Professional Documents
Culture Documents
OCTOBER 3, 2008
TABLE OF CONTENTS:
1
Security Policy Statement Exercise
Team Alpha
The Alpha organization is committed to the safety and security of our staff
worldwide by mitigating risk, through our security framework policy and
procedures that provide staff safety and security training that emphasizes both
individual and organizational responsibility which in turn will foster the success of
the organization’s mission.
Team Bravo
Bravo is committed to the safety and security of our workers around the world. We
all must recognize that risk is inherent in the work we undertake, and that all of us
must accept individual responsibility for our own security. Individual responsibility
includes abiding by company travel and security policies. Bravo will endeavor to
maintain appropriate security policies and systems in place, in support of the efforts
of the individual. Together we can reduce/mitigate security risks and support
Bravo’s vital mission around the world.
Team Charlie
Charlie’s Kids in carrying out its mission of XXXXX is committed to the safety and
security of staff and volunteers as they carry out our work worldwide. Recognizing
the risks in the locations where we work and travel, Charlie’s Kids will provide the
resources to support our staff as we jointly mitigate the risks inherent in our work.
Team Delta
2
Team Echo
Echo staff face many risks working in challenging and difficult locations around the
world. We recognize that safety and security is the responsibility of all staff – at both
the individual and organizational levels. As individuals and as an employer we must
strive at all times to mitigate and manage these risks so that none of our staff are
exposed to unacceptable levels of risk, and to take all reasonable steps including
training and clear policies and procedures.
Team Foxtrot
3
Gallery Walk Results: Components of Security Management
Team Delta
Strategy: Staff training for roles Æ establish chain of command and alternate Æ
create a communications and public affairs plan Æ access to financial materials and
other resources Æ access to all vendor information Æ access to security information
and sources Æ drills
Statement: Address information in the pre incident/crisis phase, the crisis phase and
post-crisis phase. This is includes risk assessments; pre-travel briefings; pre travel
medical information resources; access to specific country security information;
emergency evacuation insurance; compile voluntary personal data (while complying
with HIPAA).
Team Echo
4
Issue #2: Training
Statement: ECHO will have policies addressing the key security issues and formal
plans at the field and HQ levels and will provide training resources to meet these
standards.
3. Facilities
Team Foxtrot
Strategy: I. Mitigation stage Æ have a crisis management team (CMT) in place and
identify essential staff; have up to date evacuation plans and phone trees; maintain
backup data on an offsite and accessible server; have normal operating location
stocked with food, water, first aid kits; have an alternate location ready and stocked.
II. Crisis event stage Æ activate CMT; access public services as appropriate; access
information resources.
III. Recovery stage Æ CMT evaluates damage; activate phone tree; essential staff go
to alternate location; inform all staff of next steps; access data/information services.
Statement: Foxtrot will mitigate risk by controlling access to facilities, personnel and
information.
Strategy: I. Facility access (at minimum) Æ controlled entrances and exits; exterior
lighting; above standard door locks; controlled landscaping (e.g. prevent tree growth
over building) and a location with set-back.
II. Personnel and visitor access (at minimum) Æ sign in with an ID check upon entry
to the facility; an enforcement policy will be devised for compliance.
III. Information access (at minimum) Æ login and passwords for every work station;
data will be secured offsite; critical files will be protected (for those with a ‘need to
know’ only).
4. Communication Systems
Team Alpha
5
Objective and Strategy: Utilize fully redundant communication methods and
equipment.
Team Bravo
Mission Statement: Bravo will have pre-departure and in-country policies in place to
mitigate security risks associated with travel. We will follow a collaborative process
to develop corporate and in-country policies, which will include reviewing current
field practices, and accessing resources such as the Overseas Security Advisory
Council for best practice information. Our policies will be reviewed and updated on
a regular basis.
6. Other
Team Charlie
6
Issue #1: Insurance
Strategy: identify risks Æ identify available products, vendorsÆ gain consent from
managementÆ assess organization’s tolerance for riskÆ get bids and proposalsÆ
present proposal to key decision-makersÆ get approval.
Strategy and Implementation: identify target population (i.e., expat, local nationals,
TCNs)Æ identify resourcesÆ identify trigger for evacuation/relocationÆ is
evacuation mandatory?Æ who decides on evacuation (crisis management team,
CEO, etc)?Æ identify options for staff by population typeÆchoose vendorsÆ plan
out resources (e.g. safe house)Æ roll out plan to staffÆ trainingÆ drills.
7
Security Management Best Practices, Lessons Learned & Resources
What are some of the best practices for developing a security management plan?
What are some potential obstacles? What are potential solutions and resources?
OSAC
www.osac.gov
InterAction
www.interaction.org
Safer Access
www.saferaccess.org
ReliefWeb
www.reliefweb.int
IRIN
www.irinnews.org
9
Appendix A: Agenda
October 3, 2008
Introductory Security Management Workshop
for Humanitarian & Faith-based Organizations
held at Save the Children in Washington D.C.
Agenda:
3pm-3:15pm Break
10
Appendix B: Facilitator Contact Information
Yan Bui
Account Executive
Clements International
ybui@clements.com
Lauren D’Amore
Regional Coordinator
OSAC
D’AmoreLE@state.gov
Josh Kearns
Associate Security Coordinator
InterAction
JKearns@interaction.org
Michael O’Neill
Senior Director of Security
Save the Children
MOneill@savechildren.org
John Schafer
Senior Security Coordinator
InterAction
JSchafer@interaction.org
Terry Wesbrock
Security Director
IRD
tjwesbrock@ird-dc.org
Tina Wesbrock
Security Director
IRD
twesbrock@ird-dc.org
11