct equipment, but in
an incorrect manner. Unfortunately, this can
happen even when the intention to test
correctly is there in abundance.
Typically, aerosol canisters designed for the
testing of smoke detectors only require a small
amount of spray. There’s no need to use loads
of the spray to test the detector, and that’s
where a lot of people can go wrong. It really is a
case of reading the instructions that come with
the testing equipment, or asking a more
experienced colleague to teach less
experienced individuals as to the proper use of
aerosol canister testing equipment.
If you haven’t had any training for a while,
then it must always be said that a ‘refresher’
course never hurts. Technology is always
changing and detectors are slowly becoming
more complex to test due to the number of
multi-sensor variants on the market that detect
56

FIA Technical Briefing: Testing Procedures for Fire Detectors
different things such as heat and smoke, for
example, at the same time.
Multi-sensor detectors
Due to a recent study sponsored by the FIA in
partnership with the BRE and other industry
bodies, it has been scientifically proven that
multi-sensor detectors are more effective at
reducing false alarms. As a result, over the next
few months and years it’s likely that many
buildings will make the switch to multi-sensor
detection methods.
As a result of this move towards more
sophisticated detectors, so there’s a need for
more sophisticated testing equipment. It’s
important that this type of detector is tested
correctly using specialist equipment. Multisensor
detectors have two or more sensors – eg
heat and smoke – and they need to be tested
simultaneously. The test equipment for this
type of detector may be more specialised and
expensive, but considering the precious need to
demonstrate ‘competence’, a review of the
equipment you have and the types of detectors
you’re testing may well be required in order to
ensure that you have the correct equipment –
and that it’s being used in right way.
An effective service
Maintenance technicians really must have the
right knowledge, tools and experience at their
disposal to do the job of testing detectors
effectively. If not, there’s a danger that the
individual would not be seen as ‘competent’
under current fire safety legislation.
As an additional pressure, there’s currently a
significant focus on fire safety at Government
level that’s likely to affect the industry for some
time to come.
Those in-house professionals buying the
services of fire detection and alarm
maintenance companies are looking to ensure
that the services they enlist will do the best job
they can. Buyers are a lot more ‘savvy’ and,
though many will shop purely based on price,
plenty will also now be looking to consider the
level of skills and training of the company
they’re hiring, which is why obtaining third
party certification is an important method of
developing the business.
Third party certification is simply gaining an
independent audit to certify that your company
is capable of providing an effective service, and
indeed is the main criteria for membership of
the FIA. Those working within the maintenance
sector should certainly consider this as it will
inevitably help the business to grow and
demonstrate to buyers the trustworthiness of
the skills they’re hiring.
Guidance from the FIA
The ‘FIA Guidance Document on Best Practice
for Fire Detector Testing/Test Equipment’ covers
a wide range of Best Practice in an easily
downloadable PDF format. Obviously, all the
examples of bad practice shared above are not
to be followed. The advice in the FIA’s Guidance
Document will show you exactly what you
should (rather than should not) do in order to
test equipment.
The Guidance Document covers the
competency requirements of technicians in
more detail, as well as breaking down the
requirements for the testing of fire detection
devices (what requires testing, functional
testing, general testing procedure, test
methodology and more examples of bad
practice, etc), as well as test medium and fire
detection types (including how to test multisensor
detectors as well as other regular smoke
and heat detectors).
In addition, there’s a good deal of salient
advice on Health and Safety during the test
procedures (since detectors tend to be on the
ceiling and fairly inaccessible).
To download the ‘FIA Guidance Document on
Best Practice for Fire Detector Testing/Test
Equipment’, visit the FIA’s website
(www.fia.uk.com) and search the publications
library under the ‘Resources’ tab.
“Technology is always changing and detectors are slowly
becoming more complex to test due to the number of
multi-sensor variants now available on the market”
57
www.riskxtra.com>

x
RISKXtra
Selecting Workforce Management
Software for Security Operatives
Workforce
management software
comes in different
forms, but all of them
claim they will help
your security services
company run more
effectively. When it
comes to the crunch,
though, which
solution are you going
to believe in? Mark
Folmer outlines seven
key questions you
should ask in order to
find the right software
for your day-to-day
operations schedule
Workforce management software is really
a ‘catch-all’ phrase for desktop and
mobile systems that help a business
manage its staff scheduling. The term
originated in Contact Centres and within the
realms of other service businesses that employ
a large number of workers who are paid on an
hourly basis. The ultimate goal of such software
is to gain visibility into key business metrics,
such as the number of operatives needed on
site at a particular time of day.
By using a software solution for demandoriented
workforce management, planners
within the business can optimise staffing by
creating schedules that, at all times, conform to
the forecasted requirements.
At the same time, a workforce management
solution helps end users to observe all relevant
legislations, local agreements and the contracts
of individual employees (including those allimportant
work-life balance guidelines).
So you’ve reached the point where you’ve
‘kicked the tires’ on a number of software
platforms in security workforce management.
You can recite by heart the claims they’re
making about being the best solution since nolick
envelopes, but now it’s shortlist time. You
want to identify the software that lives up to its
claims. You want to determine which solutions
will truly contribute towards the efficiency and
profitability of your security services company.
You need to eliminate the vendors making
“noise” from the ones that signal a path
towards genuine efficiency and growth.
To help save you time and money, we’re going
to focus on seven areas to help you zero-in on
the workforce management platform that will
truly contribute towards the efficiency and
profitability of your security services company.
Before we examine these seven areas,
though, do make sure your firm is carrying out
its software search in a sound and systematic
way. There are five recommended steps in the
software-selection process.
First, plan and budget for the software. You
will need senior management buy-in and a
project team. Second, analyse your
requirements. Focus on what’s most important
to you and document it. Third, search for
vendors. Shorten your long list of vendors to
approximately three key solutions.
Next, test the software in demos. Keep your
Demo Script consistent for all the vendors so
you can compare apples to apples. Be sure they
live up to their industry claims. Last, but not
least, decide on the best software ‘fit’ for your
company. Include implementation and training
in your evaluation of the best solution.
It’s at step three that we recommend you ask
the following seven key questions about the
workforce management software that you’re
considering for use among your employees…
(1) Does the platform provide a solution that
takes into account your entire business?
No sane individual hires a personal trainer to
build their biceps only. Similarly, when you
want to attain maximum success in your
business — when you want to strengthen and
make more efficient and profitable your entire
organisation — you want to make sure the
platform you adopt can empower you to
automate your business from end-to-end.
After all, to derive all of the benefits inherent
within a security workforce management
system, you have to take the blinkers off and
strive for optimisation of your entire operation.
You have to look at security workforce
management as a mission-critical system
connected to other critical functions, such as
your accounting and payroll systems.
Vendors who don’t have an end-to-end
solution can easily be detected. Their questions
will be focused on one or two particular
functions in your business, or they’ll address
your pain points in a site-by-site manner and
58

