image

BUSINESS CONTINUITY AND RESILIENCE

TSI advocates a holistic approach to resilience combining threat / hazard assessments, criticality assessments, vulnerability assessments, risk assessments, physical security, technical surveillance, critical infrastructure protection, cybersecurity, business continuity planning, emergency management, and enterprise risk management programs providing integrated solutions to resilience.

Unfortunately, TSI has found that the programs listed above are often conducted in stovepipes; risk assessments and physical security are not integrated with business continuity, or cybersecurity and technical surveillance are not integrated into emergency management.

TSI advocates adherence to the standards of ANSI/ASIS ORM.1-2017, Security and Resilience in Organizations. This standard emphasizes proactive risk and business management to support a process of prevention, protection, preparedness, readiness, mitigation, response, continuity, and recovery from undesirable and disruptive events. It advocates a single integrated management system to eliminate “siloing” of risk, enabling an organization to more efficiently anticipate and plan for naturally, accidentally, or intentionally caused events, using a single management system standard.

TSI follows the best practices of ISO 31000 by utilizing pro-active risk management, as opposed to reacting to an event after the fact. The key to effectively managing risk is allowing leadership to set strategy, achieve objectives, and make informed decisions regarding resource allocation. Risk management should be applied at all levels of the organization, strategic, organizational, and program/project level.

TSI promotes a ‘bottom up” approach to risk identification and a “top down” approach to risk management. This approach ensures that risks are identified at the lowest level of the organization and allows executive visibility on risk allowing leaders to make informed decision regarding resource allocation. The integration of risk management with the other elements of resilience such as business continuity, cybersecurity, and critical infrastructure provides the organization with a holistic solution.

    • Physical Security
        • Structural security measures
        • Crime Prevention Through Environmental Design (CPTED)
        • Electronic security systems
        • Security staffing
        • Personnel, package, and vehicle screening
        • Emergency notification systems
        • Security audio communications
        • Systems monitoring and display
        • Visitor management systems and circulation control
        • Security awareness training and education for non-sec urity personnel 

    • Technical Surveillance
    • TSI uses technical surveillance equipment with advanced analytical capabilities, resulting in a single security guard effectively monitoring hundreds of cameras
    • Analytical capabilities include:
        • Tripwire
        • Intrusion detection
        • Scene change alerts
        • Facial recognition
        • Missing item alerts
        • Abandoned item recognition
        • Audio detection
        • Personnel counting
        • Heat Map

    • Improved Fixed Cameras: Better low light capabilities
    • H.265 and H.265+ compression:
        • Half the bandwidth requirements
        • Twice the storage space

    • Supervisory Control and Data Acquisition (SCADA) systems have different risk impacts than standard IT systems
        • SCADA requires a proactive, comprehensive model for establishing a framework for securing SCADA systems that is different from standard IT security.
        • TSI SCADA solutions implement ISACA recommended requirements


    • Business Continuity / Continuity of Government
        • TSI methodology employs the Disaster Recovery Institute International Professional Practices for Business Continuity Management
            • Program Initiation and Management
            • Risk Assessment
            • Business Impact Analysis
            • Business Continuity Strategies
            • Incident Response
            • Plan Development and Implementation
            • Awareness and Training Programs
            • Business Continuity Plan Exercise, Assessment, and Maintenance


    • Cybersecurity
        • TSI’s CND strategy: maximize situational awareness / minimize attackers’ advantages
        • Audits and Insider Threat
        • Vulnerability Assessments & Management
        • Scanning and Assessment
        • Incident Analysis & Response
        • Risk Management
        • Trending
        • Tool Life-Cycle Support


    • Emergency Management
        • Incident response
            • Focus on immediate physical, safety, or security risk
            • Goal of protecting people, the environment, and assets
    • Crisis management
        • Addresses reputational, financial, commercial, and strategic risks that threaten the viability of the company
            • Both incident response and crisis management need to be aligned with strategic organizational goals
            • Must include plans for escalation, notification, and decision-making process at the strategic level
            • Need to include plans for a corporate strategic message
            • Awareness and defined roles and responsibilities at all levels are crucial
            • Must be tied in with business continuity plan and disaster recovery plan

Contact us
  • Phone : +1 307-486-2336
  • Address : 177 Burris Lenore Road Crowheart, Wyoming 82512 USA
  • Email : info@tacticalsolutionsintl.com

©Copyright 2018 Tactical Solutions International, Inc. - All Rights Reserved