Risk assessments and future challenges.By recognizing existing and emerging threats, law enforcement agencies A law enforcement agency (LEA) is a term used to describe any agency which enforces the law. This may be a local or state police, federal agencies such as the Federal Bureau of Investigation (FBI) or the Drug Enforcement Administration (DEA). can improve their risk assessment and management programs. Too often, for example, security risk assessments focus mostly on identifying flaws in physical security (e.g., perimeter barriers and screening visitors) without fully recognizing the impact of other security challenges (e.g., internal people problems and cyberthreats). Applying a systematic approach of fact finding and balancing costs and benefits should lead to better security and operational decision making. [ILLUSTRATION OMITTED] The analytical risk management (ARM) process is a systematic and interactive approach for identifying and evaluating assets, potential threats, and existing vulnerabilities, along with calculating risks and determining requisite countermeasures That form of military science that, by the employment of devices and/or techniques, has as its objective the impairment of the operational effectiveness of enemy activity. See also electronic warfare. . (1) Departments can view the ARM process as three interacting spheres of assets, threats, and vulnerabilities. Where these three areas merge, or overlap, are the calculated risks. Once a department's risk managers determine the risks, then they can select appropriate countermeasure coun·ter·meas·ure n. A measure or action taken to counter or offset another one. countermeasure Noun action taken to counteract some other action Noun 1. options to mitigate mit·i·gate v. To moderate in force or intensity. mit  i·ga tion n. them. Most important, ARM can service both security and
operational assessments.The ARM process expresses risk, defined as the potential destruction, disruption disruption /dis·rup·tion/ (dis-rup´shun) a morphologic defect resulting from the extrinsic breakdown of, or interference with, a developmental process. , or denial of essential assets, in the formula Risk = Impact of Loss of Asset X Threat X Vulnerability or R = I X T X V. In other words Adv. 1. in other words - otherwise stated; "in other words, we are broke" put differently , a risk assessment (R) determines the possibility of an adversary's (T) successful exploitation of an identified vulnerability (V) and the resulting degree of damage or impact (I) on the asset. Basically, risk management constitutes the continuing process of selecting and applying explicit countermeasures to achieve optimum results while balancing acceptable risks and costs. By developing a full-spectrum risk assessment and management program, a department can discover its security and operational strengths and weaknesses. In addition, it can determine how best to maximize asset usage. [ILLUSTRATION OMITTED] ASSETS For the ARM process, assets comprise resources of essential value that a department must protect to effectively fulfill ful·fill also ful·fil tr.v. ful·filled, ful·fill·ing, ful·fills also ful·fils 1. To bring into actuality; effect: fulfilled their promises. 2. its essential public safety and law enforcement responsibilities, a definition that differs from that traditionally used in law enforcement and intelligence circles. Assets include people, information, operations, equipment, facilities, and social-psychological resources (PIOEFS). Assessing assets involves three sequential actions. First, a department's risk managers identify all important local organizational and operational PIOEFS resources requiring protection. Second, they write a brief statement for each describing the worst undesirable event should some adverse situation affect that asset. For example, within the people category, a department should include law enforcement officers as a critical asset, and an applicable undesirable event would be criminals or terrorists attacking with improvised explosive devices Noun 1. improvised explosive device - an explosive device that is improvised I.E.D., IED explosive device - device that bursts with sudden violence from internal energy that could result in the loss or injury of the officers. Third, the risk managers assign a linguistic rating (value/criticality) to each asset based on the impact of loss or damage. This means that risk mangers first assess an asset according to according to prep. 1. As stated or indicated by; on the authority of: according to historians. 2. In keeping with: according to instructions. 3. one of the four defined criticality ratings of critical, high, medium, and low and then further refine the resource into three values of low, medium, or high. * Critical: grave effects leading to loss of life, serious injury, or mission failure. * High: serious effects resulting in loss of highly sensitive Adj. 1. highly sensitive - readily affected by various agents; "a highly sensitive explosive is easily exploded by a shock"; "a sensitive colloid is readily coagulated" resources that would impair im·pair tr.v. im·paired, im·pair·ing, im·pairs To cause to diminish, as in strength, value, or quality: an injury that impaired my hearing; a severe storm impairing communications. operations affecting public safety and community interests for an extended period of time. * Medium: moderate effects resulting in loss of sensitive resources that could impair operations affecting public safety and community interests for a limited period of time. * Low: little or no effects impacting human life or the continuation of operations affecting public safety and community interests. In the example of officers as a critical asset, the department might assign an impact rating of low/critical, meaning that it deemed the resource as overall critical but at the lower end of that category. Finally, the risk managers convert the linguistic ratings into numeric numeric see numerical. numeric cluster see ten-key pad. impact values. The numeric value will be impact (I) in the equation I X T X V = R. Chart 1 and Table A illustrate this process. THREATS Threats are general situations with the potential to cause loss or harm to essential assets, whereas adversaries constitute specific hostile individuals or groups with the intentions, capabilities, and histories to conduct detrimental det·ri·men·tal adj. Causing damage or harm; injurious. det ri·men activities against law enforcement