Security Services: Best Practice Casebook
not assess the business as a whole. That’s
because they’re simply not equipped to handle
what might be termed ‘the bigger picture’.
(2) Does the platform require the purchase or
use of “their hardware”?
Before the widespread use of smart phones,
workforce management platforms required all
kinds of extra equipment to collect and
download guard tour information.
Today, it’s the case that some platforms still
demand this costly, inconvenient and servicerequiring
equipment. Yet a contemporary smart
phone has all the necessary features to carry
out an efficient and data-rich guard tour —
assuming, of course, that the platform involved
can take advantage of current technology.
Do you want to be constrained by the costs
and hassles of managing and maintaining
“their hardware”?
(3) Is the platform designed to be mobile?
Anytime and anywhere access to the Internet
has become a ‘given’ in our day-to-day lives.
Why should your operations platform offer you
less convenience and flexibility than that?
However, some security workforce
management platforms still rely upon on-site
hardware for data exchange. As a result, data
collection may be limited by location and time
of day. This lack of flexibility constrains what
your staff and management can do, and that
inevitably translates into reduced productivity.
Cloud-based platforms, on the other hand,
offer 24/7 access, dependable data security
and the convenience of automatic software
maintenance for the end user.
(4) Does every modification of the software
require custom in-house programming?
Perhaps one of the function leaders in your
company believes that their software needs are
unique. If so, make sure they have a business
case to prove it because, when it comes to
software customisation, you must carefully
consider the cost benefits involved.
More customisation means a longer time to
write and test the code, a longer time to yield a
return on investment and more system and staff
instability as you work through the transition
period to the new implementation.
Furthermore, when upgrades are necessary,
the custom code will need the ‘white glove’
treatment. Is your company comfortable about
making these costly concessions? If not, the
stability and cost savings of a turnkey platform,
and especially one focused on the security
industry, must be thoroughly considered even if
a little flexibility must be traded-off.
“Anytime and anywhere access to the Internet has become
a ‘given’ in our day-to-day lives. Why should your
operations platform offer the business less convenience
and flexibility than that?”
(5) Does the platform have a roadmap for future
development?
Before you sign a multi-year contract, you want
to be sure that the software platform you
commit to today will be evolving with you
tomorrow. Since the security environment,
technology and your business are in constant
evolution, your security workforce management
platform must evolve and adapt as well.
A vendor with an “If it isn’t broke, don’t fix
it”-style mindset will leave you with a set-inconcrete
platform that will limit your options for
adapting to new business conditions.
Ask your potential vendors questions like
these: ‘What kind of roadmap for development
do you foresee?’ ‘What input determines how
the platform will develop?’ and ‘What will be
the frequency of upgrades?’
(6) Does the platform seem to be designed with
customer input in mind?
Anybody who has worked in the security
industry knows that its operational concerns
and challenges are distinctive. If, during the
demo stage, you notice platform features that
seem unrelated to the industry, or not remotely
relevant to your own needs, ask your vendor
how these features came to be.
Some companies systematically solicit
customer feedback as an integral element of
software development. To stay on top of a
changing world, they also consistently
participate in industry-related conferences and
dedicate people to monitoring trends. Does
your vendor engage in this kind of dialogue and
information gathering?
(7) Does the platform try to be a jack-of-alltrades
for multiple industries?
A Swiss Army knife certainly comes in handy on
a day-to-day basis, but when you’re talking
about survival in the big bad woods you need
to resort to more serious tools.
Similarly, a general purpose enterprise
resource planning system that does the job for
a pizza delivery firm isn’t going to stand eye-toeye
with a software platform specifically
designed for mission-critical functions in the
security sphere.
When it comes to workforce management
software selection, it’s important to commit the
right resources and approach to the process.
Mark Folmer MSyI CPP:
Vice-President for the Security
Industry at TrackTik
59
www.riskxtra.com>

x
RISKXtra
CTI: Keeping UK Citizens Safe in 2018
operational challenge facing their organisation.
How, then, can Government organisations
embrace digital transformation while also
ensuring that their systems – and, critically,
citizens’ data – is kept safe?
You know you’re
facing an area of grave
concern when experts
at the World Economic
Forum signpost ‘cyber
attack’ as one of the
Top Three most
probable global risks
of 2018. The threat of
such an attack has
been put up there with
extreme weather
events and natural
disasters as one of the
events most likely to
cause problems on a
worldwide scale this
year and into the
future. Paul McEvatt
addresses the issue
For the public sector, the threat is even more
acute. Cyber security has stormed its way
on to the political agenda of late as
allegations of election tampering, breaches of
Government agencies and departments and
industrial sabotage have dominated the news
headlines. Malignant actors have targeted
Government and political organisations with
forms of sabotage since Government has
existed, of course, but the difference now is
that hacking into a Government body by digital
means can be done remotely by an unidentified
actor and can happen remarkably quickly.
Government bodies often hold a variety of
sensitive information – whether that’s medical
data, criminal records or confidential Civil
Service plans – that can be used by others for
financial or other forms of gain. For a malignant
hacker, the possibilities here are endless and
mouth-watering in equal measure.
The UK’s public sector is fast embracing
digital technology. When conducting our own
research, we found that 76.7% of public sector
organisations said that they were undergoing
digital transformation – the highest percentage
of any sector we surveyed. This is largely a
positive thing, with a view towards making sure
Government works more efficiently and delivers
better services.
However, the adoption of digital can
sometimes create more angles of attack for
hackers. In fact, almost half of all civil servants
state that cyber security is the biggest
Going back to fundamentals
With the public sector fast adopting new ways
of doing things in the sphere of IT, it’s
important to maintain some of the
fundamentals of security. In 2017, the headlinegrabbing
Petya and WannaCry ransomware
outbreaks exploited a vulnerability to software
propagation that was known months before the
attack. What could have prevented the
vulnerability? Patching.
It’s easy to repeat the mantra “Thou shalt
patch whenever necessary” from afar, but
business reality dictates that this is sometimes
not the right move depending on the context.
For example, you might choose not to patch a
critical vulnerability in a financial system if it’s
the day before the end of the financial year for
fear of breaking that system.
One of the ways in which public sector
organisations can mitigate risk is through Cyber
Threat Intelligence (CTI). This can function as
an early warning mechanism, guiding security
professionals on which vulnerabilities are most
open to exploitation and should, therefore, be a
patching priority.
CTI is often simply referred to as a threat
feed. However, faced with the kind of ‘savvy’
and aggressive attackers that have the audacity
to go after public sector organisations, the
system shouldn’t just express the severity of
the vulnerability as a technical risk. Given the
vital work that public sector organisations
transact, it should also communicate this risk in
financial, business and, indeed, human terms.
At its core, effective CTI provides strategic
direction that cuts through the complexity of
patch management, subsequently indicating
where attention is most needed. For example, a
threat advisory that addresses a vulnerability
early on can protect an organisation months
before hackers begin developing a ransomware
variant to take advantage of that vulnerability.
Automating the guard dogs
The public sector is increasingly embracing the
power of data. Collecting and analysing large
volumes of data about how we live, how our
businesses operate and even how the public
sector itself runs can be beneficial on several
60

