Part 1: Attitudes About Security
Which of the following attributes generally apply to your security program?
(Select zero if the statement doesn't apply, and nine if it always applies.)
1.
There is widespread arrogance and overconfidence about the security program.
2.
Security is viewed as binary--things are thought to be either secure or not secure.
3.
Security department is focused on paperwork, auditors, regulations, standards and compliance.
4.
Insiders are not viewed as a threat.
5.
VIPs are allowed to bypass standard security procedures.
6.
Security is micromanaged by business executives who lack adequate knowledge of security.
7.
Serious vulnerabilities are assumed not to exist. Comprehensive vulnerability assessments are rare and don’t result in substantial changes.
8.
Security managers rarely “walk the spaces” or chat informally with nonsecurity employees.
9.
Technology is viewed as a silver bullet for security
Part 2: Life for Frontline Security Personnel
Which of the following attributes generally apply to your security program?
(Select zero if the statement doesn't apply, and nine if it always applies.)
10.
Security personnel are not briefed at the start of a shift and debriefed at the end.
11.
Security personnel receive little training and are granted few opportunities for professional advancement.
12.
Insurance and medical coverage is absent or poor.
13.
There are few opportunities for security personnel to demonstrate their prowess in contests or exercises.
14.
It’s rare to have constantly changing “what if?” or walk-through exercises for mentally rehearsing security responses.
15.
Security personnel are rarely recognized for good work, and their physical appearance tends to be poor.
16.
Security personnel are discouraged from thinking, asking questions, reporting problems or raising concerns.
17.
There are no widely understood and mentally rehearsed policies on the use of physical force.
18.
Security personnel tend not to respect security supervisors and managers.
19.
Nonsecurity employees tend not to respect security personnel.
Part 3: Policies and Procedures
Which of the following attributes generally apply to your security program?
(Select zero if the statement doesn't apply, and nine if it always applies.)
20.
Organization does not do preemployment screening of all employees or periodic background checks on security and other critical personnel.
21.
Many employees believe the organization lacks a fair and effective grievance or complaint resolution process for security and nonsecurity personnel. (The objective reality is irrelevant.)
22.
Confidential, professional counseling is not available for troubled employees (whether security personnel or otherwise).
23.
Security managers are automatically fired when there is a major security incident. Low-level security personnel are automatically disciplined or fired when there is a minor security incident.
24.
Relations with the public, neighbors and local authorities are neglected or ignored.
25.
Security awareness training for nonsecurity personnel is insulting, threatening, and/or boring and doesn’t emphasize why security is important for everyone.
26.
New technology that employees would like to use is banned in a knee-jerk manner for security reasons, without intelligent accommodation.
27.
Comments, suggestions and concerns about security result in retaliation, defensiveness or automatic rejection of the input.
28.
Changes in security are interpreted as an indication that security managers have been screwing up all this time.