When investing in a security system, either for a home or business, how do you know you are choosing the right system that will get the right response from the emergency services?

Security systems are one of the many essential tools in the fight against crime, and in particular, burglary, theft and robbery. Academic research shows professionally installed and maintained alarm systems provide a greater deterrent and properties fitted out with them are less likely to be targeted by criminals. Burglars want easy pickings and avoid properties with effective security.

Types of alarm systems

First off, a word about DIY alarms – these are not recommended at all. Whilst these DIY kits may provide a cheaper alternative, the National Police Chiefs’ Council (NPCC) does not recommend them as the alarm system may not be designed to meet the needs and risks of a particular property and very often, problems with installation, maintenance and reliability may not become clear until a burglary has actually occurred.

The two main types of alarm systems are audible alarms and monitored alarms. However, they operate differently and are treated differently by the police.

Audible alarms sound a loud siren or bell, designed to scare a burglar and alert neighbours and passers-by at the scene, hoping that they will then call the police to report a crime in progress.

In contrast, monitored alarms are just that – monitored 24/7 by an approved commercial ‘Alarm Receiving Centre’ or ARC. When an alarm is triggered, the ARC immediately checks the signal to verify it is a genuine alarm, alerts a keyholder and, if compliant, the police.

When will police attend?

However, a key point to note is the police will attend an alarm signal from a monitored alarm as long as the system complies with the NPCC Security Systems Policy, which details how the system is installed, monitored and maintained. It also requires security companies providing this service to be approved by an Independent Inspectorate Body – the NSI or SSAIB – and registered with the local police force.

Compliant alarms and reputable installation companies and ARCs are essential to ensure that there is an appropriate response to an alarm activation. If the alarm is not compliant there will not be an immediate police response, something which could be vital if someone is in immediate danger or property is being stolen.

The NPCC Security Systems Group

Police Crime Prevention Initiatives (Police CPI) provides the Secretariat to the NPCC Security Systems Group to monitor police strategies and technical developments and advise on policy requirements, as well as provide support to police forces and the private security industry on the administration of police response to security systems.

Police CPI works closely with the national alarm inspectorate bodies and trade organisations for the security industry – the NSI, SSAIB, BSIA, as well as the Fire and Security Association (FSA). This work seeks to progress a partnership approach with the private security industry, specifically to improve the performance of security systems and increase the preventative impact and detection rate emanating from such systems.

Fewer false alarms

This partnership approach has heralded much success. Since 1995 there have been 1.1 million fewer calls to police to respond to false alarms or alarms involving faulty equipment, reducing from 1,188,386 in 1995 to 85,146 in 2020 despite the number of registered alarm systems almost doubling. The number of burglaries from properties with police- compliant security systems has also reduced significantly from 135,990 in 1995 to 11,109 in 2020.

The NPCC is currently working with the alarm industry towards having alarm activations from compliant systems passed electronically, direct from ARCs into police control rooms, via the development of the ECHO (Electronic Call Handling Operations) initiative.

The ECHO alarm transfer service is currently being rolled out to police forces across the country and facilitates greater effectiveness in police response to emergency alarms. It is a fully automated electronic alarm transmission service between ECHO-connected ARCs and the police, eliminating communication errors and delays associated with manual telephone call handling, to ultimately provide a quicker police response.

ECHO delivers time savings in circumstances where ‘every second counts’ as blue light services respond to emergency alarms. Alarm signalling to the police via the ECHO hub replaces traditional manual handling of alarm calls (by voice calls) between the ARC and the blue light responder. This can save between one and four minutes in response times by the police.

The Metropolitan Police and Essex Police were the first forces to be ECHO-connected in 2021, with Avon & Somerset and Northumbria constabularies following in 2022. With over 240,000 alarm installations now ECHO-connected and supported by ECHO, tangible benefits are already being delivered, including improved police alarm response times and more effective deployment of police responders to ECHO-connected alarmed premises.

Ken Meanwell

Compliance Manager

Police Crime Prevention Initiatives, secretariat for the National Police Chiefs’ Council Security Systems Group

The post Improving the response time to security system activations appeared first on City Security Magazine.

In May 2022 the Queen’s Speech proposals for the next session of parliament included Protect Duty among the legislation confirmed.

This was in no small part due to the unending efforts of Figen Murray, following the tragic loss of her son in the 2017 Manchester Arena terror attack and her Martyn’s Law campaign.

The recently published Protect Duty consultation provides thought-provoking ideas about a range of potential future protective responsibilities and measures to improve security at publicly accessible locations (PALs) – defined by the UK government as “any place to which the public or any section of the public has access, on payment or otherwise as of right or by virtue of express or implied permission”. These include a wide and diverse range of everyday locations such as: public venues with capacity for 100 persons or more; large organisations (employing 250 staff or more); and public spaces, e.g. city centre squares, parks and beaches.

ProtectUK App

The government has continued to engage with stakeholders in preparing forthcoming Protect Duty legislation, whilst collaborating with the National Counter Terrorism Security Office (NaCTSO) and Pool Reinsurance in a tripartite, the Counter Terrorism Alliance, to develop the interactive online app, ProtectUK, which is accessible, free of charge, to anyone with a smartphone, and well worth investigating.