Cyber Security in the Public Sector
levels. However, with data increasingly shared
across departments and regional authorities,
this growth in data volumes is also providing
more angles of attack for hackers.
Those charged with protecting Government,
therefore, face a double quandary – more
territory to guard and a more sophisticated foe
to defend against. Monitoring these security
perimeters is too large a task for traditional
technologies that use a manual approach.
Fortunately, there’s an array of automated
monitoring services now available, as well as
advanced analytics tools. Public sector security
professionals can combine these tools with
their own capacities for creative and lateral
thinking in order to develop an advanced
security monitoring ecosystem.
With Artificial Intelligence (AI) coming into its
own, this blended approach will offer a path
forward for security monitoring. As AI
technologies such as machine learning enable
teams to automate the more prosaic elements
of security monitoring, this will free-up valuable
time for analysts to apply their brainpower to
the most high-value problems. Moreover, these
technologies can augment humans’ own
analytical capabilities, providing them with a
superior overview of the threat landscape as
incidents can be automatically enriched.
Rapid response
It’s becoming increasingly apparent to all
organisations that a cyber attack occurring is
simply a matter of time. This sense of
inevitability has renewed attentions on how to
respond to that eventuality, rather than simply
focusing on matters related to prevention.
Damage limitation is vital for public sector
organisations, which can rapidly come under
political pressure and heavy media scrutiny in
the event of a breach. The latter is especially
relevant in a post-EU General Data Protection
Regulation world wherein a notifiable breach
now has to be reported to the Information
Commissioner’s Office within 72 hours.
The first step towards developing a rapid
response approach to addressing threats is
quantifying the speed with which you currently
do so. Mean Time To Respond (MTTR) is a key
metric for this. Alarmingly, a FireEye study
looking at EMEIA organisations found that the
average Mean Time To Dwell (MTTD) – ie the
time between compromise and detection – was
489 days. This is plenty of time for malignant
actors to do significant damage (and shows the
importance of optimising for this metric).
Public sector cyber security must be about
more than just throwing technology at the
problem. The Number One way of
“According to our own recent research at Fujitsu, only 51%
of public sector organisations are confident that their
employees have the right skills to take advantage of
today’s new technology”
compromising an organisation’s security, even
today, is still a phishing e-mail with a malware
exploit sent directly to an employee. Cyber
attackers have a keen understanding of human
error and the kind of mistakes ordinary people
can make when confronted with an officiallooking
e-mail.
Upskilling system end users
According to our own recent research at Fujitsu,
only 51% of public sector organisations are
confident that their employees have the right
skills to take advantage of today’s new
technology. It’s reasonable to assume, then,
that these same people will also not have the
correct knowledge to ensure that they’re using
these new technologies in a secure fashion.
In fact, upskilling users is one of the most
cost-effective ways of reducing the probability
of a human error that leads to a cyber attack.
For budget-conscious public sector
organisations, it’s a good way to bolster the
first line of defence. The one-off generic
quarter-day on IT isn’t enough – training needs
to be adapted to how employees are using their
technology and the kind of tools they employ
on a regular basis, as well as their seniority.
Confident public sector
The public sector touches almost every facet of
life in the UK, from business to education and
on to health. It has an admirable ambition of
using digital technology to transform how
Government functions in this country: a goal
which would deliver all kinds of gains to
citizens and civil servants alike. It’s absolutely
vital public sector organisations know that they
can embrace the future safely without exposing
themselves to malignant actors in cyber space.
A two-pronged approach can help them
tackle the risk. By ensuring that their
employees understand the risks and use digital
tools in a secure way, public sector
organisations will be able to make certain that
they have a strong first line of defence in place.
Investing in the latest and best security
technology and controls, whether that’s CTI,
machine learning-fuelled monitoring or
implementing MTTR as a key metric, they can
put themselves on the front foot for proactively
identifying and managing threats instead of
simply waiting for breaches to happen.
Paul McEvatt:
Senior Manager (EMEIA) for
Threat and Strategy at Fujitsu
61
www.riskxtra.com>

x
RISKXtra
Routes to Learning: Staff Training and
Development in the Security Industry
According to a recent
report published by
Totaljobs, two thirds
of employees have
moved roles as a
result of lack of
training opportunities.
In addition, nine out
of every ten
respondents wanted
their employer to offer
additional learning
and development
programmes. Quite
clearly, observes
Louise McCree,
employees want more
training, but they’re
not receiving it and, as
a result, appear to be
voting with their feet
The security industry most certainly needs
to work towards attracting new talent and
retaining the employees it does have under
its wing. One way of achieving this is by
focusing on a Learning and Development
strategy and identifying if, as a business, your
organisation could in fact be doing more.
Untrained staff are not only a liability if their
knowledge is lacking, but they’re also likely to
be less productive and motivated.
Once an employee has their Security Industry
Authority licence, the dangerous assumption in
some security businesses is that the employee
then knows what they’re doing because they’ve
passed their basic training. Failing to provide
additional support and development is shortsighted,
risky and often very costly. Security
personnel would benefit from a vast range of
training, not to mention upskilling, mentoring
and/or coaching on a regular basis.
Technology is constantly changing and, as
such, training in this area is vital. Your people
need to be aware of any new products and
systems and how to use them successfully.
Employees also need to be kept up to speed
with ever-changing client processes on site.
The security industry itself is also constantly
evolving and so it’s important for a business to
develop its staff in order to avoid being left
behind. In addition to this, it’s crucial that your
business is compliant with all security industry
regulations by making sure that the knowledge
of your team is up-to-date. Training in this
sense could take the form of informal on-site
workshops or ‘toolbox talks’.
One of the main obstacles to overcome with
training is time spent out of the business and
the perceived cost attached to that, but the
benefits always far outweigh any negatives. For
example, Health and Safety training will not
only help reduce claims, but also ensure that
your sites are safer and more comfortable
places at which to work.
It’s important to be aware of any resistance
to training. This will be experienced in some
organisations at a number of levels. Engaging
stakeholders from the outset is imperative in
order to garner support and achieve buy-in.
More than ever, security teams need to be
confident in handling difficult discussions,
calming anxious or ‘worked up’ visitors and
dealing with angry contractors. As such,
workshops on ‘Conflict at Work’ are an ideal
way to ensure that your employees have the
tools required to do their jobs. Staff need to
know how to escalate matters quickly,
efficiently and professionally.
Part of handing difficult situations is about
improving communication. Security officers
need to be able to interact with a wide variety
of individuals and communicate not only
verbally, but also through their physiology and
tone. It sounds obvious, but it’s particularly the
case in the security industry that a smile,
positive eye contact and remembering
someone’s name goes a long way. This last
point also impresses today’s clients who are
now looking for an added value service.
Expectations of today’s clients
Clients’ expectations are ever-increasing.
Nowadays, security personnel often double as
receptionists or concierge staff. They’re
expected to meet and greet visitors and act as
the first point of contact on site. Officers should
be able to act as ambassadors for the business
as well as the client so it follows that customer
services training should be compulsory.
Prevention is always better than cure, and
this is most definitely the case when it comes
to the issue of diversity. As such, developing
your people to understand that working within
a diverse team makes them stronger will prove
62

