I have had the fortune of participating in events where the discussion turned towards the convergence between physical and IT security. This is not a replacement topic by any means, but it looks like economic processes and technology trends could be working to tug these groups together.
I was recently on a discussion hosted by Genetec, a worldwide provider of IP video surveillance, access control, and car place recognition solutions, to debate the safety of Security. there have been both physical and IT security experts within the room, and therefore the discussion garnered tons of audience participation from each side as topics ranged from cybersecurity, personnel safety, and organizing for today’s threat landscape. The timing of the event, which followed an outsized denial of service attack powered by hacked security cameras, spurned an active conversation. Security cameras fall into the domain of the physical security team, but now the web of Things is connecting these with other devices. Having devices like cameras connected to other systems and networks can deliver great value by turning data into actionable information, but thereupon you open yourselves to broader dissemination and risk.
With the growing cyber-threat landscape, I feel strongly that everybody benefits from the physical and IT security teams working more closely together. As more and more devices are designed to attach and share information, the physical security team must incorporate the IT team in their proposal, design, and implementation discussions and decisions. Many of the experts within the room at the Genetec event had developed Security Councils to function as a recurring forum for these sorts of topics.
But collaboration is not a one-way street. If the IT team has not included the physical security team in their cyber-assessments and incident response processes, the business suffers. Every member of the physical security team should know what and where the critical technology resources are and will are deeply involved within the getting to protect those assets.
So where is your company during this journey?
- Do the physical and IT security teams ultimately report to an equivalent organization or Chief Security Officer?
- Has your IT team implemented more advanced security policies that incorporate location attributes, or information often available from physical access systems?
- Do you have a daily, recurring forum to debate and approve projects that cross the road between the teams?
- Are members of your team participating in any cross-functional projects with members from the IT or physical security team?
- Have you been surprised within the last year a few projects your team should are involved in?
- Do you work together on corporate compliance training or does one have separate curriculum/content?
I think it is important to urge before the inevitable convergence between IT and physical access as cyber-security concerns escalate. the primary step is establishing a communications channel and building the relationships and processes to form it works. Not only will your company benefit, but so will your career.
I decide to continue exploring these topics and more within the coming months, so stay tuned. In the meantime, visit HID Partner in Saudi Arabia to find out more.