10 Tips for Offsite Meeting SecurityAdded 2nd Feb 2012
When an organization hosts an offsite event, whether it is a small meeting, or a massive industry conference, it also presents an opportunity for the security department.
"In these situations, security can really shine, or really stub its toes," said William Besse, Vice President of Consulting and Investigations with security firm Andrews International. "These offsite events aren't a time when security needs to be dozing. They need to be on their game."
Besse, who at one point in his career was the director of global corporate security for cosmetics giant Mary Kay, became well-versed in the challenges of hosting large off-site events. Mary Kay annually holds incentive meetings for members of its huge global sales force and those events often include hosting as many 50 to 60 thousand people in a major convention venue.
"Security can either build a reputation as a contributor or enabler of these events, or as a department that wants to make it look bad and is an obstacle to making it happen," he said.
In order to be one of those security departments seen as an enabler, Besse recommends several steps to take, before and during an offsite, to ensure the event goes off without a hitch.
Besse, along with physical-security consultant Dan Finger, offer these tips for keeping an off-site venue secure.
Get to know the venue, inside and out, well before the event.
If possible, Besse recommends security get involved in the process as early as choosing a venue.
"Have individual meetings with hotel management so you can get an understanding about their rules and regulations and what they can do to help you secure this event," he said. "Get to know customer service."
Once you've agreed on a site, before operations even begin, security needs to be well-versed on all exits, stairways and other access points. Knowing the building inside and out is crucial.
"Also you need to decide where to have your security center at the venue," said Besse. "Where will sec-ops be conducted out of? Will there be phones, copiers, computer access in there? Will you need to augment the venue's security with your own additional?"
Determine local emergency medical capabilities
The most likely unplanned event at an offsite meeting is a medical emergency, said Besse. Security should have a plan in place for handling this that includes a visit to the local hospital emergency room before the event.
Other considerations should include whether there will be attendees at the event with special medical needs and how should the onsite team be equipped to handle that, said Besse.
Know what proprietary information is at stake
In addition to the safety of your attendees, what else is at stake with this off-site? Is the organization going to present proprietary products or information that needs to be closely guarded? What are your plans for ensuring it STAYS guarded?
"Figure out what is being displayed and what happens if there is an evacuation," said Besse. "What do we do with proprietary information or products in that scenario? Also, if it's a highly-value consumer product on display, we might put up close-circuit TV surveillance on the product, on the doors, and bring in our own security systems."
Have a solid access-control strategy
Perhaps the most important aspect of ensuring proprietary and sensitive information stays contained within the event is to ensure that those who have access to it are the ones you want to have access to it, said Dan Finger.
"A lot of it will start at registration," he said. "Ask for ID. A lot of times at events I just give my name and I'm given a badge to enter. But if it is an event with proprietary information, have registration explain to folks there is proprietary information being discussed and we need to see some identification before we can let you in."
Make sure credentials are visible and clear
The next step is actually getting attendees to wear their credentials, said Finger, and to keep an eye out for those wearing the wrong badge, or no badge at all.
"There may be another event going on in the same venue and people from that event might wander over to yours," he noted. "It's important to have security keeping an eye on the badges people are wearing to make sure everyone is in the right place and an outside party doesn't gain access to information they aren't there to see or hear."
Figure out your signage
Many events will feature signs throughout the venue to direct attendees to the various meeting spots. But, in some instances, certain events may call for little or no signage.
"Depending on the event, I wouldn't even put up signs because it attracts attention," said Finger. "Sometimes, the less publicity, the better."
Scope out possible hiding spots for recording devices
Plants, under benches and window sills are all places where recording devices could be hidden, said Finger. If proprietary issues and recording are both concerns, security should have a plan to regularly sweep such areas to check for such things.
But also keep in mind many attendees will have recording devices right in their laps. "Are people listening going to be recording with an iPad or other device? What are people allowed to bring in to the meetings in the first place?" said Finger. These are all things that need to be considered so the demonstration of your next beta doesnt end up on YouTube tomorrow, he said.
Check in on venue staff
Staff vetting may be necessary if you are concerned about the potential for spying or political statement.
"You may want to check with the hotel on new hires in last few weeks," said Finger. "Any new hire could be coincidental, but there could also be a plant going on. Are you bringing someone in who could be the target of kidnapping attempt, or an assassination attempt? If you are, you want to know about local staff."
Decide on vehicle access
Depending on how politically charged the event may be, or how sensitive the topics are that are being discussed, the meeting could attract people looking to make a statement, said Finger. Although rare, a demonstration could include trying to drive a car into a building.
"Security may want to develop buffer zones, designated areas away from the buildings," said Finger. "One idea is to set up some temporary bollards that would discourage people from trying to do something. Large concrete planters can be a deterrent, but also be aesthetically pleasing."
Plan your parking arrangements
Parking is not always a significant issue, but if it is: "Do you have a plan?" asks Finger. If your venue is in an area with large parking areas, are you comfortable with attendees walking through them alone at night? If not, what will you do to ensure safety?
Some ideas include staffing extra lot attendants to ensure people get to their vehicles safely, or augmenting the existing lighting in the lots with additional lights that you provide.
A wearable ring device, called Fin, developed by a 23-year-old Indian is the latest sensation in wearables.
As a company that draws more than 2 billion eyeballs per month, Facebook was a fitting harbinger of trends to come at an optical networking conference.
SAP has joined forces with the German national soccer team ahead of the World Cup in Brazil to showcase what analytics powered by its HANA platform can do to improve performance.
The fourth quarter of 2013 was when cyber crime became a reality for more people than ever before, a McAfee report has found.
The Cloud offers cost benefits that may rival traditional datacentre deployments, though Hitachi Data Systems (HDS) said it is not without its risks.
"There are four critical questions every enterprise and IT administrator should ask when considering file sharing services," says Adam Gordon, author of "Official (ISC)2 Guide to the CISSP CBK, Third Edition ((ISC)2 Press)." These include: Where will the service store and share files? Who will view the files? How will the service protect the files? And, what types of files will the service permit in the storage system? If a service provider doesn't respond satisfactorily, CISOs should consider their options.
Apple has released iOS 7.1, with an array of visual tweaks, some bug fixes, and an option that lets users turn off the so-called "parallax effect" that creates an illusion of changing perspective, and hence motion, in the radically redesigned user interface.
Encryption technologies can be a powerful tool against government surveillance, but the most effective techniques are still largely out of reach to the average Internet user, Edward Snowden said Monday.
While the missing Malaysia Airlines flight MH370 has spawned a variety of speculations--from midair disintegration to falling victim to a terrorist act and even a UFO hijacking--technology appears to be the weakest link as far as locating the aircraft is concerned.
India's Essar Group has finally sold its operation in east Africa to Kenya's Safaricom and Airtel Kenya for $100 million after years of running the operation at a loss.
With smartphones and tablets increasingly at risk from malware, researchers from North Carolina State University have devised a new and potentially better way to detect it on Android devices.
Automation, virtualization, cloud computing -- these technology trends are transforming the data center and enabling companies to lower costs, increase flexibility and improve reliability. However, these shifts require IT, and their outsourcing providers, to rethink traditional strategies.
The first Cebit trade show in the post-Snowden era will focus on security, showing off locally developed bug-proof phones and messaging systems, as well as the ability to protect mobile devices using smartcards.
CIOs who haven't moved their companies from Windows XP by now ought to be fired, some people think, but those who haven't and are still on the job have options for saving their bacon.
The U.S. National Security Agency (NSA) has turned the European Union into a tapping "bazaar" in order to spy on as many EU citizens as possible, NSA leaker Edward Snowden said.