Training and Career Development
to be immensely valuable. It will also render
bullying and harassment claims less likely.
A stronger and more robust training plan and
a structured approach to Learning and
Development will also help you in attracting
the right talent, as well as assisting in the
retention of those members of staff you do
have. This then reduces turnover and spend on
recruitment. Continued investment from the
business means that your people will have
improved motivation towards their work, in turn
increasing productivity and profitability. It will
also help to avoid competitors taking away your
best employees as those training staff will be
more eligible for internal promotions.
This enables the client to have faith that
security personnel harbour a complete
understanding of their role, have the right skills
set to hand and know how to do the job to the
very best of their ability.
It’s unsurprising, then, that Totaljobs’ recent
training survey also discovered no less than
90% of employers identified that individual
training had a noticeable and positive effect on
the larger team.
Delivering the training programme
There are various methods of delivering your
training programme, with the approach you
take determined by a number of factors. These
include the size of groups to be trained, the
length of the course, where your staff are
based, what information and detail needs to be
conveyed and whether or not any members of
the team have disabilities and thus require a
targeted learning approach. The ‘one-size-fitsall’
approach rarely works.
e-Learning, for example, is a relatively low
cost, easy and quick way of disseminating key
information. ACAS provides some great online
modules which are simple, quick and can be
completed away from the workplace. They’re
also free. In parallel, ‘on the job’ training is a
great way of sharing knowledge that’s already
held within the business. You know who your
subject experts are. Make good use of them.
Coaching is also a great way of developing
your security management team. Some
individuals may need support with leadership,
others with delegation. The advantage with
coaching is that there’s great flexibility for
managers to be developed in a way that best
suits them.
NVQs are a much more structured way of
learning, but one which demonstrates your
commitment to and investment in your people,
not only in terms of cost, but also the fact that
the business is willing to invest time in their
progression. Some of the most successful
“Some individuals may need support with leadership,
others with delegation. The advantage with coaching is
that there’s great flexibility for managers to be developed
in a way that best suits them”
training programmes use a mix of all these
methods and more.
Profile, values and strategy
The next steps would be to ramp up a
dedicated and bespoke training programme
which is matched to your company’s profile,
values and strategy. Ensuring that you have a
clear training policy which communicates to
your people what your expectations are, but
also what support they should expect from you.
This last point is absolutely vital.
A word of caution for eager businesses.
Ensure that your training is accessible to all of
your people and doesn’t accidentally omit one
group or another. It’s easy to fall into this trap
and many well-meaning organisations end up
falling foul of it. For example, when it comes to
external training, consider whether the rooms
involved are accessible to wheelchairs. Does
the trainer harbour facilities for those who have
sight problems or who are hearing impaired in
some way? Is software available for PCs in
order to enlarge fonts for anyone who needs
this? Has due consideration been given to any
learners who are dyslexic?
If training always falls on one particular day
(for example, a Friday) and this is when a
certain member of staff doesn’t work, you could
be accused of discrimination. Make sure that all
training is available to everyone.
Five key rules to remember
There are five key rules to remember. One:
Undertake a training needs analysis before you
conduct any kind of training programme to
ensure you understand which gaps need to be
addressed and what you want to achieve.
Two: Make sure the Board is on board. Buy-in
from upper management is essential otherwise
whatever measures you put in place will not
work. Three: Ensure you know how much the
training is going to cost, where the funds are
coming from and the timeframes for delivery.
Four: Make sure you record all training which
takes place and consider whether you want to
generate e-Certs and how you plan to capture
and log the training that’s occurring.
Five: Find a suitable way of capturing training
feedback and evaluation to make certain that
whatever programme of learning you put in
place is fit for purpose with relevant content.
Louise McCree:
Founder of effectivehr
63
www.riskxtra.com>

x
RISKXtra
Risk in Action
Dahua’s CCTV
equipment underpins
all-new Smart City
surveillance scheme
in Lincoln
Risk in Action
A 300-plus CCTV camerasupported
city centre video
surveillance scheme in
Lincoln has been installed
and commissioned using
cameras, monitors and
switching equipment
supplied by solutions specialist Dahua Technology.
The previous analogue-based surveillance system was more than 20 years
old and had become expensive to maintain. That being the case, the City of
Lincoln Council decided to replace the analogue cameras and transmission
system with HD digital equipment.
The total cost of ownership has been reduced by the savings made on legacy
fibre lease costs. Energy consumption has also been reduced, while the new
cameras may be configured and maintained on a remote basis.
The design of the new all-wireless encrypted system is based around
delivering flexible technology, ease of installation, smart edge analytics and the
aforementioned remote connectivity. Environmentally friendly aspects of the
project have included the specification of lower-energy equipment, integrating
remote support and recycling hardware wherever possible.
Both fixed and PTZ cameras are installed over the all-new 1 GB duplex
network. These include cameras from the Dahua Pro Series, which feature high
image quality, bandwidth efficiency using H.265 compression and “excellent”
low-light performance. Bullet cameras from Dahua’s Ultra Series – complete
with powerful optical zoom, IR distances of up to 50 metres and software which
supports people-counting and heat-mapping – have also been installed.
Bandwidth efficiency meant that multiple cameras could be installed in any
given position, providing 360-degree coverage of locations and up to 20
Megapixels of video capacity per location.
Synectics on board with
Stagecoach for bespoke
surveillance solutions delivery
Synectics has extended its relationship with
leading UK bus operator Stagecoach, with the
business having been granted a three-year
contract renewal to deliver on-vehicle CCTV
systems, as well as continuing maintenance
support for the entire fleet.
The global surveillance specialist is
Stagecoach’s preferred technology supplier for
on-vehicle surveillance solutions. Under this
latest agreement, Synectics will provide an
upgrade path for new and existing vehicles in
the fleet designed to support Stagecoach in its
long-term objectives which include investment
in on-vehicle surveillance, driving uptime and
Securiton specified for fire
protection at major supermarket’s
national cold store
The popular Securiton aspirating smoke
detection (ASD) system has been selected as
the fire protection method of choice for a new
cold store to be operated by one of the UK’s
major supermarket retailers.
The new 68-truck bay, 30,000 square metre
hub in Pineham, near Milton Keynes, offers a
state-of-the-art facility and has been built
alongside an existing 58,000 square metre
Distribution Centre to which it will be linked via
interconnecting yards.
It’s vital that fire detection for the new facility
is both fast and reliable. Patol is the UK
distributor for the Securiton range of ASD
systems and has extensive experience in
meeting the specific challenges presented by
cold stores. This knowledge and expertise has
proven invaluable in this particular project, with
the company extensively involved in developing
the final solution.
One of the prime challenges was to ensure
that the ASD system could cope with
temperatures as low as -30°C. The final design
involves the inclusion of heated sampling
points to prevent any ice build-up.
Maintenance of the system can be carried out
from a remote location via the network
capability of the control panels.
reliability and, of course, ensuring passenger
safety and security.
The initial phase of the roll-out
encompasses an enhanced on-vehicle solution
to be fitted to all new vehicles entering the
fleet. This solution will incorporate health
monitoring of CCTV system performance and
the capability to remotely download incident
footage using the depot Wi-Fi network.
Footage being downloaded remotely can
actively support cross-functional collaboration
with third party agencies.
Such flexibility allows the specific footage
to be shared promptly which can prove to be
vital during the early stages of an
investigation. The footage is also
authenticated with SHA-2 watermarking to
ensure data integrity for audit purposes.
64