agencies and public safety. Conventional external threats involve
individuals, domestic groups, and sometimes foreign entities. Individual
dangers include street criminals of varying sophistication so·phis·ti·cate v. so·phis·ti·cat·ed, so·phis·ti·cat·ing, so·phis·ti·cates v.tr. 1. To cause to become less natural, especially to make less naive and more worldly. 2. ; computer hackers intent on penetrating penetrating breaching the tissues of the body. , stealing, altering, controlling, or deleting law enforcement data; insiders, such as corrupt officers, supervisors, and administrators; and people with personal, emotional, or psychiatric psy·chi·at·ric adj. Of or relating to psychiatry. psychiatric adjective Pertaining to psychiatry, mental disorders crises. Group threats can involve regional and international organized crime figures; left-wing, right-wing, and special interest extremists; and foreign, domestic, and transnational terrorists. Foreign perils can comprise foreign intelligence services masquerading 1. (networking) masquerading - "NAT" (Linux kernel name). 2. (messaging) masquerading - Hiding the names of internal e-mail client and gateway machines from the outside world by rewriting the "From" address and other headers as the message leaves the as business persons, visiting delegations, false-front companies, travelers, journalists, scientists, students, and diplomats Some famous diplomats include: Afghanistan
Assessing threats involves identifying and assessing all of the threats associated with each asset. For example, law enforcement officers might face two main street hazards: criminals and irate i·rate adj. 1. Extremely angry; enraged. See Synonyms at angry. 2. Characterized or occasioned by anger: an irate phone call. citizens. First, a department identifies the specific potential adversaries for each threat. Criminal adversaries could include local street gangs and organized crime figures, whereas irate citizens could comprise spouses engaged in chronic and escalating domestic violence. Next, the risk managers write a brief statement highlighting each adversary's intent, capability, and history of violence. Then, they assign a linguistic rating (value/criticality) to each danger based on the adversary's overall intent, capability, and history. The risk managers assess a threat according to one of the following four defined criticality ratings and then further refine it into three values of low, medium, or high. The definitions for threats differ greatly from those for assets and vulnerabilities. * Critical: a definite danger as the adversary adversary traditional appellation of Satan [O.T.: Job 1:6; N.T.: I Peter 5:8] See : Devil has both the intent and capability to launch an assault and a history of conducting similar incidents. * High: a credible danger as the adversary has either the intent or capability to launch an assault and a history of conducting similar incidents. * Medium: a potential danger as the adversary has the intent and the potential to receive the capability through a third party to launch an assault and has a history of similar incidents. * Low: little or no credible evidence of the adversary's intent or capability to launch an assault and no history of conducting similar incidents. In the example of street gangs as a threat, the department might assign a threat rating of medium/critical, meaning that a department considers the threat as overall critical and at the center of the category. Finally, the risk managers convert the linguistic ratings into numeric threat values and record the results for each identified adversary. The numeric value will be threat (T) in the equation I X T X V = R. Table B and Chart 2 illustrate this process. VULNERABILITIES Vulnerabilities represent weaknesses that an adversary can exploit to gain access to an asset. In essence, vulnerabilities are pathways leading to PIOEFS assets that include people, information and information systems, operational procedures The detailed methods by which headquarters and units carry out their operational tasks. and personnel practices, equipment characteristics, facility locations and building features, and social-psychological weaknesses. Assessing vulnerabilities involves first identifying the specific potential weaknesses for each asset. For example, law enforcement officers might experience human temptations to misbehave mis·be·have v. mis·be·haved, mis·be·hav·ing, mis·be·haves v.intr. To behave badly. v.tr. or become hampered by obsolete departmental policies and procedures Policies and Procedures are a set of documents that describe an organization's policies for operation and the procedures necessary to fulfill the policies. They are often initiated because of some external requirement, such as environmental compliance or other governmental . Next, the risk managers determine the existing countermeasures for each asset and their level of effectiveness in reducing vulnerabilities. Then, the risk managers assign a linguistic rating (value/criticality) for each according to one of the following four defined criticality ratings and further refine the vulnerability into three values of low, medium, or high, which differ significantly from those for assessing assets and threats. * Critical: no effective countermeasures currently are in place, and known adversaries would be capable of exploiting weaknesses to reach the asset. * High: some effective countermeasures exist, but the asset has multiple weaknesses that adversaries could exploit to their advantage. * Medium: some effective countermeasures exist, but the asset has at least one weakness that adversaries could exploit to their advantage. * Low: multiple layers of effective countermeasures exist, and few or no known adversaries could exploit to their advantage. Finally, the risk managers convert the linguistic ratings into numeric vulnerability values and record the results for each identified weakness. The numeric value will be vulnerability (V) in the equation I X T X V = R. Table B and Chart 3 present examples of this step. RISK CALCULATION Risk is the likelihood that an undesirable event will occur. By calculating the risk, the department may obtain an estimate of the potential severity or outcome of an undesirable event. Calculating the risk for each identified asset involves recording the degree of impact relative to each asset (value of I), the probability of attack by a potential adversary (value of T), and the possibility of a vulnerability being exploited (value of V) and then