The app supports businesses by helping them to protect and prepare their customers, staff and premises against the threat of terrorism whilst helping them increase their overall security. It provides users with access to vital information and guidance and shares practical guidance on how to respond in the event of an attack, linked to the Counter Terrorism policing’s suite of ACT (Action Counters Terrorism) training products, the Security Industry Authority ACT Awareness e-Learning package and a range of NaCTSO guidance videos. Its latest bulletins include emergency response and post-incident guidance, together with details of the ACT online reporting form and confidential hotline.

Competent persons

Subject to parliamentary approval, the new Protect Duty will require a proposed Competent Persons Scheme to provide information and assistance to the business community on security advisers and competent persons in the workplace.

Whilst the full scope of this new scheme is yet to be determined, a “proof of concept” using the Protect Duty consultation and Manchester Arena Inquiry as datasets, the new scheme will look at the potential for security advisers providing appropriate advice to businesses in matters relating to counter terrorism protective security/preparedness. This will include employees in the workplace responsible for determining and implementing appropriate security practices within an organisation, such as a business owner or senior manager, or a more security-specific role, e.g. a security manager or operations manager.

The need for counter terrorism risk assessment by competent persons and organisations of publicly accessible locations is a fundamental requirement of the Protect Duty scheme. Accordingly, ProtectUK has provided guidance via a Risk Management Model comprising two main components: the identification of terrorist threats and evaluation of their associated risks.

Detailed information relating to aspects such as physical and active measures, as well as attack types, response mechanisms, intervention actions and recovery processes, are all described.

Third-party certification?

The potential to utilise third-party certification of this activity to support the wider Protect Duty solution looks to be an increasingly attractive option; the benefits it could deliver to those responsible for PALs – potentially buyers of risk assessment and mitigation deployment activity – has parallels within the security sector and also in fire safety, not to mention many other sectors and activities where safety and quality considerations are often taken for granted by the public.

For PALs, and especially those where large numbers of people can congregate, third-party certification could quickly and visibly demonstrate a provider’s technical expertise and reassuring quality of service.

Certificated/approved providers could play a central role in helping buyers identify robust security providers and to discharge their legal responsibilities, including those related to health and safety, employment law and other requirements, e.g. related insurance stipulations.

Third-party certification and its applicability to security risk assessment in PALs is surely an opportunity to be harnessed in keeping the public at large safe and avoiding further tragedy.

Matthew Holliday

Director of Approval Schemes,

National Security Inspectorate

www.nsi.org.uk

See previous articles on the Protect Duty:

Preparing for the Protect Duty

Protect Duty: Time to Define the role of Security Consultant

Figen Murray responds to the Protect Duty Consultation 

Martyn’s Law and the Security Sector

The post Protect Duty: Is third-party certification the answer? appeared first on City Security Magazine.

Owners and managers of businesses and other organisations’ premises must fulfil important responsibilities covering mandatory life safety fire risk assessments. But what precisely are these, and how can ‘Duty Holders’ best discharge their legal responsibilities?

In response to incidents including the 2017 Grenfell Tower tragedy, the importance of fire safety requirements is increasingly better appreciated, including a growing focus on the competency of system and service providers, as well as on the adoption of strengthened safety measures to protect those working in and visiting commercial, public sector premises and other facilities.

Essentially, employers/owners/managers of premises are likely to be identified as the legal ‘Duty Holder’ (referred to as the ‘Responsible Person’ in the Regulatory Reform (Fire Safety) Order 2005, introduced in England and Wales in October 2006 – other similar legislation covers Scotland and Northern Ireland.)

Duty Holders in a wide spectrum of non-domestic premises are tasked with ensuring ‘life safety fire risk assessments’ are carried out and the findings of assessments implemented. This may require the implementation of fire safety protections including fire detection, extinguishing and alarm systems, and emergency evacuation procedures.

In terms of inspections and enforcement action, the Fire Brigade may visit premises to check the fire risk assessment and prevention measures specified are appropriate. An Enforcement Notice may be served where they consider a serious risk is not being managed properly. Such an Enforcement Notice, if issued, details improvements needed – and by when they should be implemented. Insurance cover for premises may be invalidated if fire risk assessment-related measures have not been followed and/or the fire and rescue service has served an Enforcement Notice. Failure to comply with an Enforcement Notice could result in prosecution.

Conducting fire risk assessments

In essence, life safety fire risk assessment (LSFRA) protects lives and is fundamental to establishing sufficient fire prevention, protection and suppression measures, alongside safe evacuation procedures that can be applied in the event of an incident.

Assessment is best conducted once a building is occupied and operational. Since building use changes over time, LSFRA is only meaningful in the context of current usage, as well as the integrity of physical elements such as escape routes and fire doors. Where an organisation employs five or more people the results of LSFRAs must be documented and all assessments must be periodically reviewed to ensure they remain valid, considering, for example, given any change of use between assessments.

