The Case for Holistic Security

® RiskWatch
The Leader in Security Risk Assessment
The Case for Holistic Security: The Integration of Information and Physical Security as an Element of Homeland Security by Caroline Ramsey Hamilton, President & CEO-RiskWatch, Inc.
Background course, this record has to be protected, because it Since the advent of computer systems and can't be locked up in a cabinet like the old VHS widespread use of the internet, the function of tapes. Information Security Officer has been artificially separated from the Corporate (or Physical) Smart buildings are another example of old Security function. Now, in an increasingly technology that has been replaced with digital, networked, post 9-11 world, these two security networked technology. Coordinated by a single areas are moving closer and closer together. As network console, the smart buildings today can both private corporations and government control access to different areas of the facility, agencies struggle with the demands of maintaining control fire alarms and security system alarms, as a heightened level of security, issues of how well as control the heating and air conditioning information security should interact with physical units within the facility. A major provider of physical security move into the spotlight. security solutions describes their product as "offering an all-encompassing security environment There are several reasons for this convergence for multi-server enterprise system topology, central between information security and physical security. server systems, and mobile enterprise systems"; One of the primary reasons is because physical supporting applications for access control, alarm security elements have become increasingly monitoring, ID management, physical asset computerized and networked. Physical lock and management, digital video surveillance, recording/key systems have been replaced by smart cards archive management, smart card, biometrics and that not only allow employees access to different visitor management functions. areas in a facility, but also may keep audit trails of where employees spend their days. These new technologies for physical security have taken the practice of physical security to a new Another example of this trend is surveillance level, yet many of the practices that are cameras. Surveillance cameras, also known as commonplace in information security have not CCTV (Closed Circuit) cameras, are used to been adopted in this new environment. record everything that they see on VHS tapes. The obvious problem with VHS tapes is that someone Degrees of Separation Between Information has to change the tapes frequently, that is, take & Physical Security out the full tape and replace it with an empty tape. Prior to 1995, the information security Time and time again, computers and other management and physical security management company property would disappear at precisely the were completely separated. The information moment that the tape switch took place. Many security officer position started with simple data companies have now switched to newer digital center security, and then grew into the information technology, which eliminates the need to change security environment in which computers were on tapes and creates a continuous audit trail. Of every desktop and eventually linked to the internet.
www.riskwatch.com RiskWatch® is a registered trademark of RiskWatch, Inc. ® RiskWatch
The Leader in Security Risk Assessment
Because the computer systems operations were Intrusion detection is also a term with double managed out of the MIS (Management Information meaning, depending on which side of the security Systems) department, the security function was fence you're on. If you're on the physical security also created at this level in the organization. side, intrusion detection could mean making sure that there are sensors around the building and on By contrast, the physical security officer was the w... [download for more]