organisation

Calls for greater collaboration as security industry faces blended threat

Recent cyber-security threats underscore the need for physical and information security teams to work more closely together. The threat is blended so the teams need to work together, said Ellie Hurst, Marcomm and Media Manager for Advent IM at IFSEC International. Hurst cited numerous attacks where hackers exploited vulnerabilities found in physical systems.

For example, in December, two individuals hacked into the Washington DC CCTV camera network days before Donald Trump s inauguration. Meanwhile in October, Hangzhou Xionmai Technology, a vendor behind DVRs and internet-connected cameras, inadvertently played a role in a wide-scale DDOS attacks against PayPal, twitter, Spotify and other platforms. While physical and information security professionals typically work in different departments, they need to find a common language, said Hurst. Do you know what you have? Do you know what they are built on? What is the life-cycle management of these products and are they patched? said Hurst. From there you can decide whether to accept the risk. Though rare, some organisations have merged the physical and information security teams, said James Willison, Founder of Unified Security Ltd.

Symantec has merged their team and Barclays is building one SOC for both cyber and physical security, he said. All is not lost if your organisation is behind. There are measures every company can take to mitigate the risk, said the presenters at IFSEC. Ninety percent of breaches are due to people s mistakes, poor configuration and maintenance, said Steven Kenny, Business Development Manager Architecture & Engineering (A&E) Program, Axis Communications. Creating a documented internal policy and increasing employee awareness is important, said Kenny. Training and education is also important. You need to find a training course suitable for those in physical security, added Hurst. At the end of the day, the threat isn t going to go away. You ve got to do the training.

Visit Europe s only large-scale security event in 2017 IFSEC International is taking place at Excel London, 20 22 June 2017, here are 5 reasons you should attend: Exclusive hands-on access to over 10,000 brand new security solutions Network with over 27,000 security professionals Discounts of up to 30% exclusively for IFSEC 150 hours of seminars, workshops and keynote speeches A 1-2-1 meetings service to pre-book face to face meetings.

Time is running out, register now to avoid missing out

Nedap previews IFSEC 2017: vehicle identification, mobile access and more

Nedap has a big focus on mobile access at IFSEC 2017. Mainland Europe is well presented at the trade and Nedap Identification Systems uses the show to launch new products and new innovations. To preview IFSEC 2017, we asked Maarten Mijwaart, general manager of Nedap Identification Systems, what he expects from Nedap at IFSEC 2017.

IFSEC Global: What solutions and products will Nedap be demonstrating this year? Maarten Mijwaart: This year we will demonstrate to the industry that we have invested significantly in further expanding and improving our portfolio of security products. A few examples are: Last year we introduced MACE, our platform for mobile access control. We have greatly improved the possibilities of the cloud based MACE Admin Portal. Virtual cards can now be easily distributed and also revoked by our partners or their end users. Virtual cards can be customized to reflect the corporate style of customers. And we can even authenticate the identity of the virtual card holder by using the fingerprint if that is stored in the phone operating system. Our uPASS product line of Rain RFID / UHF readers is expanded with uPASS Target, our best performing long range UHF reader for vehicle identification to date. The uPASS Target can now also be equipped with a second antenna to expand the reading area or to support an entry and exit lane with one reader.

We have also added new UHF tags to our portfolio. A UHF Rearview Mirror Tag that motorists can easily hang on their rear-view mirror. Additionally, EPC GEN2 V2 cards and windshield tags are available that support security enhancements based on AES encryption. Our TRANSIT Ultimate readers for high end vehicle and driver identification have been redesigned last year. This year we are focusing on improvements to optimize the overall performance and configurability of this market leading RFID reader. IG: Why should end users stop by at the Nedap booth this year? MM : We feel that many people are not aware of the benefits that our products can bring. Making security systems a little more convenient for people to use will greatly increase the support of people in organizations for the security systems that are implemented. Access control systems that slow down people or their vehicles often end up not being used in the best way possible, which decrease the security level of your organisation.