Identifying the ‘Duty Holder’

The Duty Holder can be anyone with control and/or oversight of a premises. In circumstances where the maintenance of a building (including, for example, regular fire alarm testing, portable fire extinguisher and other routine maintenance) is undertaken by a facilities management provider, or another external contractor, the Duty Holder must maintain a close working relationship with them to ensure required maintenance procedures are being adequately discharged, and that any changes in building use are reflected in the appropriate siting and maintenance of safety equipment.

Competent assessments

It may appear surprising, but current fire safety legislation does not define fire risk assessor ‘competence’! Government guidance states that where identified Duty Holders are unwilling or unable to complete an LSFRA – after all, this is a specialist area of expertise – advice should be sought from a demonstrably competent person. The guidance recommends assessments be conducted by a person with comprehensive training and experience in the specific type of fire risk assessment to be carried out.

Third party certificated or approved providers can provide significant reassurance for Duty Holders seeking help in meeting their fire safety obligations. Approved LSFRA providers all commit to an independent ongoing audit programme to verify their competency. Holding approval from a UKAS (United Kingdom Accreditation Service)-accredited independent certification body such as NSI (which is licensed to deliver the BAFE Life Safety Fire Risk Assessment Scheme SP205) evidences their competence to conduct fire risk assessments and clearly demonstrates their services are compliant with current appropriate industry standards and best practice.

Conclusion

Ensuring all appropriate fire safety measures are adequately identified and periodically reviewed by risk assessment is a primary task of Duty Holders, as is the follow-up to ensure identified measures are effectively implemented. Where changes in building use and working practices have occurred – for whatever reason: say, topically, as a result of Covid-19 and flexible working practices – these should be identified and considered in any fire risk assessment review.

Requesting third party certificated/approved LSFRA providers to review measures in place can help Duty Holders ensure they effectively fulfil both their legal responsibilities and insurance requirements, and demonstrate commitment to the safety of their staff, customers and visitors to the spaces they oversee.

John Davidson

Approval Schemes Manager (Systems)

National Security Inspectorate

www.nsi.org.uk

Read more articles on fire safety and prevention

Read more articles from NSI

The post Fire safety for business premises – are you meeting your obligations? appeared first on City Security Magazine.

Richard Jenkins, Chief Executive, National Security Inspectorate (NSI) on priorities for security in 2022

We asked Richard Jenkins, Chief Executive, National Security Inspectorate (NSI): What are your priorities for security, for individuals, organisations and public sector organisations, for 2022 and the next five to ten years?

Reducing false alarms and ensuring effective protection of people and property from unwanted intruders go hand in hand. We’ve come a long way from the days of insurers viewing burglary as their single biggest cost item and the police responding more often than not to false rather than genuine alarms. It’s a great success story, but one still ripe for further improvements in deterrence and police effectiveness in apprehending perpetrators.

A newly revised BS 8418:2021 ‘Design, installation, commissioning and maintenance of detector-activated video surveillance systems (VSS) – Code of practice’ is the fresh catalyst.  Introducing fundamental change, this new standard will appeal to many by putting properties protected by a Remote Video Response Centre (RVRC) onto police response, where previously it was not an option.

In addition to previously police-recognised systems, now known as ‘Type A+’ (those well suited to higher risk commercial, industrial, military and similar sites), a new ‘Type A’ classification in BS 8418:2021 is set to attract premises managers as well as owner/occupiers with simpler installation technology requirements.

Allocations of police URNs to third-party surveillance monitored sites will increase significantly, as buyers and operators of sites on 24/7 detector-activated CCTV monitored systems understand the attractive cost/benefit BS 8418:2021 ‘Type A’ represents in summoning police response.

The post Richard Jenkins, NSI on priorities for security in 2022 appeared first on City Security Magazine.

NSI has been working on raising standards in cyber security for security systems – alongside other stakeholders, including the FIA, Internet of Things Security Foundation (IoTSF) Smart Buildings Working Group, and SSAIB – in the British Security Industry Association’s Cyber Security Product Assurance Group (CySPAG).

A number of cross-industry efforts are in place to address important and evolving personal security risks posed by cyber security breaches.

Risk management policy and procedure continues to rise up the agenda in response not only to the COVID-19 pandemic, but also due to increasing risks associated with network-based communications. Since spring 2020 security managers have been prompted to review all aspects of business and staff safety and security – including a heightened emphasis on cyber security.

The importance of network protection – already a pressing concern – is further underlined by the almost daily emergence of new online security risks leaving individuals and companies vulnerable to cyber-attack, with potentially significant corporate and personal security and safety implications.

Connectivity to internal and external networks of safety and security systems, including intruder detection and alarms, access control and video surveillance, has increased exposure to the risk of malicious attack, and the need for effective cyber security measures in terms of their design, installation, commissioning, operation and ongoing maintenance.

Organisations increasingly recognise and are expected to demonstrate the importance of applied cyber security measures to protect their operations, for example through Cyber Essentials/Cyber Essentials Plus certification or ISO 27001 (an international standard which acts as a framework for managing information security risks). Yet equally important is competency in the installation and maintenance of security systems at client premises.

In 1736 Benjamin Franklin, a Founding Father of the United States, declared: “An ounce of prevention is worth a pound of cure”. Raising standards to improve safety and security of people and property does just that. NSI has been working on this question through its participation – alongside other stakeholders, including the FIA, Internet of Things Security Foundation (IoTSF) Smart Buildings Working Group, and SSAIB – in the British Security Industry Association’s Cyber Security Product Assurance Group (CySPAG).

