Blog
Recent
The TSA Moves to End ‘Security Theater’—What About You?
Blog on Physical Security • posted 02/13/12
By the end of 2012, the Transportation Security Administration’s Pre-Check program—that allows enrollees to bypass the most time-consuming security checks at airports—will grow fourfold and be operational in 35 major airports, the agency announced last week. The move hopes to quell claims that too much of the nation’s airport security is mere theater—a charge that could also be levied against many private businesses.
At the same time TSA agents have been observed patting down 5-year-olds and centenarians, agency report cards have revealed tens of thousands of security breaches in the last decade, leading to charges that security measures are mostly for show. It’s a fair criticism anytime observable security measures do not match actual performance data.
Private companies typically have a range of front-door security measures, some even have bag checks and metal detectors, but are these also just for appearances’ sake? The only real way to know is to conduct tests to see whether unauthorized intrusions are actually being stopped—something many companies admit they do not do, according to IOFM Research.
Some 43 percent of companies don’t conduct physical penetration exercises and track performance over time. In addition to gaining insight in vulnerability, performing penetration tests can improve the attention with which security employees perform their job. In the case of screeners, for example, experts say security testing is important because thousands of bags enter without incident, which leads even well-trained personnel to lose focus due to the assumption that the next bag will also be clean. Frequent penetration testing can prevent dangerous assumptions and help screeners—and any security officer—remain vigilant.
| Does your organization conduct unannounced physical penetration tests to determine the ability of security measures to thwart attempts to gain unauthorized access? | |
|---|---|
| Yes, we follow a regular schedule of penetration tests | 41% |
| Yes, we periodically conduct penetration tests when deemed necessary | 16% |
| No, we do not | 43% |
You must be logged in to leave a comment · login