Security should not be in the way of people. Our solutions make security and convenience go hand in hand. In the building and outside the building. For people and for vehicles. IG: Why should system integrators consider working with Nedap and its products? MM : Well, for one because we understand the importance of our partner channel. We understand that they are the one that convert our products into solutions for their clients. That is why we try and make their lives as easy as possible. Our long range readers are engineered to support specific applications as good as possible.

We support many interfacing possibilities. Our products are documented well and are certified by radio authorities to be used in most countries in this world. Our partner portal makes a wealth of support material available and our free e-learning courses help you on your way quickly. And last but not least: our support staff and commercial staff are more than willing to lend you a helping hand when needed. Another reason is that we have a track record in providing high quality products. Our products are tested against competitive products regularly and almost always tend to be the preferred solution. And when we do get feedback on how to improve our products, we listen carefully and are able to implement these improvements without delay because our ability to do product developments and improvements ourselves. With our own team of engineers. We strive to be market leading.

We are constantly working on expanding and improving our portfolio. With only one simple reason: we d like to make sure that, in our field, we are the logical choice to work with. Now and in the future.

Visit Europe s only large-scale security event in 2017 IFSEC International is taking place at Excel London, 20 22 June 2017, here are 5 reasons you should attend: Exclusive hands-on access to over 10,000 brand new security solutions Network with over 27,000 security professionals Discounts of up to 30% exclusively for IFSEC 150 hours of seminars, workshops and keynote speeches A 1-2-1 meetings service to pre-book face to face meetings.

Time is running out, register now to avoid missing out

A lifetime of positive influence in the security industry: Mike Tennent, Tavcom Training

Tribute The security industry was saddened to hear in early May of the passing of one of its finest, most influential and nicest people: Mike Tennent, the founder of Tavcom Training. We have just revealed our Top 50 influencers in security & fire 2017 and we thought it a fitting and well deserved tribute to recognise Mike with a special lifetime of influence accolade. Our criteria for influence encompasses not just an individual s impact on the organisation he or she runs or works for but on the wider industry too.

Mike undoubtedly ticked both boxes. Founding Tavcom Training in 1994 Mike Tennent built his business to become the clear leader in security systems training in the UK and one with an increasingly global footprint. With the help of local partners Tavcom courses are now available to students in Dubai, Ghana, Singapore, Kuwait, Oman, South Africa and the US. But Mike never expanded for expansion s sake. Growth was never pursued at the expense of quality, as this tribute from Jon Laws , a lecturer at Tavcom, attests. Insisting on the highest standards Mike played a pivotal role in the professionalisation of an industry where many aspects of regulation, licensing and training were once minimal or non-existent. Tavcom offers technical and non-technical training in a wide range of fields like security management, control room operations, system planning and project management, structured cabling, disaster recovery, counter eavesdropping, PAT testing and covert CCTV. They provide award-winning BTEC-certificated courses to installers, operators, managers and designers of CCTV, network IP, intruder alarm, access control, fire alarm and more. Recognised, respected and well liked across the industry, Mike will be hugely missed.

IFSEC Global extends its condolences to Mike s family and friends we hope this tribute does him justice. Read a tribute to Mike Tennent by Jon Laws, Tavcom lecturer and MD of the Lyndhurst Consultancy on the Asscoation of Security Consultant s website. Visit Europe s leading security event in June 2017 Visit IFSEC International for exclusive access to every security product on the market, live product demonstrations and networking with thousands of security professionals. From access control and video surveillance to smart buildings, cyber, border control and so much more. It is the perfect way to keep up to date, protect your business and enhance your career in the security industry.

Click here to register your place now to join us at London Excel on 20 22 June 2017.

BSIA expands business awards with three new categories

Industry news The British Security Industry Association (BSIA) has launched three new awards, expanding its existing awards programme, opening it up to contributions from across its membership. The Security Business Awards will be presented at the BSIA s annual luncheon, in Covent Garden s Grand Connaught Rooms in July 2017, before an audience of security business leaders as well as representatives from police forces and government. There are three awards categories.