Technology in Focus
Technology in Focus
StaySafe app locates employees in event of terror attacks
Safety app specialist StaySafe has
launched IncidentEye, a smart phone
app compatible with both Android
and iOS devices that allows
companies to quickly locate and
monitor the safety of their staff in
the event of a terrorist attack or
other emergency scenario.
IncidentEye has been developed in
response to the growing number of
episodes, both man-made and
natural, that are now affecting
businesses right around the world.
The app, which lies dormant on staff phones until an incident is triggered by
their employer, uses location data to establish if any employees are in the
danger zone and prompts them to check-in safely.
Importantly, the app can then be used to communicate with affected
members of staff, sharing crucial up-to-date safety information and warning any
nearby employees to avoid a given area until the incident is resolved.
www.staysafeapp.com
Anti-passback logic and
interlocking doors added to
Inner Range’s Inception
Inner Range’s powerful and budgetfriendly
Inception access control and
intruder detection system has been
upgraded to allow a range of extra
reporting functions, anti-passback
protocols, language translation and
interlocking doors. The upgrades will
afford security and facilities managers alike better and greater control over
who’s accessing their site.
Several new reporting functions can be scheduled and automated. For
example, security managers can receive a monthly report on access card
inactivity to help them delete credentials that are no longer in use. Automatic
muster reports, showing who’s where on site, can also be scheduled to run in
the event of a fire alarm in order to assist with Health and Safety procedures.
Anti-passback logic, meanwhile, provides additional validation for user
access requests. The system checks the user’s last known location to see if
they’re already in the area they’re trying to access. The protocol helps to
prevent tailgating and the sharing of access cards, while also ensuring that
individuals move through a building correctly by dint of following the right
access control procedures.
Anti-passback is commonly employed on sites where accurate user locations
are critical and in relation to site reports, accurate muster reports or secure
locations. It can also help to protect resources such as car park spaces by
preventing multiple drivers presenting the same access credential.
The system can ‘auto-forgive’ or exempt passback violations such that cards
continue to work, but security managers are alerted so they can deal with the
issue in a ‘gentle’ fashion. This is often helpful before rolling out a ‘hard’ antipassback
protocol. Locking two – or more – doors to ensure they cannot both
be open at the same time is now an option thanks to the system upgrades.
www.innerrange.com
Zaun’s ArmaWeave perimeter
security fencing system achieves
“steepest rake yet”
ArmaWeave installer Crime and Fire Defence
Systems has carried out an installation at a
high security site where the Zaun Group’s
fencing solution climbs a 50 metre-long, 25°
slope using full width panels.
The specialist perimeter protection
solutions manufacturer developed the raking
installation method to make best use of the
properties of the high security fabric, which
itself is the most intruder-resistant fence
available on the high security market.
Zaun’s owner and co-founder Alastair
Henman explained to Risk Xtra: “The raking
powers of this fencing solution are such a
big benefit over 358 and could help in
protecting so many high security sites.”
www.zaun.co.uk
Keri Systems’ single-door controller
offers simple programming and
control via mobile device
The economical Intelliprox Blue grants access
to a single point of entry and is designed for
quick implementation and ease of use.
Intelliprox Blue is capable of controlling two
readers on a single door, providing both ‘In’ and
‘Out’ reads. This is accomplished through the
use of Keri Systems’ exit readers in combination
with standard NXT readers.
The Intelliprox Blue is programmed
wirelessly through the use of a Bluetooth
connection. The only requirement is the app
(loaded on a smart phone) and proximity to the
controller via a Bluetooth connection with a
mobile device.
Features include
manual door unlock,
adjustable door unlock
time and auto-unlock
scheduling. There’s also
door held open and door
forced open sensing.
Low power consumption
is another key feature.
www.kerisys.com
65
www.riskxtra.com>

BENCHMARK
Smart Solutions
BENCHMARK
Innovative and smart solutions can add value and benefits to
modern systems for customers. With the technological landscape
rapidly evolving, the Benchmark Smart Solutions project assesses
the potential on offer from system integration, advanced
connectivity and intelligent technology. Bringing together field trials
and assessments, proof of concept and real-world experience of
implementing smart solutions, it represents an essential resource
for all involved in innovative system design.
Launching in 2017, Benchmark Smart Solutions will be the industry’s only real-world resource for
security professionals who are intent on offering added value through the delivery of smarter solutions.
@Benchmark_Smart
Partner Companies
www.benchmarksmart.com

