If you are reviewing, updating or actually developing your site security plan, here are 9 top guidelines you need to consider:
-
Risk assessments are critical. Perform a detailed risk assessment and identify the threats you might face and their likelihood of occurring. Next identify your vulnerabilities and the potential impact on your business.
-
Security planning will be required if you are extending or acquiring new premises. Make sure you conduct this early in the planning stage. You’ll save considerable money when you start early rather than adding new measures later.
-
Make sure you install appropriate physical measures such as alarms, locks, CCTV surveillance, glazing protection and lighting. Will you have an outside organisation monitor your premises after hours? Will you require on site security officers?
-
Ensure your access points are reduced – have a minimum number and always issue visitors and staff with passes. Where possible, never permit unauthorised vehicles close to your buildings.
-
Analyse your mail-handling policy, procedures and systems. Are they up to date? Have they been tested?
-
Do you have basic housekeeping throughout your business? Make sure you keep public areas tidy and well-lit. Remove unnecessary furniture, keep shrubs and bushes clear of fences and keep garden areas clear.
-
What is your recruitment procedure when hiring staff or contractors? Do you check identities, check references, conduct a thorough ‘assessment and verification process? Don’t make the mistake of hiring the wrong person who ends up a security risk for your organisation. Hire slow fire fast!
-
How do you dispose of confidential waste / paperwork? Is it sterilised? Who searches through your waste bins after hours? Implement a strong policy now. Also make sure you have proper systems to protect your IT information and take effective IT precautions.
-
When was the last time your business tested its security and emergency plans? Do you just watch a ‘user manual’ in the company library? Does it collect dust? If you are not continually ‘testing’ your systems it is not a system! Run a desktop exercise or live drill – test – test – test.
Leave A Comment