The International Partnership Award underscores the capability of the UK security industry in embodying the BSIA s export brand values of world class security through innovation and experience. The award will be given to a BSIA member company that has overcome challenges to deliver a project outside the UK either for an overseas customer or partner organisation. The Environmental Award recognises the commitment of a security company, or its employees, to improve sustainability within the organisation, or to improve their local community s wider environment. The Innovative Security Project of the Year Award recognises projects that mark a first for either the industry, a particular market, or a new application of an existing security solution. The BSIA s head of marketing and communications, Amanda Caton, says: Our established awards scheme is already successful in enabling us to recognise and reward the outstanding contributions made by security personnel, but we wanted to ensure that we re also recognising companies wider commitments to promoting the worldwide reputation of the industry, improving corporate social responsibility and applying existing solutions in new and innovative ways. Nomination forms are available to download from the BSIA s website. The BSIA is a longstanding and valued partner of, and exhibitor at, IFSEC International, Europe s biggest fire and security trade show taking place 20-22 June 2017, London ExCeL. Get your free badge now. Visit Europe s leading security event in June 2017 Visit IFSEC International for exclusive access to every security product on the market, live product demonstrations and networking with thousands of security professionals.

From access control and video surveillance to smart buildings, cyber, border control and so much more. It is the perfect way to keep up to date, protect your business and enhance your career in the security industry. Click here to register your place now to join us at London Excel on 20 22 June 2017.

More than half of UK business owners unaware of incoming data protection law

GDPR Some 84% of small business owners and 43% of senior executives of large companies in the UK are unaware of the forthcoming General Data Protection Regulation (GDPR), according to a study by Shred-it. From May 2018 the GDPR will replace existing European data protection laws. The purpose of the law is to bring greater strength and consistency to the data protection given to individuals within the EU.

Shred-it s Security Tracker survey, conducted by Ipsos, also found that only 14% of small business owners and 31% of senior executives knew the fine associated with the new regulation, which is up to ‘ 20 million or 4% of global turnover, even despite 95% of senior executives and 87% of small business owners claiming to have some understanding of their industry s legal requirements. If businesses breach the forthcoming legislation and fail to grasp its implications they not only risk severe financial penalties, but also any reputational damage. Research shows that 64% of executives agree that their organisation s privacy and data protection practices contribute to reputation and brand image. Only 40% of senior executives, claiming to be aware of the law, have begun to prepare for the GDPR. This is in spite of 60% agreeing that the change in legislation would put pressure on their organisation to change information security policies. Robert Guice, senior vice president Shred-it EMEAA, says: From implementing stricter internal data protection procedures such as staff training, internal processing audits and reviews of HR policies, to ensuring greater transparency around the use of personal information, businesses must be aware of how the legislation will affect their company to ensure they are fully compliant. According to Guice, governmental bodies such as the Information Commissioner s Office (ICO), must take a leading role in supporting businesses to get GDPR ready, by helping them to understand the preparation needed. We recently reported on how the Minister for Digital and Culture offered reassurances over the impact of a data protection law coming into force next year on the use of facial recognition technology for crime-fighting purposes. Check out the findings of the Shred-It survey in infographic form below Attend IFSEC International 2017 to stay protected As systems and software become increasingly connected, the consequences of a cyber-attack become greater every day, with the average breach costing businesses up to $3.8 million, do not leave it until tomorrow to act.

Visit and see the latest product developments from leading suppliers, live hacking demonstrations, and education from the best in the industry, Cyber & IT Security at IFSEC is an area you can t afford to miss.

Register right now.

Breaking: NHS IT chaos as systems are infected by malware

Malware called Wanna Decryptor is being blamed by NHS Digital. At this stage we do not have any evidence that patient data has been accessed, the organisation said in a statement. We will continue to work with affected organisations to confirm this.