x
RISKXtra
Appointments
Ashley Almanza
G4S Group’s CEO Ashley
Almanza has been
announced as the new chair
of the International Security
Ligue, an association of
private security
organisations responsible
for defining, establishing
and maintaining the highest
ethical and professional standards within the
private security industry worldwide.
The International Security Ligue was founded
in 1934. Its registered offices are based in
Berne, Switzerland. Maintaining the highest
ethical and professional standards across the
private security industry has been achieved
through the very open and cordial exchange of
ideas and experiences between member
companies, all of whom are leading businesses
in the countries whom they represent.
The International Security Ligue is now
represented on all continents and in 34 nations.
As a mark of the high esteem in which the Ligue
is held across the globe, it’s represented in a
consultative capacity as a non-Governmental
organisation at the United Nations and within
the European Common Market.
Almanza commented: “With more than two
million staff providing security and related
services in over 120 countries, members of the
International Security Ligue play a vital role,
contributing to the security and safety of people
and assets all over the world. To be successful,
we must employ the very best people, apply
effective screening and training and meet or
exceed the requirements of both national and
international laws as well as ethical standards.”
Almanza concluded: “Our goal has to be to
eradicate injuries and fatalities across our
industry. It’s an appropriate goal.”
Appointments
Risk Xtra keeps you up-to-date with all the latest people
moves in the security, fire, IT and Government sectors
Simon Banks
The British Security Industry Association (BSIA)
is pleased to welcome Simon Banks, Group
managing director of CSL, as its new chairman.
The announcement was made at the British
Security Awards Ceremony, held at the London
Marriott Hotel in Grosvenor Square on 11 July.
Banks brings with him a wealth of industry
knowledge gained through a highly successful
career. He co-founded the CSL Group (formerly
CSL DualCom) back in 1996 to manufacture
security and communications products for the
security and fire sectors and, in the intervening
period, has built the business to become a
global provider of connectivity solutions.
Banks will now be leading the BSIA’s Board,
comprising of 15 Membership Section head
directors, in responding to advancing
technology and changing attitudes towards
securing peoples’ lives and property.
Speaking about his new appointment, Banks
explained to Risk Xtra: “With so many new
opportunities on offer, there has never been a
better time to engage with the Trade
Association. The entire security value chain
should welcome, adopt and promote new
technologies rather than allow competing
verticals to invade our sector. Standards and
competence underpin our industry and they
should never be compromised. Active
participation in the BSIA ensures that we all
remain a relevant and competitive force with
key technologies and skills.”
Gary Stanton
Axis Group, the integrated security and
cleaning services business, has promoted
Gary Stanton to the newly-created role of
Group commercial director as part of bold
restructuring plans specifically designed to
focus the organisation on long-term growth
and profitability.
Stanton will now manage both the
commercial security and cleaning teams,
which are to be aligned into a single
department. This move reflects the increasing
success that the Group is having in delivering
its services as an integrated contract offer.
With over 14 years’ experience in the
industry, Stanton joined Axis Security back in
December 2009. He was promoted to the role
of commercial director in 2015.
In his new role, Stanton will report directly
to Jonathan Levine, the Group’s CEO, who’s
looking forward to working closely with him.
“I’m pleased to welcome Gary into this new
position and wish him well in the role,”
observed Levine. “We’ve already begun to see
the success of the Group’s commercial team
with the centralisation of all Bid Writing
functions, and we believe these changes can
lead to further success and achievement in
relation to our commercial aims. For his part,
Gary harbours exceptional experience both
within our industry generally and also across
the Axis Group, which makes him the ideal
choice for this new role within the company.”
67
www.riskxtra.com>

x
RISKXtra
Appointments
Martin Harvey
During the 50th General Assembly of Euralarm, the
European association representing the fire safety and
security industries, the members chose Martin Harvey of
Johnson Controls to be the organisation’s new president.
Harvey succeeds Enzo Peduzzi who has served in the role
for the past three years.
A new general manager – namely Paul van der Zanden
– to represent the association in Brussels was also
introduced and begins in post during Q3.
In separate meetings, new chairs were elected for the myriad Euralarm
Sections and will also join as members of the Euralarm Board. Lance Rütimann
(of Siemens) will chair the Fire Section of Euralarm with Michael Scharnowsky
(from Hekatron) as vice-chairman.
Tornbjörn Laursen (of SikkerhedsBranchen) will chair the Extinguishing
Section with Alan Elder (of the Fire Industry Association) serving as vicechairman.
Jon Könz (Siemens) has been elected chair of the Services Section
with Philippe Lecuyer (DEF) taking the role of vice-chairman.
David Wilkinson of the British Security Industry Association is to carry on as
chairman of the Security Section. Milan Ceeh (AGA) has been elected to serve
as Wilkinson’s vice-chairman.
Paul Grist
Trigion Security, the
specialist security
solutions division of
Facilicom UK, has
announced the
appointment of Paul Grist
as its new security
director. Grist started in
this role on Monday 16
July and succeeds Neil Ricketts.
Grist brings many years’ experience and
knowledge to his new role and now assumes
responsibility for sales, marketing and strategy.
He will be supported on electronic security
matters by Dave Bonci and on security
guarding-related issues by Sean Titheridge,
who also joined Trigion Security in July.
Grist joins Trigion from Insafe International
where he was head of electronic systems. Prior
to this, Grist served as managing director of the
Swift Alarms Group.
Speaking about the move, Grist informed
Risk Xtra: “I’m looking forward to building upon
Trigion Security’s good name to further
strengthen and develop the company’s
presence throughout the UK.”
Jan-Hein Hemke, managing director of
Facilicom UK, added: “We welcome Paul to the
team. I’m fully confident that his experience
and skills will contribute towards the continued
growth of our security division over the months
and years to come.”
As a business, Trigion operates to the very
highest standards in the industry and has
gained Security Industry Authority Approved
Contractor status as well as ISO 9001.
Ben Draper
Security guarding
solutions specialist Ward
Security has announced
that executive finance
director Ben Draper has
been appointed chief
operating officer (COO), a
new position created
within the business.
In this role, Draper will be an integral part of
the Ward Security Executive Leadership Team
alongside Kevin Ward (managing director) and
CEO David Ward, the co-founders of the
business. Draper joined Ward Security back in
2013 from an accountancy practice to become
finance director designate. During his time in
practice, he gained considerable experience
across a number of industries and qualified as a
Chartered Accountant.
Draper was promoted to executive finance
director (and the Board of Ward Security
Holdings) in 2015.
As the company’s COO, Draper’s input will be
pivotal when it comes to overseeing the daily
operations of the business encompassing all
departments as well as implementing core
long-term financial objectives.
Alan Clamp
Alan Clamp, CEO at the
Security Industry
Authority, is to step
down from the
organisation after more
than three successful
years at the helm.
Clamp will then take on
the role of CEO at the
Professional Standards Authority from
Thursday 1 November.
Commenting on his decision to leave the
private security industry’s Regulator, Clamp
explained: “It has been a great privilege to
lead the SIA. I have been supported by a
staff team who have consistently performed
to a very high standard with dedication and
professionalism. I would like to thank them
for this. Their commitment, together with the
engagement and support of the private
security industry itself, has enabled us to
achieve our objectives and rise to the
challenges and opportunities we’ve faced
over the last three years.”
Clamp joined the SIA back in June 2015. He
has since overseen the introduction of the
online licensing system and work designed
to strengthen and review the Regulator’s
voluntary Approved Contractor Scheme.
68