multiplying mul·ti·ply 1 v. mul·ti·plied, mul·ti·ply·ing, mul·ti·plies v.tr. 1. To increase the amount, number, or degree of. 2. Mathematics To perform multiplication on. I X T X V. After this, the risk managers would convert the numeric values into ratings and prioritize pri·or·i·tize v. pri·or·i·tized, pri·or·i·tiz·ing, pri·or·i·tiz·es Usage Problem v.tr. To arrange or deal with in order of importance. v.intr. the risks based on findings, remembering that higher values indicate higher risks. Table A and Chart 4 illustrate this process. COUNTERMEASURES Countermeasures are actions taken to prevent, mitigate, or eliminate vulnerabilities and to enhance security or operations. Universal methods include improving training and awareness, modifying policies and procedures, practicing and enforcing discipline, controlling and monitoring accesses, installing new security or operational measures, improving overall conditions, and realigning efforts. Departments can identify and assess many potential countermeasures that they may use to reduce vulnerabilities by exploring as many solutions as possible; by developing a comprehensive strategy toward risk reduction; by discovering countermeasure costs, including tangible training, additional personnel, materials, installation, operations, maintenance, and replacement requirements; by conducting cost-to-benefit analysis for each option and comparing appropriate alternatives; and by prioritizing options based on one or a combination of factors, such as cost, time, effort, organizational impact, resources available, and other specified criteria. Chart 5 presents an example and the following are universal countermeasure options to enhance the security of PIOEFS assets. People Members of the law enforcement community (e.g., officers, joint task force members, technicians, support personnel, administrators, and their families) comprise the primary asset. But, history has shown that some people also may pose prominent threats and vulnerabilities. The more people an organization employs, the higher the probability of more security and operational challenges. However, law enforcement agencies can mitigate people-generated problems by providing comprehensive indoctrination in·doc·tri·nate tr.v. in·doc·tri·nat·ed, in·doc·tri·nat·ing, in·doc·tri·nates 1. To instruct in a body of doctrine or principles. 2. and recurring re·cur intr.v. re·curred, re·cur·ring, re·curs 1. To happen, come up, or show up again or repeatedly. 2. To return to one's attention or memory. 3. To return in thought or discourse. refresher training Refresher training is a form of updating military knowledge of the reservist troops. After one has completed the conscription service, he or she can be called for refresher training for some amount of days. vital to proactively preventing violations, detecting abnormalities, and minimizing damages; by gaining positive leadership involvement and group support for all programs; and by scrutinizing all individuals who have direct and indirect access to essential PIOEFS assets. Information The increasing proliferation proliferation /pro·lif·er·a·tion/ (pro-lif?er-a´shun) the reproduction or multiplication of similar forms, especially of cells.prolif´erativeprolif´erous pro·lif·er·a·tion n. and circulation of large volumes of sensitive law enforcement data from multiple channels has grown progressively more susceptible to exploitation by adversaries using human, electronic, and cyber-based means. To reduce these threats, departments should promote security awareness Security awareness is the knowledge and attitude members of an organization possess regarding the protection of the physical and, especially, information assets of that organization. to decrease carelessness Carelessness See also Forgetfulness, Irresponsibility, Laziness. Grasshopper sings through summer, overlooking winter preparations. [Gk. Lit. ; identify and eliminate all known susceptible points of intercept intercept in mathematical terms the points at which a curve cuts the two axes of a graph. in the communication network; and provide and enforce secure storage and proper disposal of accumulating information material, media devices, and sensitive trash. Operations Law enforcement operations, such as active investigations, security at high-profile events, and surveillance assignments, have become more geographically dispersed dis·perse v. dis·persed, dis·pers·ing, dis·pers·es v.tr. 1. a. To drive off or scatter in different directions: The police dispersed the crowd. b. and increasingly reliant on computers and cellular communication connections, which then creates greater vulnerabilities for adversarial ad·ver·sar·i·al adj. Relating to or characteristic of an adversary; involving antagonistic elements: "the chasm between management and labor in this country, an often needlessly adversarial . . . espionage espionage (ĕs`pēənäzh'), the act of obtaining information clandestinely. The term applies particularly to the act of collecting military, industrial, and political data about one nation for the benefit of another. and sabotage sabotage [Fr., sabot=wooden shoe; hence, to work clumsily], form of direct action by workers against employers through obstruction of work and/or lowering of plant efficiency. Methods range from peaceful slowing of production to destruction of property. . Departments can lessen less·en v. less·ened, less·en·ing, less·ens v.tr. 1. To make less; reduce. 2. Archaic To make little of; belittle. v.intr. To become less; decrease. such dangers by inculcating operational security (OPSEC (OPerations SECurity) The U.S. military term for concealing critical information as part of a counterintelligence plan. A form of "security by obscurity," OPSEC determines what information adversaries can obtain or piece together from observation and to provide measures for ) early into all facets of individual daily affairs and special activities; enforcing strict need-to-know requirements; practicing OPSEC, especially at off-site and under-cover locations; and integrating security compliance into all plans, policies, procedures, and performance reviews. Equipment Screening, accessing, and monitoring systems rapidly become obsolete in countering new and evolving multidimensional mul·ti·di·men·sion·al adj. Of, relating to, or having several dimensions. mul ti·di·men threats. To
reduce security and operational failures, departments can integrate
multiple resources to enhance security (e.g., physical barriers,