NHS Digital is working closely with the National Cyber Security Centre, the Department of Health and NHS England to support affected organisations and to recommend appropriate mitigations. This attack was not specifically targeted at the NHS and is affecting organisations from across a range of sectors. The National Cyber Security Centre, which was only opened in February, is assisting NHS Digital. That East and North Hertfordshire has had to suspend all of their non-urgent activity and shut down A&E is a testament to how much they rely on their data to operate. Jason Allaway, VP UK and Ireland for RES Jason Allaway, VP UK and Ireland for RES, a specialist in digital workspace security, said: It s becoming more common an occurrence to see ransomware attacks against healthcare organisations; after all, they are a prime target for attackers due to the nature of the data they hold. It s not just a monetary loss when it comes to medical facilities: it s far more important. The fact that East and North Hertfordshire has had to suspend all of their non-urgent activity and shut down A&E is a testament to how much they rely on their data to operate. Education, vigilance and proven technology such as context-aware access controls, comprehensive blacklisting and whitelisting, read-only access, automated deprovisioning and adequate back-up need to be put in place by healthcare organisations to both prevent and combat this problem as efficiently as possible. Today s events are clear evidence that many healthcare organisations still need to invest in this integrated approach to security.

Wake-up call Dr Jamie Graves, CEO of ZoneFox, which specialises in combating insider threats, said: The large-scale cyber-attack on our NHS today is a huge wake-up call. The effects of this data breach include hospitals having to divert emergency patients, with doctors reporting messages from hackers demanding money, a clear signal of ransomware activity. It also highlights the ever-increasing importance of having a 360-degree visibility of activities and behaviour around business-critical data particularly for large organisations like hospitals. Because the NHS holds some of the most sensitive data of all individuals health records it s a goldmine for criminals. While we are still waiting to find out the scale of this attack, it could possibly have severe impacts on critical medical procedures not just a case of reputational damage and financial loss.

Fundamentally, the government needs to pool cyber security specialists together to tackle this growing threat to ensure this does not happen again.

CES 2017: Airthings Wave detects deadly radon gas that causes more deaths than house fires and C02 poisoning combined

CES 2017: Airthings Wave Detects Deadly Radon Gas That Causes More Deaths Than House Fires And C02 Poisoning Combined

IoT innovation Airthings has unveiled a device for the smart home that detects the presence of radon. Airthings Wave, which is this week being showcased for the first time at CES 2017 in Las Vegas, alerts householders to the presence of a gas which is believed to be the leading cause of lung cancer among non-smokers. Tens of thousands of deaths globally are attributed to radon, including 21,000 Americans more than six times the number of deaths attributed annually to house fires and carbon monoxide poisoning combined.

Until now tests for radon usually involve charcoal canisters, which take a snapshot of radon levels and only provide results after samples have been sent for analysis in a lab. The constant, real-time monitoring offered by Airthings Wave represents a meaningful advance given that radon levels fluctuate depending on climate, ventilation levels and time of year, among other factors. The rise of the internet of things has emboldened Airthings to believe that radon monitoring could and should become as affordable and commonplace as smoke detection. The device alerts householders to dangerous levels of radon in the environment with a red warning light, while amber signals cause for concern and green means levels are safe. An audio alert is also emitted when radon levels are high, as well as when the battery is low. The Airthings Wave app, which connects via Bluetooth, can segment radon levels into daily, weekly, monthly or yearly periods to help users spot and understand trends in radon levels. Airthings Wave also includes temperature and humidity sensors, which can help give early warning of incipient mould formation. based on Based on data accumulated customised tips are given to help users improve air quality. When dangerously high radon levels persist for a period exceeding national guidelines (48 hours in the US, for example), the user will be notified and receive recommendations on how to reduce radon in their home.

