Physical Security Information Management (PSIM) Systems enable security personnel to manage an enterprise's exposure to security risk. CornerStone have developed extensive experience in designing and implementing PSIM solutions for a global client base.
The PSIM System provides the framework for the many disparate security systems and devices to integrate, and adds an ability for intuitive prioritisation and escalation according to a range of predetermined criteria that might include chronology, location, priority and prevailing threat. The PSIM software will select the correct response procedure, which will conform to both the regulatory requirements and the procedural, and operational needs of the enterprise.
After the terrorist attack on the World Trade Centre in New York on the 11th September 2001 it became apparent that emergency response systems needed to change. No longer could it be acceptable that critical information from numerous sources was left to system operators to interpret and act upon consistently and correctly. In the analysis that took place in the months and years following the attack, a belief emerged that security system management and the emergency response could be improved.
As PSIM solutions have developed, with the backdrop of interoperability and the willingness of system manufacturers to develop 'open' system architecture, the proliferation of the range of interconnected systems has grown exponentially. Whilst adding complexity, the additional reference information available at the initiation of an incident helps refine and improve the accuracy of the prescribed emergency response and adds other value-added functionality.
This can include identity management, credential management, logical/physical integration and facilities management, in addition to improved analytics.
It's these types of features and services that will deliver improved return on investment opportunities and help heads of security develop not only their broader security measures, but also the integration of security with other mainstream business services.
The essential consultation process
Whilst the objective of a PSIM System is to simplify and enhance the way 'situations' are managed, PSIM is not a simple solution to implement. Before a system can be deployed it is essential that the business operational requirement is fully understood. The business consultation process will provide the platform for a successful PSIM implementation.
Deployment is complex and requires a well developed and executed project management process. Low level, cause and effect and rules and permission matrices should be produced and agreed to permit accurate system programming. Once deployed, extensive scenario testing should be utilised to fine tune and complete the PSIM system and it is important that this is carried out by an Independent, subject matter expert as opposed to the software vender. This ensures the requisite checks and measures are applied and each and every cause and effect is checked and verified.
A PSIM software application will encompass the following 5 elements:
Data Gathering: Device level information gathered from a broad range of security systems for reporting real time status updates.
Data Evaluation: The PSIM software should have the ability to evaluate the information that is gathered and based upon analytical algorithms, identify and prioritise, real incidents or situations.
Confirmation: The monitored 'situation' should be presented to a system operator in a clear, concise, yet comprehensive format, enabling an accurate and speedy response to a 'confirmed' security incident.
Resolution: The PSIM system software should facilitate the presentation of logically displayed and clearly communicated actions that the Security Operators should carry out when managing a real time incident or situation. These instructions will have been developed from a range of references including the standard operating procedures, Assignment Instructions, the prevailing policies and standards imposed by national or international regulations and which will adapt dependent upon the present threat profile. There should also be a range of tools available to enable the resolution of the situation to be managed effectively.
Reporting: All activity should be monitored and 'recorded', including all operator actions, to aid compliance management, provide training scenarios and as an auditable record of activity subsequent to a security incident.
Download our latest white paper
To learn more about Physical Security Information Management please call us on 0207 868 5070. |