electronic sensors, monitors, alarms, and human systems); program into
future budgets the cumulative expenses for backup equipment, supplies,
maintenance, repair, upgrades, and replacement systems; and exploit
available off-the-shelf equipment to reduce internal research and
development expenses.Facilities Centralized cen·tral·ize v. cen·tral·ized, cen·tral·iz·ing, cen·tral·iz·es v.tr. 1. To draw into or toward a center; consolidate. 2. facilities and decentralized de·cen·tral·ize v. de·cen·tral·ized, de·cen·tral·iz·ing, de·cen·tral·iz·es v.tr. 1. To distribute the administrative functions or powers of (a central authority) among several local authorities. law enforcement activities present unique cooperative security and operational challenges. Departments can mitigate these by improving three-dimensional security perimeters with multiple rings and layers of mutually supporting protection; by assessing adjacent establishments as pathways for attacks and correcting gaps where possible; by protecting off-site locations with complementing security measures Noun 1. security measures - measures taken as a precaution against theft or espionage or sabotage etc.; "military security has been stepped up since the recent uprising" security ; and by providing separate visitor-and package-screening accommodations. Social-Psychological Factors Adversarial manipulations of public and organizational perceptions affect community support and internal morale. Departments may lessen social-psychological threats by recognizing the importance of community and individual concerns; by earning and preserving the public's trust and confidence; by understanding the impact of social, cultural, political, religious, and psychological influences in daily operational security practices; and by deterring, detecting, and defeating internal security and operational problems promptly and decisively. RISK ASSESSMENT REPORTING Producing a comprehensive security risk assessment (SRA SrA abbr. senior airman ) report highlighting all findings and recommendations can enable senior officials to make well-informed mitigation MITIGATION. To make less rigorous or penal. 2. Crimes are frequently committed under circumstances which are not justifiable nor excusable, yet they show that the offender has been greatly tempted; as, for example, when a starving man steals bread to satisfy decisions. Accurate judgments are based on methodical me·thod·i·cal also me·thod·ic adj. 1. Arranged or proceeding in regular, systematic order. 2. Characterized by ordered and systematic habits or behavior. See Synonyms at orderly. assessments of known factors and on harnessing the collective input from subject-matter experts to derive acceptable levels of risk and courses of action. Based on available and projected resources, decision makers may implement countermeasures in varying intensities or at select locations, or they may accept risk conditions based on existing priorities, resources, and threat status. An SRA report should contain several components. * Executive summary highlighting the major findings, requests, and suggestions * Background information defining the purpose of the assessment * Overview describing ARM to familiarize readers with the process * Status of any related assessment reports received from other agencies and substations * Detailed findings of assessed assets, threats, and vulnerabilities * Review of calculated security or operational risks * Countermeasure options, including the types and quantities desired * Critical concerns and prioritized specific problems * Detailed recommendations and external support requests * A security program plan describing the department's plan of action (e.g., goals, objectives, and actions) to mitigate risks * Discussion of planning, programming, and budgeting requirements * Overall lessons learned and information for sharing * Predictive risk analysis discussing future risks and preventive measures * Summary and conclusion recapping major findings and recommendations FUTURE CHALLENGES The character of emerging threats is changing rapidly. Today, law enforcement agencies are challenged by multiple asymmetric A difference between two opposing modes. It typically refers to a speed disparity. For example, in asymmetric operations, it takes longer to compress and encrypt data than to decompress and decrypt it. Contrast with symmetric. See asymmetric compression and public key cryptography. perils: domestic violence, criminal enterprises, white-collar crimes white-collar crime, term coined by Edward Sutherland for nonviolent crimes committed by corporations or individuals such as office workers or sales personnel (see white-collar workers) in the course of their business activities. , cyber-based offenses, transient A malfunction that occurs at random intervals and lasts for a short duration such as a spike or surge in a power line or a memory cell that intermittently fails. See spike and power surge. transient - 1. agitators, public corruption, and assorted threats of terrorism. Emerging threats include old, reemerging dangers, such as increasing street gang violence and the influence of incarcerated incarcerated /in·car·cer·at·ed/ (in-kahr´ser-at?ed) imprisoned; constricted; subjected to incarceration. in·car·cer·at·ed adj. Confined or trapped, as a hernia. criminals continuing to conduct unlawful enterprises from prisons; the use of assorted improvised explosive devices (IEDs); the increasing menace MENACE. A threat; a declaration of an intention to cause evil to happen to another. 2. When menaces to do an injury to another have been made, the party making them may, in general, be held to bail to keep the peace; and, when followed by any inconvenience or of weapons of mass destruction Weapons that are capable of a high order of destruction and/or of being used in such a manner as to destroy large numbers of people. Weapons of mass destruction can be high explosives or nuclear, biological, chemical, and radiological weapons, but exclude the means of transporting or potentially involving chemical, biological, radiological radiological pertaining to radiology. radiological diagnosis see radiological diagnosis. mobile radiological apparatus x-ray machines that can be moved but are not portable because of their weight. , nuclear, and high-explosive devices; new alliances and symbiotic relationships This is an incomplete list of notable mutualistic symbiotic relationships, in which different species have a cooperative or mutually dependent relationship.