ACCESS CONTROL
ACCESS CONTROL
ACCESS CONTROL MANUFACTURER
KERI SYSTEMS UK LTD
Tel: + 44 (0) 1763 273 243
Fax: + 44 (0) 1763 274 106
Email: sales@kerisystems.co.uk
www.kerisystems.co.uk
ACCESS CONTROL & DOOR HARDWARE
NORTECH CONTROL SYSTEMS LTD.
Nortech House, William Brown Close
Llantarnam Park, Cwmbran NP44 3AB
Tel: 01633 485533
Email: sales@nortechcontrol.com
www.nortechcontrol.com
ACCESS CONTROL – BIOMETRICS, BARRIERS,
CCTV, TURNSTILES
ALPRO ARCHITECTURAL HARDWARE
Products include Electric Strikes, Deadlocking Bolts,
Compact Shearlocks, Waterproof Keypads, Door
Closers, Deadlocks plus many more
T: 01202 676262 Fax: 01202 680101
E: info@alpro.co.uk
Web: www.alpro.co.uk
UKB INTERNATIONAL LTD
Planet Place, Newcastle upon Tyne
Tyne and Wear NE12 6RD
Tel: 0845 643 2122
Email: sales@ukbinternational.com
Web: www.ukbinternational.com
ACCESS CONTROL – SPEED GATES, BI-FOLD GATES
ACCESS CONTROL
COVA SECURITY GATES LTD
Bi-Folding Speed Gates, Sliding Cantilevered Gates,
Road Blockers & Bollards Consultancy, Design,
Installation & Maintenance - UK Manufacturer - PAS 68
Tel: 01293 553888 Fax: 01293 611007
Email: sales@covasecuritygates.com
Web: www.covasecuritygates.com
HTC PARKING AND SECURITY LIMITED
St. James’ Bus. Centre, Wilderspool Causeway,
Warrington Cheshire WA4 6PS
Tel 01925 552740 M: 07969 650 394
info@htcparkingandsecurity.co.uk
www.htcparkingandsecurity.co.uk

ACCESS CONTROL
CCTV
CCTV
INTEGRATED DESIGN LIMITED
Integrated Design Limited, Feltham Point,
Air Park Way, Feltham, Middlesex. TW13 7EQ
Tel: +44 (0) 208 890 5550
sales@idl.co.uk
www.fastlane-turnstiles.com
ACCESS CONTROL
MODICAM EUROPE
Rapid Deployment Digital IP High Resolution CCTV40
hour battery, Solar, Wind Turbine and Thermal Imaging
Wired or wireless communication fixed IP. CE Certified.
Modicam Europe, 5 Station Road, Shepreth,
Cambridgeshire SG8 6PZ
www.modicam.com sales@modicameurope.com
CCTV
SECURE ACCESS TECHNOLOGY LIMITED
Authorised Dealer
Tel: 0845 1 300 855 Fax: 0845 1 300 866
Email: info@secure-access.co.uk
Website: www.secure-access.co.uk
G-TEC DISTRIBUTION
Gtec House, 35-37 Whitton Dene
Hounslow, Middlesex TW3 2JN
Tel: 0208 898 9500
www.gtecsecurity.co.uk
sales@gtecsecurity.co.uk
CCTV & IP SECURITY SOLUTIONS
PANASONIC SYSTEM
COMMUNICATIONS COMPANY EUROPE
Panasonic House, Willoughby Road
Bracknell, Berkshire RG12 8FP UK
Tel: 0207 0226530
Email: info@business.panasonic.co.uk
CCTV POLES, COLUMNS, TOWERS AND
MOUNTING PRODUCTS
ALTRON COMMUNICATIONS
EQUIPMENT LTD
Tower House, Parc Hendre, Capel Hendre, Carms. SA18 3SJ
Tel: +44 (0) 1269 831431
Email: cctvsales@altron.co.uk
Web: www.altron.co.uk

DIGITAL IP CCTV
DISTRIBUTORS
SESYS LTD
High resolution ATEX certified cameras, rapid deployment
cameras and fixed IP CCTV surveillance solutions
available with wired or wireless communications.
1 Rotherbrook Court, Bedford Road, Petersfield,
Hampshire, GU32 3QG
Tel +44 (0) 1730 230530
Fax +44 (0) 1730 262333
Email: info@sesys.co.uk www.sesys.co.uk
ONLINE SECURITY PRODUCTS
Security distributors direct to installers, property
maintenance & facilities management companies
CCTV SPECIALISTS
PLETTAC SECURITY LTD
Unit 39 Sir Frank Whittle Business Centre,
Great Central Way, Rugby, Warwickshire CV21 3XH
Tel: 01788 567811 Fax: 01788 544 549
Email: jackie@plettac.co.uk
www.plettac.co.uk
Phone 0800 880 6123
Phone 0113 850 6123
sales@onlinesecurityproducts.co.uk
www.onlinesecurityproducts.co.uk
AWARD-WINNING, LEADING GLOBAL WHOLESALE
DISTRIBUTOR OF SECURITY AND LOW VOLTAGE
PRODUCTS.
CONTROL ROOM & MONITORING
ADVANCED MONITORING SERVICES
EUROTECH MONITORING SERVICES LTD.
Specialist in:- Outsourced Control Room Facilities •
Lone Worker Monitoring • Vehicle Tracking • Message
Handling • Help Desk Facilities • Keyholding/Alarm
Response
Tel: 0208 889 0475 Fax: 0208 889 6679
E-MAIL eurotech@eurotechmonitoring.net
Web: www.eurotechmonitoring.net
ADI GLOBAL DISTRIBUTION
Distributor of electronic security systems and solutions
for over 250 leading manufacturers, the company also
offers an internal technical support team, dedicated
field support engineers along with a suite of training
courses and services. ADI also offers a variety of fast,
reliable delivery options, including specified time delivery,
next day or collection from any one of 28 branches
nationwide. Plus, with an ADI online account, installers
can order up to 7pm for next day delivery.
Tel: 0161 767 2990 Fax: 0161 767 2999 Email:
sales.uk@adiglobal.com www.adiglobal.com/uk

GATE AUTOMATION & ACCESSORIES
WHOLESALER/DISTRIBUTOR
COMPLETE SOLUTIONS FOR IDENTIFICATION
KING SYSTEMS LTD
Your one stop Gate Automation Wholesaler/Distributor
Unit B. Nicholson Court,
Geddings Road, Hoddeston,
Hertfordshire, EN11 0NE, England.
Tel: 01992 465999 Fax: 01992 465791
Email: info@kingsystemsltd.com
www.kingsystemsltd.com
THE UK’S MOST SUCCESSFUL DISTRIBUTOR OF IP,
CCTV, ACCESS CONTROL AND INTRUDER DETECTION
SOLUTIONS
DATABAC GROUP LIMITED
1 The Ashway Centre, Elm Crescent,
Kingston upon Thames, Surrey KT2 6HH
Tel: +44 (0)20 8546 9826
Fax:+44 (0)20 8547 1026
enquiries@databac.com
INDUSTRY ORGANISATIONS
TRADE ASSOCIATION FOR THE PRIVATE SECURITY
INDUSTRY
NORBAIN SD LTD
210 Wharfedale Road, IQ Winnersh, Wokingham,
Berkshire, RG41 5TP
Tel: 0118 912 5000 Fax: 0118 912 5001
www.norbain.com
Email: info@norbain.com
IDENTIFICATION
WWW.IDENTIFICATIONSOLUTIONS.CO.UK
BRITISH SECURITY INDUSTRY
ASSOCIATION
Tel: 0845 389 3889
Email: info@bsia.co.uk
Website: www.bsia.co.uk
Twitter: @thebsia
INTEGRATED SECURITY SOLUTIONS
SECURITY PRODUCTS AND INTEGRATED SOLUTIONS
IDENTIFICATION SOLUTIONS
Members • Staff • Visitors • Contractors • Conference
• Clubs • Delegates • Corporate ID
www.identificationsolutions.co.uk
HONEYWELL SECURITY AND FIRE
Tel: +44 (0) 844 8000 235
E-mail: securitysales@honeywell.com