Airthings Wave is wireless and fully battery-powered, with the manufacturer claiming that two AA batteries will be adequate for two years use. Every home should have a radon detector, and it s our mission at Airthings to make that happen, said Oyvind Birkenes, Airthings CEO, in a statement. We re seeing increased attention to radon exposure, thanks to initiatives from the EPA and legislation at the state level. These are encouraging developments and pave the way for Wave s progressive technology to provide consumers with invaluable information and peace of mind that their homes are healthy for themselves and their families. The Airthings Wave smart radon gas detector will cost $200 ( 160) when it launches in the US in early March. Free download covering legal requirements for responsible persons under the FSO, courtesy of the IOSH, BIFM and USHA approved UK provider of health, safety and environmental information. Key features: A full breakdown of the Regulatory Reform (Fire Safety) Order 2005 The key actions when dealing with fire precautions & protection A complete guide to maintaining procedures and requirements within your organisation.

Download now

Five bad online security habits to give up in 2017

Five Bad Online Security Habits To Give Up In 2017

Security tips The issue of cyber security is more in the media now than ever before. A series of hacks on large national and global companies has highlighted two factors: cyber criminals are becoming more effective and companies need to constantly update their cyber security policy. Yet security in your workplace doesn t have to be complicated.

There are steps all your employees can take on a daily basis to minimise the risk of security breaches and cyber attacks. So if you want to make improving security your company s new year s resolution, here are five bad security habits your company needs to stop doing in 2017 . Stop using weak passwords Passwords cause one of the biggest security headaches in every organisation, large or small. If your company doesn t have a password policy, now is the time to get it. Avoid easy to remember passwords like password , your name and birthday or your favourite football team. Cyber criminals will work these out in seconds and compromise your network security. Aim for passwords of a 16-digit length, that include capital letters and special characters. A good tip is to use a phrase or song lyric as a password. However, the most effective way to ensure your security is to use a random password generator or software that secretly stores your passwords for all your applications.

Stop neglecting mobile devices Looking after your security on your computer network is great but what about external devices. Any tablet or mobile that can connect to your network is a security risk and should be taken just as seriously as any other connected computer. Ensure you have a separate security policy for all eternal devices that connect to your network. Enforce end-to-end encryption across all the devices that you provide and that can access your network. Stop forgetting your security settings Having firewalls and intricate security software across your network is great, so use it effectively. Allow time for regular updates, you can even schedule them overnight and keep an eye on your firewalls and what sites you are allowing your employees to access. Make sure security features can only be disabled by you or your security team and avoid granting user privileges to multiple users. Remember, the smaller the amount of people who have privileged access rights, the easier it will be to manage your security overall. Stop opening every email This is a case for common sense.

If an email looks suspicious, out of the ordinary or from someone you don t know, they don t open it, simple! Check the context of emails and google the sender to see if it s a legitimate business. Encourage all your employees to report any suspicious emails or pop-ups to yourself or your security team. Stop leaving yourself on display Ever heard of a clear desk policy? Maybe it s time to enforce one. If your company is tightening up security on your network, encrypting all your devices and updating your firewalls and other security applications, then don t forget the basics. How many of your employees are writing passwords down on post it notes? Printing sensitive information and leaving it on the desk for all to see? Trivial as it may seem, these small habits could.

cause big security problems for your business. Make sure employees lock sensitive information away, avoid writing passwords down at all and keep computers locked when not in use. Start stepping up security in 2017 Security should be a top priority for every business this year. While no amount of security steps, on or offline, can safeguard you against cyber crime, there are at least some simple steps you and your employees can take to help reduce the risk. While much of it is common sense, start by updating your security policy and regularly educating your employees on what you expect of them. Ensuring the security of your organisation is a team effort. Download: The Video Surveillance Report 2016 This exclusive report covers the security needs of surveillance systems as shaped by the physical environment including: What do security professionals think about plug-and-play systems Challenges like low-light conditions or large spaces and the threats posed in various sectors Which cutting-edge features such as mobile access, PTZ smart controls or 4K resolution are most important to security professionals What are the most important factors driving upgrades and would end users consider an upgrade to HD analogue Download the full report here.

CES 2017 sneak preview: Oven that prevents fires and false alarms set to be unveiled by GE Appliances

CES 2017 Sneak Preview: Oven That Prevents Fires And False Alarms Set To Be Unveiled By GE Appliances

Smart home CES 2017 will feature an oven that turns itself off when smoke or fire is detected. Developed by GE Appliances the appliance has been integrated with Google s Nest Protect, a smart smoke alarm for the home. The detector, which also detects carbon monoxide, sounds an alarm and sends notifications to the user s smartphone when the oven has been deactivated.