Detecting, identifying, and neutralizing threats and adversaries require a holistic approach holistic approach A term used in alternative health for a philosophical approach to health care, in which the entire Pt is evaluated and treated. See Alternative medicine, Holistic medicine. by assembling separate pieces of the puzzle to see the big picture of the hostile forces Any civilian, paramilitary, or military force or terrorist(s), with or without national designation, that have committed a hostile act, exhibited hostile intent, or have been declared hostile by appropriate US authority. (e.g., criminals, extremists, and terrorists). Common profiles of antagonists antagonists, n muscles that counterbalance agonists during specific movements. opioid Neurology A pain-attenuating peptide that occurs naturally in the brain, which induces analgesia by mimicking endogenous opioids at opioid include a thorough understanding of the following: * Goals: What specific objectives are the adversaries trying to achieve (e.g., to influence, disrupt, or destroy)? * Motivation: What stimulates them to do what they do (e.g., for domination, fear, greed Greed See also Stinginess. Almayer’s Folly lust for gold leads to decline. [Br. Lit.: Almayer’s Folly] Alonso Shakespearean symbol of avarice. [Br. Lit. , or prestige)? * History: What are their social, cultural, political, religious, and psychological influences (e.g., based on animosity, vengeance Vengeance Absalom kills half-brother, Amnon, for raping sister, Tamar. [O. T. , or ideology)? * Funding: What are their sources of monetary resources (e.g., foreign sponsors, criminal enterprises, or false fronts)? * Support structure: What basic framework supports their operations and daily living activities (e.g., lodging, training, transporting, and sustaining)? * Skills: What are their technical and tactical skills (e.g., weapons, explosives, specialized spe·cial·ize v. spe·cial·ized, spe·cial·iz·ing, spe·cial·iz·es v.intr. 1. To pursue a special activity, occupation, or field of study. 2. training, and language)? * Collection: What are their intelligence collection sources and methods (e.g., insiders, visitors, or open sources)? * Knowledge: What do they know about their targets (e.g., their assets, vulnerabilities, and countermeasures)? * Tools: What specific tools do they possess (e.g., identity papers identity papers npl → documentos mpl (de identidad); documentación fsg identity papers identity npl → Ausweispapiere pl , vehicles, and computers)? * Weapons: What specific weapons do they have (e.g., small arms small arms, firearms designed primarily to be carried and fired by one person and, generally, held in the hands, as distinguished from heavy arms, or artillery. Early Small Arms The first small arms came into general use at the end of the 14th cent. , IEDs, or weapons of mass destruction)? * Opportunities: What opportunities may be or become available to strike (e.g., mass public gatherings, visiting dignitaries, building repairs, or open gaps)? * Action: What are their action capabilities (e.g., Are they motivated mo·ti·vate tr.v. mo·ti·vat·ed, mo·ti·vat·ing, mo·ti·vates To provide with an incentive; move to action; impel. mo , organized, equipped, trained, supported, knowledgeable, and readied attackers?)? In assessing emerging threats, law enforcement agencies can target and exploit some of an adversary's common operating methods and techniques. These include increased use of physical, imagery, and technical surveillance to identify the target's vulnerabilities; applied use of long-term meticulous me·tic·u·lous adj. 1. Extremely careful and precise. 2. Extremely or excessively concerned with details. [From Latin met planning and preparation; attempts to control circumstances and timing of when operations will commence; use of multiple independent cells with the same target; simultaneous attacks of soft-target and high-payoff objectives to create mass fear, havoc, and casualties; and increased support networks for funds, recruitment, contacts, safe houses, false identities and cover stories, training, weapons, explosives, intelligence, communications, transportation, and escape plans or death benefits for surviving family members. First and foremost, mitigation of emerging threats requires the ability to think and act beyond conventional wisdom. That is, risk managers and key decision makers must assess the last attack, but not plan exclusively for the same attack. Law enforcement officials should enhance their abilities to be-- * receptive receptive /re·cep·tive/ (re-cep´tiv) capable of receiving or of responding to a stimulus. to both new innovations and old solutions; * thorough in assessment, planning, and execution; * resourceful re·source·ful adj. Able to act effectively or imaginatively, especially in difficult situations. re·source ful·ly adv. in synergizing use of all assets;* unpredictable in overt Public; open; manifest. The term overt is used in Criminal Law in reference to conduct that moves more directly toward the commission of an offense than do acts of planning and preparation that may ultimately lead to such conduct. OVERT. Open. behavior; * uncompromising in maintaining the highest security and operational standards; * practical in applying preventive measures; and * flexible and bold in countering new challenges. CONCLUSION Identifying and thoroughly understanding local and regional threats give law enforcement agencies a distinct advantage in better preparing for a wide range of risks and challenges. Today's criminals, extremists, and terrorists continue to practice the ancient principles of lawlessness law·less adj. 1. Unrestrained by law; unruly: a lawless mob. 2. Contrary to the law; unlawful: the lawless slaughter of protected species. 3. : striking when and where they are most ready and when they perceive that the law is absent or its enforcers are least prepared. Departments must be able to recognize potential threats and have plans of action to counter a myriad of internal and external risks. Assessments can provide risk managers and decision makers with a baseline of vital information and collective trends that ultimately impacts strategic planning Strategic planning is an organization's process of defining its strategy, or direction, and making decisions on allocating its resources to pursue this strategy, including its capital and people. efforts. Reports give focus for future security and operational initiatives via the opportunity to realign re·a·lign tr.v. re·a·ligned, re·a·lign·ing, re·a·ligns 1. To put back into proper order or alignment. 2. To make new groupings of or working arrangements between. priorities, update monetary funding, and share lessons learned with the public safety community. Law enforcement agencies should perform risk assessments annually and whenever a major adverse incident occurs, key leadership changes, operations relocate re·lo·cate v. re·lo·cat·ed, re·lo·cat·ing, re·lo·cates v.tr. To move to or establish in a new place: relocated the business. v.intr. , and physical or procedural security modifications transpire. Analytical risk management (ARM) assessments and accompanying security risk assessment (SRA) reports support planners and managers in developing comprehensive security programs to mitigate risks, justify budget and resource requests, and identify ways to improve security departmentwide. ARM assessments and SRA reports are a snapshot (1) A saved copy of memory including the contents of all memory bytes, hardware registers and status indicators. It is periodically taken in order to restore the system in the event of failure. (2) A saved copy of a file before it is updated. of current assets Current Assets Appearing on a company's balance sheet, it represents cash, accounts receivable, inventory, marketable securities, prepaid expenses, and other assets that can be converted to cash within one year. , threats, vulnerabilities, and risks. ARM offers a flexible method for examining security and operational readiness The capability of a unit/formation, ship, weapon system, or equipment to perform the missions or functions for which it is organized or designed. May be used in a general sense or to express a level or degree of readiness. Also called OR. See also combat readiness. and for developing cost-effective countermeasure options, whereas SRA reports provide a formal audit trail leading to well-informed decision making. Together, these tools can help the law enforcement community enhance its ability to face the rigors of tomorrow's world Tomorrow's World was a long-running BBC television series, showcasing new (and often wacky) developments in the world of science and technology. First aired in 1965, it ran for 38 years until it was axed at the beginning of 2003, ostensibly because of falling ratings. of uncertainty.