Established in 2017, as a collaborative effort including product and system designers, manufacturers, installers and maintainers of security systems to bring together and harness cross-industry expertise, it provides practical and free-of-charge recommendations specifically for all installers of security systems to help reduce vulnerability to cybercrime (https://www.bsia.co.uk/cyspag).

CySPAG’s ongoing work has included the production of practical and informative guides, the first of which, ‘Cyber secure it’, was published in January 2019. Following this, a 20-page cyber security code of practice for installation of safety and security systems, released last summer, detailed cyber security requirements approved installers can apply to protect their customers’ systems. The effort to deliver this code of practice involved manufacturers, designers, installers and system maintainers all working together. The outcome was ‘CyberCop 342’. This addresses the continually increasing use of internet connected devices and systems in electronic security, and how the increasing number of devices and links on home and business networks leave individuals and companies vulnerable to cyber-attack.

A practical approach

CySPAG is committed to providing publicly available industry guidance focused on what is practicable for installers and what can be expected of clients and end users to provide meaningful and practical cyber secure solutions. This is in contrast and complementary to other cyber security schemes, where products are typically the main focus.

Addressing the essential competency of installers, and to some extent end users too, in safeguarding their systems as cyber secure, CyberCoP 342 is designed to enable professionals within the security industry to take all reasonable precautions when installing and operating security systems with cyber exposure.

CyberCoP 342 aims to ensure that installers ‘joining up the dots’ of hardware in a system do so competently and with reasonable care that delivers customer assurance in their connected solutions, and encourages sound implementation, regular testing and, where appropriate, updating of equipment and software.

End-user role

As CySPAG points out, end users have a role to play in cyber security and need to be aware of their responsibilities in keeping their system secure, in practically managing cyber risks on their installed system, and also in making informed choices when selecting a company to supply, install and maintain their connected security system.

CySPAG’s ongoing work accordingly includes a review of the current industry skills and cyber security competencies, identifying required training needs. It’s recognised that industry up-skilling will be required. The group’s aims include explaining allocated responsibilities as well as ensuring installers apply products that are cyber secure in relation to the risk application scenario in which they will be used. This remit also includes ensuring cyber security updates are provided in a timely manner, with end users being made aware of their own role in keeping their systems secure. The group’s future agenda will involve publication of further industry guidance; a cyber security code of practice for manufacturers of safety and security systems was launched in April 2021.

Conclusion

Information security, already an important issue, is here to stay and poses significant challenges. CySPAG’s collaborative industry-wide approach in addressing this risk signals new technology can be adopted safely, allowing the benefits of interconnected systems and devices to be widely realised without compromising the corporate and personal data of those using them.

Richard Jenkins

Chief Executive

NSI

www.nsi.org.uk

Read more articles from Richard Jenkins

Read more articles from NSI

Read more articles on cyber security

The post CySPAG – cyber security for security systems appeared first on City Security Magazine.

What is the role played by standards, codes of practice and quality management systems in risk management?

Risk management policies and procedures implemented by public and private sector organisations help strike the balance between fulfilling their various daily activities and enabling adequate protection for staff, customers, site infrastructure, visiting contractors, stock, and operational on-site equipment including IT – without interfering with the important, prime activity.

Regularly reviewing this in the context of evolving risks and threats can highlight potential vulnerabilities, as well as opportunities for continual improvement. Policy often invokes standards as a short cut way to ensure quality is maintained. One key to optimising risk mitigation lies in making use of the latest standards and codes of practice developed in response to evolving threats and new technologies. Complementary utilisation of ISO 9001 approval for quality management systems assists in this objective through its inclusion of a strong customer focus, the motivation and responsibility of top management, a process based approach and continual improvement.

Detector activated CCTV

Detector activated CCTV surveillance systems delivering police response is a case in point. The existing standard, BS 8418 (first introduced in 2003 and currently undergoing its third revision), has disappointingly not been widely adopted as a means of qualifying for a police URN. The ‘root and branch’ changes being introduced in this latest version of the standard – BS 8418 version 3, due for publication in 2021 – will tackle previous limitations including a perceived high system cost and, some would say, overly onerous installation requirements.

Cyber risks

The global pandemic has accelerated the role of IT-based communications in all our lives, and the emergence of significant new online security challenges for residential users and commercial/public sector organisations continues to be a growing cause for alarm. Increasingly internet-connected devices and systems, and the growing number of links in home and business networks, leave individuals and companies vulnerable to cyber attack.

Recognising this, the British Security Industry Association’s Cyber Security Product Assurance Group (CySPAG) was formed in 2017. Specifically responding to interest from installers, CySPAG produced a cyber security code of practice for installers of safety and security systems in 2020, providing guidance in practically managing their clients’ cyber risk when supplying, and installing, interconnected security systems.

