Transit Security Newsletter

To subscribe or unsubscribe, contact: . Letters to the Editor: .

Note from the Publisher:

Various threat warnings have been issued this week by the government regarding the possibility of a large-scale terrorist attack in the near future. Though we may speculate as to when or where an attack or attacks will occur, there are some basic things that can be done to increase security at transit facilities. We asked our experts for their advice and provide a quick reference below.

Eva Lerner-Lam
Publisher, Transit Security Newsletter

Advice From the Experts:

Larry C. Johnson on Counter-Terrorism:

First, ensure that you have conducted full, updated backgrounds on all your employees and contractors.
Second, review the training of your guard force to ensure they all meet a consistent, high standard. If they are not properly trained get the training updated.
Third, review your access control and alarm systems for your operating sites and facilities.
Fourth, ensure that your emergency alert and response plans are updated and functioning.
Fifth, pay particular attention to the movement and storage of any hazardous material.

Ronald S. Libengood, CPP, on Infrastructure Hardening:

Confirm that your Emergency Response Plan is up to date and available at all operational stations.
Confirm that all communication systems are operating and thata backup means exists should the primary system fail.
Confirm that all 'security' and potential 'terrorism' incidents, observations, messages, etc have been reported and have been analyzed by your counter-terrorism force.

Lee Goldstein, CBCP, MBCI, on Business Recovery and Continuity:

Confirm that your Public Relations and Crisis Coordination Plans are up to date. This includes an emergency public information program to deal with the media during a crisis situation, and plans to communicate with employees and their families, key customers, management, and stakeholders.
You will also want to validate your organizations coordination with local, state, and federal agencies and the private sector.
If you have not already done so, look into providing a plan for trauma counseling for employees in the event of a crisis affecting your organization.

Mimi Hwang, CISSP, onInformation Technology Security:

Make sure your Security Plan is up to date with all mission-critical IT systems and components included,
If you haven’t done so, take the Systems Technical Vulnerability Assessment one step further to include Attack and Penetration Testing, particularly for key Control and Command Center systems. This process attempts to see whether a combination of security risk and system vulnerabilities would allow a perpetrator with evil intent to compromise a computer system and cause havoc. The Attack and Penetration testing thus helps determine the risk of the system being compromised externally, and to implement additional security measures that will assist in creating greater security before they are exploited by an attacker.
Ensure your safety procedures include security incident reporting responsibility and process – and is an extension of your day-to-day operations with all departments and divisions involved. Include training for all employees with a ”family safe haven” plan for key employees.

To subscribe or unsubscribe, contact: . Letters to the Editor: .