INTEGRATED SECURITY SOLUTIONS
UPS - UNINTERRUPTIBLE POWER SUPPLIES
INNER RANGE EUROPE LTD
Units 10 - 11, Theale Lakes Business Park, Moulden
Way, Sulhampstead, Reading, Berkshire RG74GB, United
Kingdom
Tel: +44(0) 845 470 5000
Fax: +44(0) 845 470 5001
Email: ireurope@innerrange.co.uk
www.innerrange.com
UNINTERRUPTIBLE POWER SUPPLIES LTD
Woodgate, Bartley Wood Business Park
Hook, Hampshire RG27 9XA
Tel: 01256 386700 5152 e-mail: sales@upspower.co.uk
www.upspower.co.uk
PERIMETER PROTECTION
PERIMETER PROTECTION
SECURITY
CASH & VALUABLES IN TRANSIT
GPS PERIMETER SYSTEMS LTD
14 Low Farm Place, Moulton Park
Northampton, NN3 6HY UK
Tel: +44(0)1604 648344 Fax: +44(0)1604 646097
E-mail: info@gpsperimeter.co.uk
Web site: www.gpsperimeter.co.uk
POWER
UPS - UNINTERRUPTIBLE POWER SUPPLIES
ADEPT POWER SOLUTIONS LTD
Adept House, 65 South Way, Walworth Business Park
Andover, Hants SP10 5AF
Tel: 01264 351415 Fax: 01264 351217
Web: www.adeptpower.co.uk
E-mail: sales@adeptpower.co.uk
CONTRACT SECURITY SERVICES LTD
Challenger House, 125 Gunnersbury Lane,
London W3 8LH
Tel: 020 8752 0160 Fax: 020 8992 9536
E: info@contractsecurity.co.uk
sales@contractsecurity.co.uk
Web: www.contractsecurity.co.uk
EXPERTS IN X-RAY SCANNING SECURITY EQUIPMENT
SINCE 1950
TODD RESEARCH
1 Stirling Way, Papworth Business Park
Papworth Everard, Cambridgeshire CB23 3GY
United Kingdom
Tel: 01480 832202
Email: xray@toddresearch.co.uk
FENCING SPECIALISTS
J B CORRIE & CO LTD
Frenchmans Road
Petersfield, Hampshire GU32 3AP
Tel: 01730 237100
Fax: 01730 264915
email: fencing@jbcorrie.co.uk

INTRUSION DETECTION AND PERIMETER PROTECTION
LIFE SAFETY EQUIPMENT
OPTEX (EUROPE) LTD
Redwall® infrared and laser detectors for CCTV applications
and Fiber SenSys® fibre optic perimeter security
solutions are owned by Optex. Platinum House, Unit
32B Clivemont Road, Cordwallis Industrial Estate,
Maidenhead, Berkshire, SL6 7BZ
Tel: +44 (0) 1628 631000
Fax: +44 (0) 1628 636311
Email: sales@optex-europe.com
www.optex-europe.com
C-TEC
Challenge Way, Martland Park,
Wigan WN5 OLD United Kingdom
Tel: +44 (0) 1942 322744
Fax: +44 (0) 1942 829867
Website: www.c-tec.com
INTRUDER AND FIRE PRODUCTS
PERIMETER SECURITY
CQR SECURITY
125 Pasture road, Moreton, Wirral UK CH46 4 TH
Tel: 0151 606 1000 Fax: 0151 606 1122
Email: andyw@cqr.co.uk
www.cqr.co.uk
SECURE CONNECTIVITY PROVIDERS
TAKEX EUROPE LTD
Aviary Court, Wade Road, Basingstoke
Hampshire RG24 8PE
Tel: +44 (0) 1256 475555
Fax: +44 (0) 1256 466268
Email: sales@takex.com
Web: www.takex.com
SECURITY SYSTEMS
CSL
T: +44 (0)1895 474 474
sales@csldual.com
@CSLDualCom
www.csldual.com
ONLINE SECURITY SUPERMARKET
BOSCH SECURITY SYSTEMS LTD
PO Box 750, Uxbridge, Middlesex UB9 5ZJ
Tel: 0330 1239979
E-mail: uk.securitysystems@bosch.com
Web: uk.boschsecurity.com
SECURITY PRODUCTS
EBUYELECTRICAL.COM
Lincoln House, Malcolm Street
Derby DE23 8LT
Tel: 0871 208 1187
www.ebuyelectrical.com
EATON
Eaton is one of the world’s leading manufacturers of
security equipment its Scantronic and Menvier product
lines are suitable for all types of commercial and residential
installations.
Tel: 01594 545 400 Email:
securitysales@eaton.com
Web: www.uk.eaton.com Twitter: @securityTP

thepaper
Business News for Security Professionals
Pro-Activ Publications is embarking on a revolutionary
launch: a FORTNIGHTLY NEWSPAPER dedicated to the
latest financial and business information for
professionals operating in the security sector
The Paper will bring subscribers (including CEOs,
managing directors and finance directors within the
UK’s major security businesses) all the latest company
and sector financials, details of business re-brands,
market research and trends and M&A activity
FOR FURTHER INFORMATION
ON THE PAPER CONTACT:
Brian Sims BA (Hons) Hon FSyI
(Editor, The Paper and Risk UK)
Telephone: 020 8295 8304
e-mail: brian.sims@risk-uk.com
www.thepaper.uk.com

NOTHING MISSED
Independent left and right detection
with BX Shield PIRs
BX Shield
Outdoor curtain PIRs
up to 12m per side
wired/wireless & anti masking
The BX Shield sensors combine superior outdoor performance with
a versatile, modern design. The result is a range of easy-to-install curtain
sensors protecting the immediate boundary of your premises against intrusion.
With two pyro-elements on the left, and two on the right, the motion sensors
detect completely independently on each side and up to 12m to suit the needs
of your property. Not affected by small animals or by environmental changes,
it is a perfect trigger for outdoor CCTV cameras providing visual verification
for residential or commercial applications.
For more information visit www.optex-europe.com
or contact us at +44(0) 1628 631 000
INDOOR DETECTION | OUTDOOR DETECTION | TAILGATING DETECTION | PEOPLE COUNTING | ENTRANCE DETECTION