Chart 1 - Asset Assessment Example
Linguistic
Impact Numeric
Critical Asset UDE Undesirable Event Rating Impact
Code (UDE) Degree / Value
Criticality
People
(P-1) Departmental P1A Terrorist or Low / High 14
Personnel criminal attacks
(full-time (e.g., vehicle &
officers, package IEDs,
auxiliaries, JTF hazardous mail, &
members, physical assaults)
technicians, & causing loss of LEA
administrators). lives.
P1B (Insert additional
items & blank lines
as needed).
Information
(I-1) LEA sensitive I1A Internal & external Medium / 5
information in thefts compromising Medium
various media. law enforcement
sensitive resources
& operations.
Operations
(O-1) Ongoing O1A Detection of LEA UC High / High 49
investigations & operations causing
operations. loss of lives, CI
assets, and
jeopardize officers
and cases.
O1B Improper security Low / 50
discipline and Critical
security lapses
causing compromised
operations.
Equipment
(E-1) Communication E1A Loss of electrical High / High 49
devices. power or
communications
causing disruptions
of operations.
(E-2) Weapons, E2B Thefts causing loss Medium / 71
ammunition, radios, of weapons, radios, Critical
& specialized gear. & equipment.
Facilities
(F-1) Main F1A Unrestricted Low / 50
Headquarters & publicly accessible Critical
substations pathways in adjacent
property causing
penetrations and
attacks.
Socio-Psychological
(S-1) Community M1A Loss of public trust Medium / 71
public relations. and community Critical
support may result
in increased crimes.
Conversion Table A (Assets & Risks)
Low Medium High Critical
L/L M/L H/L L/M M/M H/M L/H M/H H/H L/C M/C H/C
1 2 3 4 4 5 13 25 49 50 71 100
For converting linguistic ratings into numeric impact values for assets
and for converting numeric values into linguistic ratings for risks.
Chart 2 - Threat Assessment Example
Critical UDE Threat
Asset Code Category Adversary Intent
LEA personnel P1A Criminals Local & Street gangs
I1B transient ABC & XYZ
LEA O1A criminals intend to
information O1B merge to
attack
police.
Active Prisoners Unpredictable
investigations processing intoxicated
prisoners
Equip. &
weapons
HQ & I1A Extremists Terrorists, Left-wing &
substations E2B radicals, right-wing
S1A fundamenta group intent
lists on creating
havoc during
convention.
F1A Disoriented Deranged Mentally
F1B & displaced individuals disturbed
people persons
intent on
self-harm.
Transients, Trespassers
homeless, intent on
trespassers stealing for
money.
Linguistic
Critical Threat Numeric
Asset Capability History Rating Impact
Degree / Value
Criticality
LEA personnel Gangs Six-year Medium / .87
possess history of Critical
LEA assorted violence
information weapons. since
arrest of
T.J.
Kooker.
Active Prisoners Weekend High / High .74
investigations on PCP arrests are
become most
Equip. & powerful. dangerous.
weapons
HQ & Both groups Outside Low / .75
sub-stations trained & agitators Critical
equipped in arrive
civil during
disorder major
tactics. events.
Deranged Problem Low / .25
people use patients Medium
multiple released
objects as from county
weapons. asylum.
Transients Difficult Medium / .62
capable of trespassers High
causing since
offenses. shelter
closing.
Conversion Table B (Threat and Vulnerabilities)
Low Medium High Critical
L/L M/L H/L L/M M/M H/M L/H M/H H/H L/C M/C H/C
.01 .12 .24 .25 .37 .49 .50 .62 .74 .75 .87 1.00
For converting linguistic ratings into numeric threat values and for
converting linguistic ratings into numeric vulnerability values.
Chart 3 - Vulnerability Assessment Example
Linguistic
Critical Asset UDE Vulnerability Vulnerability Numeric
Code Description Rating Impact
Degree / Value
Criticality
People
LEA personnel P1A Established Low / Critical .75
daily routines &
schedules of law
enforcement
officers &
supervisors.
P1A Intimidations & High / Critical 1.00
physical
assaults.
Information
LEA I1B Inadequate Low / Medium .25
information compliance to
established
security
policies,
programs, &
procedures.
