Security assessment is an essential part of an organisation's risk management. It helps identify and manage risks, improves safety culture and ensures that the organisation complies with legislation and industry best practices. Regular assessments and continuous improvement play a key role in maintaining and developing safety. 

Facility security assessments are critical evaluations conducted to identify and mitigate potential security risks within a facility. These assessments ensure the safety of personnel, property, and information by implementing appropriate security measures.  

The scope and targets of the safety assessment shall be agreed upon in accordance with the organisation's needs. The assessment may cover only one area or subject matter. A report shall be drawn up on the results of the evaluation. The report includes proposals for measures to correct the detected safety deviations.

Areas of Facility Assessment

Access control

Evaluate the organisation's existing access control systems and identify potential areas for improvement.

Intrusion detection system

Evaluate the organization's existing systems that detect and report unauthorized access attempts or break-ins.

Camera surveillance

The safety of the camera types in use, their placement (all critical areas must be covered) and the image quality of camera surveillance are assessed. The storage, protection and implementation of access control of recordings are also included in the scope of the assessment.

Visiting policies

Evaluate the organization's current visitor management and safety practices.

Soundproofing and prevention of eavesdropping of the object

The assessment covers the organisation's eavesdropping and eavesdropping prevention measures.

Competence and reliability of security personnel (e.g. background checks)

The competence and reliability of the grafting personnel are assessed comprehensively, for example through background checks.

Procedures for granting access

Assess practices related to granting, maintaining and removing access rights. Access rights should only be granted to areas to which access is based on work activities (principle of least rights).

Safety instructions

The status of the organisation's safety guidelines and the practices related to their maintenance are assessed.

Destruction of non-electronic data

It is estimated that no electronic data will be destroyed reliably, and the data will no longer be readable or recoverable after the process.

Procedures and processes to maintain safety (e.g. appropriate maintenance of safety technology)

The procedures and processes related to maintaining the organisation's safety are comprehensively assessed. For example, it is essential to ensure that the maintenance of safety technology has been carried out appropriately. 

Security Communication

An important part of safety management is the timely sharing of information and ensuring that the information is received, which is a prerequisite for the organization to achieve its safety objectives.

Security Management Processes

The procedures and processes related to maintaining the organization's security are comprehensively assessed. For example, it is essential to ensure that the lifecycle management and maintenance of security technology are carried out properly and on time.