NSI is working to ‘upgrade’ its scope of approval for security systems to include this code of practice, reinforcing installer competence and the confidence buyers can place in approved businesses. Similarly, an updated NSI code of practice for access control systems, NCP 109 Issue 3, is due in 2021. This revised code, embracing new technologies and methods and drawing on the latest BS EN 60839 standard series, will steer installers for example regarding IT networks and devices, along with cyber security.

The BS 10800 ‘umbrella’

Meanwhile, important developments in the security services field include the required introduction of BS 10800:2020 for NSI Guarding Gold & Silver certificated guarding providers by 31st March 2021. The thinking behind this overarching standard will simplify life for approved companies in the long run. It details managing the provision of security services at a strategic level and provides recommendations for the planning, management, staffing and operation of all organisations providing security industry services. All the security standards for static guarding, mobile patrol and events sit under the ‘umbrella’ of this new standard. Other remaining British Standards covering security services will be aligned with BS 10800 as they come up for revision.

Labour provision under the radar

Neither British Standards, nor the SIA’s Approved Contractor Scheme, directly address agency labour provision at present. Widely used, agency labour provides essential flexibility for guarding service providers. When professionally managed, it ensures security standards are maintained, not compromised, whilst remaining cost effective. Yet it remains an unwelcome opportunity for rogue labour and/or worker exploitation.

NSI is addressing this vulnerability with the introduction of a code of practice for the Provision of Labour in the Security and Events Sectors (NCP 119) after consultation with industry. From December 2021 it will become mandatory for NSI Guarding Gold and Silver approved companies to only use outsourced security staff from labour provider organisations signed up to the code.

Conclusion

Independent third-party certification plays proxy to a degree for discerning buyers of security systems and services, providing confidence in their suppliers’ capabilities and integrity, ensuring relevant service criteria are met, and certifying that associated insurance conditions are complied with.

Underpinning this, standards and codes of practice offer a valuable safety net for buyers, providing them with the reassurance of knowing that competencies are kept up to date and in line with revised standards and codes as a matter of course – in a sense, future-proofing tools.

Richard Jenkins

Chief Executive

National Security Inspectorate

www.nsi.org.uk

Read previous articles from Richard Jenkins

For further views on this topic, see related articles in our categories: Counter Terrorism Risk Management and Security Management

The post Risk management standards and codes of practice appeared first on City Security Magazine.

The essential contribution of agency labour providers to the security industry can be undermined by poor practice. Can a new code of practice address the best interests of security buyers and agency workers?

Buyers and providers of guarding services face potential risks in utilising agency labour in the industry.  It’s well known that commercial guarding services providers across a variety of security functions, including duties related to the protection and safety of public events, upscale their staffing resources when required.

The use of flexible labour in both the security guarding and events management sectors is common practice, and enhances providers’ operational efficiency and effectiveness. This operational reality, when professionally managed, ensures security standards are maintained and not compromised, whilst fulfilling contractual requirements.

Upscaling – the dangers

Yet, too often, inadequate management procedures linked to the scoping of additional security officers pose a risk to the safety and security of the public, by prejudicing the integrity of the supply chain, so offering unwelcome scope for rogue labour and/or worker exploitation.

The wider risk for event organisers and other buyers such as facilities owners and site managers is clear: the consequence of poor labour practice, resulting in a security breach, could lead to a loss of public confidence and damage their future business prospects.

In essence, the labour supply chain flexibility that, whether we realise it or not, we rely on to keep us safe, can have hidden ‘weak links’ which, if breached, can have attendant consequences: fallout for buyers, for service providers, for those employed through such working arrangements, and the general public. In the worst-case scenarios, rogue labour could have devastating results.

It’s become increasingly clear that there is a lack of ‘end-to-end’ oversight to fully address this risk. So, how can buyers have confidence their main security contractor’s supply chain is all it’s cracked up to be?

Squaring the circle

NSI, a UKAS accredited Certification Body in the Guarding Services market, approves organisations against British standards, ensuring they operate accordingly. Over the last two years, it has seen sufficient risk in the market to justify development of a Code of Practice and an approval scheme that both protects buyers and allows guarding providers to independently demonstrate their labour supply chain’s integrity.

In the context of feedback received regarding poor practices potentially compromising industry credibility, in 2019 NSI engaged with the Gangmasters and Labour Abuse Authority (GLAA), a government body that works in partnership to protect vulnerable and exploited workers.

Its teams investigate labour exploitation across all sectors in England and Wales, covering offences against the Gangmasters (Licensing) Act 2004, the Employment Agency Act 1973, the National Minimum Wage Act 1998 and the Modern Slavery Act 2015. The GLAA has highlighted sectors vulnerable to labour exploitation as including those with sub-contracting arrangements, since they are harder to monitor.

A workable and practical means of addressing this risk has been a priority, through the development of a new draft Code of Practice, NCP 119, for the ‘Provision of labour in the security and events sector’.  This addresses, and in a sense challenges, labour providers’ processes regarding, for example, the adequacy of screening checks, the monitoring of deployed security guard SIA licences, adherence to Working Time Regulations, compliance with minimum wage regulations, and checks on right to work and employment status. In short, it addresses rogue labour.

Best practice procedures

The new Code of Practice has been developed to enable Guarding Services providers to demand robust and professional employment practices from their labour providers, by requiring them to adopt and seek approval from NSI.  In this way organisations providing labour to security companies will be able to demonstrate best practice by holding independent certification in the scope of ‘Provision of labour in the security and events sector’.