Operations
Active O1B Public building Medium / Medium .37
investigations with inadequate
monitoring,
allowing
penetration and
exposure to
investigations.
F1A Operations Medium / High .62
center
co-located in
high-risk
facility.
Equipment
Weapons, E1A Inadequate radio High / High .74
radios, & communication
equipment systems.
E2B Inadequate Low / Medium .25
doors, locks,
and alarms to
properly
safeguard
contents.
Facilities
Headquarters & F1B Presence of High / Critical 1.00
substations publicly
accessible
underground
facilities
(e.g., parking
lots, loading
docks, & fuel
sites).
Socio-Psych
Community PR M1A Insufficient High / High .74
programs public relations
staffing and
funding reduces
positive
contacts with
the community.
Chart 4 - Risk Assessment Example
Impact Threat Vulnerability
Rating Value Rating Value Rating Value
People
Departmental L / H 14 M / C .87 H / C 1.00
personnel
Information
LEA sensitive M / M 5 L / C .75 L / M .25
information in
various media
Operations
Ongoing LEA H / H 49 M / C .87 M / M .37
investigations
Equipment
Communication H / H 49 L / C .75 H / H .74
devices
Weapons, M / C 71 L / C .75 L / M .25
ammunition, radios,
& equipment
Facilities
Main Headquarters & L / C 50 M / H .62 H / C 1.00
Substations
Socio-Psychological
Community public M / C 71 L / C .75 H / H .74
relations programs
Impact Numeric Linguistic
Value Risk
Rating
Degree /
Criticality
People
Departmental 12.18 H / M
personnel
Information
LEA sensitive .94 L / L
information in
various media
Operations
Ongoing LEA 15.77 L / H
investigations
Equipment
Communication 27.20 M/ H
devices
Weapons, 13.31 H / M
ammunition, radios,
& equipment
Facilities
Main Headquarters & 31.00 M / H
Substations
Socio-Psychological
Community public 39.41 H / H
relations programs
Chart 5 - Countermeasure Assessment Example
(E) Existing / Undesirable Event Terrorist
(O) Ordered / attacks
(R) Requested
(in order of
priority)
Number & CM
Countermeasure Cost Effect
E #1 Provide semi-annual No extra Deter *
security refresher cost. Defend
training to all.
E #2 Increase No extra Detect *
operational cost. Defeat
security into all
investigations.
O #1 Increase community $ 3,000. Deter *
relations & public Detect
affairs projects. Defeat
O #2 Purchase secure 22 X $350. Deter *
containers for all = $7,700. Deny
removable media.
R #1 Purchase secure $225,000. Deter
radio & phone
systems.
R #2 Install securer 10 X $300. Deny *
doors & locks on = $3,000. Delay
arms, gear, &
evidence rooms.
R #3 Construct detached $ 92,500. Deny *
prisoner processing Defend
facility next to
HQ.
(E) Existing / Undesirable Event Internal & Cyber-based
(O) Ordered / external thefts attacks
(R) Requested
(in order of
priority)
Countermeasure
E #1 Provide semi-annual * *
security refresher
training to all.
E #2 Increase * *
operational
security into all
investigations.
O #1 Increase community
relations & public
affairs projects.
O #2 Purchase secure *
containers for all
removable media.
R #1 Purchase secure *
radio & phone
systems.
R #2 Install securer *
doors & locks on
arms, gear, &
evidence rooms.
R #3 Construct detached *
prisoner processing
facility next to
HQ.
(E) Existing / Undesirable Event Detection of Improper security
(O) Ordered / UC operations discipline
(R) Requested
(in order of
priority)
Countermeasure
E #1 Provide semi-annual * *
security refresher
training to all.
E #2 Increase * *
operational
security into all
investigations.
O #1 Increase community
relations & public
affairs projects.
O #2 Purchase secure *
containers for all
removable media.
R #1 Purchase secure *
radio & phone
systems.
R #2 Install securer *
doors & locks on
arms, gear, &
evidence rooms.
R #3 Construct detached *
prisoner processing
facility next to
HQ.
(E) Existing / Undesirable Event Loss power Theft of weapons
(O) Ordered / & commo. & equip.
(R) Requested
(in order of
priority)
Countermeasure
E #1 Provide semi-annual *
security refresher
training to all.
E #2 Increase *
operational
security into all
investigations.
O #1 Increase community
relations & public
affairs projects.
O #2 Purchase secure
containers for all
removable media.
R #1 Purchase secure *
radio & phone
systems.
R #2 Install securer * *
doors & locks on
arms, gear, &
evidence rooms.
R #3 Construct detached *
prisoner processing
facility next to
HQ.
(E) Existing / Undesirable Event Facility Inadequate
(O) Ordered / penetrations parking
(R) Requested
(in order of
priority)
Countermeasure
E #1 Provide semi-annual *
security refresher
training to all.
E #2 Increase
operational
security into all
investigations.
O #1 Increase community
relations & public
affairs projects.
O #2 Purchase secure *
containers for all
removable media.
R #1 Purchase secure
radio & phone
systems.
R #2 Install securer
doors & locks on
arms, gear, &
evidence rooms.
R #3 Construct detached *
prisoner processing
facility next to
HQ.
(E) Existing / Undesirable Event Loss of Notes
(O) Ordered / public trust
(R) Requested
(in order of
priority)
Countermeasure
E #1 Provide semi-annual Conduct
security refresher March &
training to all. Sept.
