Updated: Feb 12, 2019
Security solutions should be supported with detailed rationales for recommendations and descriptions of the effects they are designed to elicit. By providing such information during design stages, increased levels of effectiveness, efficiency and subsequently greater levels of support from commercial customers for recommendations may be achieved. The problem-solving process adopted by the U.K. military, including the seven questions, referred to as the combat estimate may be considered as an appropriate process for security professionals, and could be followed alongside existing risk management and business continuity management practices.
Key Words: Security, Risk, Resilience, Design, Effect
Security professionals across the globe design security solutions to protect people, property premises, based upon the principles of layered security, balanced protection and of component failure. It is common practice for security solution designers to assess the effectiveness of a protection system, by determining the resulting levels of deterrence, the effectiveness of detection capabilities, its ability to deny or delay the activities of threat actors or activities, and the times it takes to effectively respond to and to threats. The exponential growth of technological developments, experienced during a period increasingly referred to as the fourth industrial revolution, has arguably increased the importance security solutions to effectively integrate people, procedures equipment. The increasing cost of services, coinciding with the reducing proportions of budgets allocated for non-core services, including outsourced services, across many industries, has increased the expectation for security professionals to provide detailed rationales for security prescriptions. As the understanding of threats and security measures increases within business stakeholders in response to the ever-morphing global security threat, including those assessing tender proposals, an effective means of outlining the rationales for all elements of a security solution, may improve the ability to effectively communicate security solution designs. Fundamentally, such a design system could focus upon describing the effect resulting from each element of an integrated solution.
Security professionals seeking to identify a system, which requires and demonstrates detailed consideration of the effects required from each element of a security solution, in order to protect assets from identified threats, could consider the adoption of problem-solving methods used effectively by the