By definition, use of the term ‘labour provision’ applies to activities which are described as bought-in-labour, licensed or unlicensed, as well as labour employed and/or supplied by a third party to temporarily supplement the contracting company’s own workforce. Its scope covers all labour provision to NSI Gold and Silver approved companies operating in the regulated security and events sector.

Importantly, approval to the Code by supply chain partners will demonstrate to buyers of services an end-to-end supply chain commitment to meeting statutory and legislative requirements, as well as meeting certain relevant environmental, social and governance criteria in the provision of services delivered.

These requirements include measures related to best practice in terms of organisational structure, finances, payroll, insurance and premises. They also include personnel, sale of services, operations and documentation, training and record-keeping. Companies procuring additional labour to support service delivery on their contracts will shortly be able to require labour providers to obtain a Certificate of Approval to NCP 119.

The intent is to ensure, and demonstrate to buyers, that professional standards and staff welfare are maintained, whilst ensuring that risks associated with weak supply chains are actively addressed on an ongoing basis, protecting the general public and security officers alike.

Richard Jenkins

Chief Executive,

National Security Inspectorate

www.nsi.org.uk

The post NSI new code of practice for security agency providers appeared first on City Security Magazine.

Two key trends recognised as challenging installers and operators of security and fire safety systems are the shortage of competent engineers and operatives, as advancing technology impacts both the assets themselves and the way in which they are installed and maintained.

Security embraces change

Security and fire safety systems are a significant component of any security deployment. Assets may include CCTV, access control systems, intruder and fire alarms, and emergency lighting, as well as alarm receiving centres and other operational control rooms. It is essential for all within the wider industry to understand not only the technological change, development and convergence that is evident, but also broader factors that could affect best practice and ultimately public confidence in the industry as it delivers its broad mission of safety and security.

Minding the gap

Research from a bespoke extension of Working Futures 2014-2024* forecasts demand of 265,000 skilled entrants from engineering enterprises every year through to 2024, of which around 186,000 will be needed to meet replacement and expansion demand.  Based on these estimates, projected supply will fall short by at least 20,000 new entrants per year (excluding any Brexit effect), whilst at the same time greater demand will be seen for more highly skilled jobs requiring science, technology, engineering and maths-based competences.

One factor that could help mitigate the shortfall is the pace of development in technology, particularly machine learning and artificial intelligence. In some areas of installation and maintenance this is already having an impact. Remote monitoring and diagnosis, for example, reduces need for engineers to visit a site, and allows monitoring operatives a broader span of control. However, the statistics are a stark reminder that the industry must act now to attract and educate new talent to support the application of new technologies as it increases.

Skills initiatives

Every year at IFSEC International, Europe’s leading security event, a national competition, Engineers of Tomorrow, shines a spotlight on apprenticeships within the installer sector, recognising new talent. With the growing skills gap the need for such an event has never been greater.

As a founding stakeholder, NSI has played an integral role in the EoT initiative for over twenty years. NSI expert auditors conceive the skills tests, alongside other industry and technology experts, and adjudicate the competition. EoT has created a high profile showcase for the installer community at large, not just those currently employing apprentices, to understand the value of apprenticeship opportunity, both for employers and colleges.

Notwithstanding the good work in generating more interest from employers, encouraging those currently in full time education to consider an engineering career in the security and fire safety sector is a key strategy. To this end, EoT is now working with WorldSkills Live – an annual event. This international platform targets schools to promote the value of a range of different careers.

It showcases particular industry sectors, including engineering and technology, and hosts a competition pitching the best apprentices the UK has to offer against overseas counterparts. Plans are currently underway to use the existing EoT competition as the basis for selecting the most competent Fire, Emergency and Security Systems Technicians for future international competitions.

Raising standards

As a Certification Body in the security and fire sector, NSI is proud to be an active ambassador for apprenticeships.

Keeping abreast of new technologies, latest industry standards and codes of practice is imperative for companies in order to provide buyers of security and fire safety services with the most effective security measures.

Organisations best placed to deliver such services include NSI-approved companies, who are subject to a continuing independent audit programme which seeks evidence of compliance with the latest standards, requires corrective actions where needed and evidence of commitment to continual improvement. In so doing they are increasingly recognising the importance of apprenticeships and the ‘Engineers of Tomorrow’, as the industry strives in the delivery of its mission.

Richard Jenkins

Chief Executive

National Security Inspectorate (NSI)

www.nsi.org.uk

UKAS-accredited NSI is the UK’s leading independent third party certification (TPC) body within the security systems, fire safety and guarding services sectors, helping to protect homeowners, businesses, the public sector and the general public through rigorous audit of more than 1,800 security and fire safety providers nationwide.

*Taken from Engineering UK 2017 Synopsis and Recommendations Report www.engineeringuk.com/media/1356/enguk_report_2017_synopsis.pdf

The post Preparing for the security & fire safety engineers of tomorrow appeared first on City Security Magazine.