E #2 Increase * Increase
operational ASAP
security into all
investigations.
O #1 Increase community * Conduct
relations & public ASAP
affairs projects.
O #2 Purchase secure Ordered
containers for all ETA Sep.
removable media. 2005
R #1 Purchase secure Request
radio & phone ASAP
systems.
R #2 Install securer Request
doors & locks on next
arms, gear, & month
evidence rooms.
R #3 Construct detached Request
prisoner processing next, year
facility next to
HQ.
CM Effect: Deter, Detect, Deny, Delay, Defend, or Defeat.
Endnotes (1) The FBI recently completed an assessment to evaluate its own security posture using ARM, which the U.S. Security Policy Board's Risk Management Training Group developed. The FBI's version of ARM involves a six-step process that identifies an organization's assets, threats, vulnerabilities, risks, and needed countermeasures and then develops a security risk assessment (SRA) report. RELATED ARTICLE: Common Threats Facing Law Enforcement Agencies * Criminal: menacing, assaults, vandalism The intentional and malicious destruction of or damage to the property of another. The intentional destruction of property is popularly referred to as vandalism. It includes behavior such as breaking windows, slashing tires, spray painting a wall with graffiti, and , thefts, arson arson, at common law, the malicious and willful burning of the house of another. Originally, it was an offense against the security of habitation rather than against property rights. , and computer hacking See hack and hacker. * Natural: fires, floods, power failures, and storms * Domestic: civil disturbances Group acts of violence and disorder prejudicial to public law and order. See also domestic emergencies. and special event problems * Terrorist: bombings, sabotage, hostage hostage, person held by another as a guarantee that certain actions or promises will or will not be carried out. During periods of internal turmoil, insurgents often seize hostages; recent examples include seizures of Americans and other foreigners by militants in taking, kidnappings, and homicides * Internal: corrupt officers, misuse of authority or resources, and malicious acts by disgruntled dis·grun·tle tr.v. dis·grun·tled, dis·grun·tling, dis·grun·tles To make discontented. [dis- + gruntle, to grumble (from Middle English gruntelen; see workers RELATED ARTICLE: A New Generation of Adversaries The acronym acronym: see abbreviation. A word typically made up of the first letters of two or more words; for example, BASIC stands for "Beginners All purpose Symbolic Instruction Code. CAS-DRI-VARS may characterize some fundamental operating methods that free-ranging adversaries exploit throughout the world. * Creative: applying innovative use of the ancient arts of unconventional warfare A broad spectrum of military and paramilitary operations, normally of long duration, predominantly conducted through, with, or by indigenous or surrogate forces who are organized, trained, equipped, supported, and directed in varying degrees by an external source. * Asymmetrical a·sym·met·ri·cal or a·sym·met·ric adj. Abbr. a Lacking symmetry between two or more like parts; not symmetrical. : launching multifaceted mul·ti·fac·et·ed adj. Having many facets or aspects. See Synonyms at versatile. Adj. 1. multifaceted - having many aspects; "a many-sided subject"; "a multifaceted undertaking"; "multifarious interests"; "the multifarious physical, political, informational, and cyberattacks * Secretive se·cre·tive adj. Having or marked by an inclination to secrecy; not open, forthright, or frank. See Synonyms at silent. se : cloaking (1) Masking text in a Web page in order to achieve a higher ranking in search engine results. For example, white text on a white background is invisible to the user, but not to the search engine spiders that crawl the Web looking for pages to index. See Web spam. in multiple layers and compartmented com·part·ment n. 1. One of the parts or spaces into which an area is subdivided. 2. A separate room, section, or chamber: a storage compartment. tr.v. cells * Deceptive de·cep·tive adj. Deceptive or tending to deceive. de·cep tive·ness n. : misleading and manipulative ma·nip·u·la·tive adj. Serving, tending, or having the power to manipulate. n. Any of various objects designed to be moved or arranged by hand as a means of developing motor skills or understanding abstractions, especially in in their intent and behavior * Resourceful: maximizing the use of available resources to achieve their objectives * Intelligent: capitalizing on detailed planning and orchestration orchestration Art of choosing which instruments to use for a given piece of music. The sections of the orchestra historically were separate ensembles: the stringed instruments for indoors, the woodwind instruments for outdoors, the horns for hunting, and trumpets and drums * Visionary: foreseeing the third and fourth order of effects of their actions * Adaptable a·dapt·a·ble adj. Capable of adapting or of being adapted. a·dapt a·bil : evolving and adjusting with each new countermeasure* Ruthless: striking with brute violence against the innocents * Sophisticated: employing intricate ploys and strategies By W. DEAN LEE, Ph.D. Dr. Lee, the architect of the FBI's Security Risk Management Program and Continuity Assurance Planning Strategy, leads the Bureau's Security Risk Analysis Staff. Please forward questions, comments, and suggestions to deanlee@leo.gov or phone Dr. Lee at 202-324-3173. The FBI's Security Division fully supports the dedicated law enforcement professionals serving communities throughout the United States United States, officially United States of America, republic (2005 est. pop. 295,734,000), 3,539,227 sq mi (9,166,598 sq km), North America. The United States is the world's third largest country in population and the fourth largest country in area. and the free world. |
|
||||||||||||||||||
Printer friendly
Cite/link
Email
Feedback
Reader Opinion