GE announced the Nest integration in the build-up to CES 2017, which kicks off today in Las Vegas, Nevada. Cooking should be an enjoyable experience, but we know that sometimes there are mishaps in the kitchen, said Paul Surowiec, vice president for cooking products at GE Appliances. Our integration with Nest Protect helps us ensure that our connected oven owners are safer when cooking, especially when the oven is left unattended. Nest Protect features a split-spectrum sensor that uses two wavelengths of light to distinguish between fast- and slow-burning fires. Residents can remotely silence an alarm using the app silence function, even when not at home. From their smartphone they can also conduct safety checkups on sensors, Wi-Fi connection, horn and speaker. Last year we spoke to Nest Labs general manager for Europe Lionel Paillet about how the Nest Protect smoke and carbon-monoxide alarm tests itself 400 times a day and speaks to smart-home lighting during an emergency. The Nest Protect alarm redefines what people should expect from their smoke and carbon monoxide (CO) alarms, he said. Paillet spoke at FIREX 2016 about how to combat False alarms in the smart home.

The Nest Protect smoke and CO2 alarm Nest Labs was founded in 2011 by former Apple employees Tony Fadell and Matt Rodgers, who sold the company to Google for $3.2bn ( 1.8 billion) in 2014. Other Nest products include the Nest Learning Thermostat and indoor and outdoor surveillance cameras. Free download covering legal requirements for responsible persons under the FSO, courtesy of the IOSH, BIFM and USHA approved UK provider of health, safety and environmental information.

Key features: A full breakdown of the Regulatory Reform (Fire Safety) Order 2005 The key actions when dealing with fire precautions & protection A complete guide to maintaining procedures and requirements within your organisation.

Download now

Win daily prizes for you and your family this Christmas with the IFSEC advent calendar

Installer vs vendor: Paxton takes questions on the plug-and-play net10 building automation system In this video a security installer quizzes Paxton CEO Adam Stroud about the access control specialist’s building automation system, net10. Read More Access control trends in the leisure industry: integrator Q&A We spoke to Stephen Goodridge, product manager at Banbury-based integration firm All Right Now, about a recent installation at Bristol Museum, the opportunities and challenges posed to installers and integrators in the leisure sector and the direction of travel for deployments in this vertical. Read More 4th International Conference on Tall Building Fire Safety returns to London s FIREX International Recognised by the Institution of Fire Engineers, the conference is delivered by subject experts and themes covered include: tall building fire case studies, fire risk management, tall building firefighting.

Read More Putting smart sprinklers to the test FM Global recently tested a new breed of smart sprinklers to ascertain their effectiveness, including in combination with different technologies. Read More Protect yourself against ransomware: back up, educate, patch, contain Some simple recommendations on steps to follow to safeguard yourself and your organisation against a growing threat that can literally destroy businesses. Read More Will fire doors soon have CE markings? The EN 16034:2014 standard, which covers fire doors, shutters, curtains, gates and openable fire windows, was made a European and Swedish standard in 2014. Read More Sony launches eight high sensitivity network cameras with Exmor R CMOS sensors Sony has unveiled eight new cameras with minimum illumination of 0.006 lux and Exmor R CMOS sensors. Read More Deathtrap: The Oakland warehouse fire that killed 36 fire news roundup A fire that broke out in a warehouse in Oakland, California has now killed at least 36 people, with search teams now on their third day of sifting debris. Read More 5 Christmas security tips for retailers To help you keep your stock, staff and consumers safe, here are five Christmas security tips for retailers.

Read More Honeywell launches TouchCenter Plus, a touchscreen interface for Galaxy Dimension and Galaxy Flex intrusion panels TouchCenter Plus is intended too simplify daily security operation with clear graphics and a menu that provides a snapshot of the entire system.

Read More