Police Services in the UK stipulate that police response to reported intruder incidents (burglary) is limited to where crime has been witnessed and where intruder alarm systems have a certificate of compliance. This certificate signifies they are installed to recognised industry standards by security companies approved by and registered with a recognised certification body such as NSI.

The number of properties protected by police response alarms continues to grow, yet the frequency of false alarms (as determined by the police themselves) has reduced by 90% since the policy became effective in 1990.

The drop reflects the professionalism, competence and general raising of standards in the installation of systems and 24/7 monitoring of premises. This is coupled with marked improvements in the way security systems installers and Alarm Receiving Centres (ARCs) work together in the service they provide their clients.

Moving to a more automated approach

Notwithstanding this increase in efficiency in deployment of police resources with reduced false alarms, plans are afoot to improve performance further by replacing the existing manual means of ARCs contacting the police by phone. This is to move to a more automated process, i.e. the automatic digital transmission of confirmed alarms from ARCs to police control rooms.

The idea is not new, some forces having adopted automation on a limited, sometimes bi-lateral basis for some time. The key point now is the industry stepping up to develop a national standard approach with potential to apply across the UK.

In 2017 NSI commissioned research about the perception and challenges for implementing such an idea. Its intent was to inform the automation steering group as to the key concerns and issues for all stakeholders, in particular concerning the imagined alarm signalling ‘bridge’ between ARCs and police forces.

The findings revealed an overall positive attitude to automation in principle, but, doubts from many stakeholders that the initiative was workable in practice, particularly because of the wide variety of incompatible operating systems and protocols ARCs and police forces work with. In any event, there was a highlighted need to engage broadly with industry to develop the idea. ECHO was born.

About ECHO – Electronic Call Handling Operations

ECHO is a not-for-profit company limited by guarantee, formed in August 2017. Its sole focus is the implementation of automated alarm call handling between ARCs and the police forces across the UK, with facility to deliver by 2020 in line with NPCC aspirations. Backed by Home Office funding, the initiative was driven by the British Security Industry Association (BSIA), the Fire Industry Association (FIA) and the Fire and Security Association (FSA), all taking their place on the Board of the new Company.

When fully rolled out, ECHO will manage signals from upward of 1.2 million certificated alarm systems via 120 ARCs directly to 44 Police Services and with potential to deliver in future, verified fire alarm signals to the 52 Fire and Rescue Services.

The aim is to simplify and speed up priority signalling of confirmed alarms from ARCs to emergency services control rooms, reducing queueing and call handling times, eliminating risk of human error, and allowing resources to be deployed in a smarter way. The benefit to be delivered will be an improved service to victims of intruder crime – be they residential, commercial or public service premises – and the public purse by enabling more efficient response to genuine confirmed alarms.

The ECHO project has seen the piloting of a technology platform with a number of Police Services and ARCs and is currently talking to potential service providers to deliver the electronic service. Alongside this, the ECHO management team is developing in consultation with key industry stakeholders the business model that will put its service on a sustainable footing and enable Certificated Intruder and hold-up Alarm Systems to be connected via approved ARCs to the ECHO service.

What does the future hold?

ECHO will help enhance the already close operational partnership between ARCs and the police. Further development of ECHO for security alarms could include connecting first responders in the emergency services with live video from alarmed premises, and potentially enhance fire alarm signalling from certificated fire detection systems in areas of critical infrastructure such as care homes and hospitals.

The National Fire Chiefs Council (NFCC) is taking interest in the ‘police model’ for certificated intruder alarm signalling with its track record of 30 years. The Fire Service has reported in 2018 40% of fire alarms attended were false, a total of 231,000 or one every two minutes. There is a school of thought that ECHO could be a catalyst for the Fire Service taking learnings from certificated verified alarm signalling the police have experienced, to raise confidence in technology to deliver high quality verified alarm signals and raise the prospect of greater efficiencies in the deployment of precious firefighting resources.

David Wilkinson, Director of Technical Services at the BSIA, said, “ECHO represents a real opportunity to embrace the digital transition that is taking place across the UK. Taking the longer view, its potential is immense, with critical infrastructure across all sectors of society, from hospitals to heritage, all potentially benefitting from prioritised enhanced confirmed alarms transmission.

“Both intruder and fire responders and the wider public can benefit from a more efficient alarm response to properties and people by 24/7 certificated alarm installations and monitoring supported by ECHO.”

Committed to high standards

NSI approval provides assurance that installers and the management and maintenance of alarm systems and control rooms deliver consistent best practice to help keep people and property safe.

NSI is accredited by the United Kingdom Accreditation Service (UKAS), the UK’s sole National Accreditation Body, responsible for determining, in the public interest, the technical competence and integrity of organisations such as those offering certification services.

UKAS accreditation signifies NSI companies operate its certification schemes and issue Certificates of Approval in accordance with International Standards for Accredited Certification of Management Systems such as ISO9001 (ISO 17021) and Product Standards pertinent to security and fire safety such as BS 7958 for CCTV (ISO 17065).

Companies that benchmark themselves against NSI approval schemes demonstrate commitment to the highest standards of competence in the delivery, operation, management and monitoring of alarms. NSI Gold approval includes certification to BS EN ISO 9001 (for a company’s Quality Management System) as well as its adherence to the relevant product standards.

Richard Jenkins

Chief Executive

National Security Inspectorate (NSI)

www.nsi.org.uk

The post Alarm response: technology and cooperation drive efficiencies appeared first on City Security Magazine.

As a society we recognise the value of surveillance for counter-terrorism, but personal freedoms are an important construct and therefore the security industry and its clients need to work to best practice for the design and operation of CCTV systems.

Recent coverage in the press has featured the potential ubiquitous intrusion of surveillance cameras, citing examples of the use of CCTV in taxis and the use of automatic facial recognition technology.

The public may rightly be concerned with their use and risk of abuse. Four years ago a survey by the British Security Industry Association estimated that in an urban area on a busy day a person could have their image captured by around 300 cameras on 30 different systems. No one would doubt that figure has grown substantially in the last few years, increasing capability to capture, record and monitor activity, and retrieve evidence of actual incidents.

The Surveillance Camera Commissioner

Maintaining a balance between the fundamental rights and freedoms of citizens on the one hand, and safeguarding them in the community on the other is at the heart of the Surveillance Camera Commissioner’s (SCC’s) strategy. Businesses operating surveillance cameras capturing footage in the public domain should be working to best practice standards.

Compliance with the Surveillance Camera Code of Practice issued by the Home Office in 2015 is a valuable symbol of trust in the public eye. The Surveillance Camera Code of Practice raises standards by enabling surveillance providers to benchmark themselves, encourage continual improvement, and ensure surveillance is robust and fit for purpose. This in turn helps secure public confidence.

The code sets out twelve guiding principles: a comprehensive structure that enables sound, transparent decision-making in regard to the use of surveillance cameras. Since being appointed, the SCC has created a series of tools to support the operators of public space surveillance camera equipment.

The self-assessment tools cover use of:

• CCTV
• automatic number plate recognition (ANPR)
• body-worn video (BWV)
• automated facial recognition technology (AFR)

The practical application of good guidance for public spaces can be found in the Surveillance Camera Code of Practice. www.gov.uk/government/publications/surveillance-camera-code-of-practice 

Management and operation of CCTV

British Standard Code of Practice BS 7958 outlines the principles and practice involved in the management and operation of CCTV. Amongst other things, the standard provides a framework for outlining the objectives in the use of a system as well as ensuring records of images are kept securely, with a clear policy regarding the release of information to statutory prosecuting bodies, including the police, and members of the public.

The standard can be used as a management framework for ensuring best practice in all aspects of management and operation of CCTV systems. It includes guidance on working conditions, appropriate use of equipment, the management of recorded information, and legal considerations including privacy and disclosure.

Businesses can gain NSI approval against the full provisions of BS 7958 if they are fully compliant. It is an assurance of professionally and competently run operations, symbolised by the award of the NSI medal and logo.

Businesses can also use contractors that hold NSI approval against specific Annexes to BS 7958. This includes fully trained and security screened contracted staff to work in a stadium’s CCTV control room or sub-contracting out the whole CCTV monitoring service to an external control room.

Whether outsourced or managed in-house, CCTV managed and operated in accordance with BS 7958 provides security managers with significant confidence that operations are fit for purpose.

Security installed and maintained

NSI recently upgraded its own code of practice (NCP 104 Issue 3) for the design, installation and maintenance of CCTV systems. The newly revised code of practice is based on BS EN 62676-4 and provides installers with a structured approach to determining user requirements through an appropriate risk assessment and site survey.

With modern digital camera systems providing high definition images, better accuracy in the recording and retrieval of information, and increasingly facial recognition, quality management and control systems must be in place. These ensure the correct use of CCTV recording and surveillance for the intended purpose, the security of recorded data and a guarantee that rights to privacy are protected and that the latest security software updates are applied to protect from cyber threats.

Together raising standards

Companies demonstrate commitment to good practice by the approvals they hold. NSI Gold approval includes certification to BS EN ISO 9001 for the company Quality Management System as well as adherence to the relevant product standards such as BS 7958 and/or NSI code of practice NCP 104.

NSI is accredited by the United Kingdom Accreditation Service (UKAS), the UK’s sole National Accreditation Body, responsible for determining, in the public interest, the technical competence and integrity of organisations such as those offering certification services. UKAS accreditation signifies NSI operates its certification schemes and issues Certificates of Approval in accordance with International Standards for Accredited Certification of Quality Management Systems (ISO 17021) and Product Standards pertinent to security and fire safety such as BS 7958 for CCTV (ISO 17065).

Companies who benchmark themselves against NSI approval schemes demonstrate commitment to the highest standards of competence in the delivery, monitoring, management and operation of CCTV and security services. NSI approval provides assurance to businesses that installers, operators and the management of CCTV systems and control rooms deliver consistent best practice in surveillance that can be shared effectively with law enforcement bodies in the UK’s fight against terrorism.

Richard Jenkins Chief Executive, NSI

www.nsi.org.uk

See also: Surveillance on public transport networks: too intrusive?

CCTV advances after high conviction rate for London riots

Facial recognition: cutting-edge technology

The post Best practice for CCTV operations appeared first on City Security Magazine.