New Zealand Security - December 2021-January 2022

Page 1

December 2021 / January 2022

New Zealand Security Magazine

GLOBAL SECURITY INFLUENCER OF THE YEAR: JENNIE VICKERS #1 Global Influencer

WiSAA 2021 Winners

Retail Security

Former NZDIA CEO takes out prestigious award edging out stellar international field of candidates.

All the details on the 10 category awardees from this year’s Women in Security Aotearoa awards.

National retailers’ association shines spotlight on violence and anti-social behaviour against retail workers

www.defsec.net.nz

December 2021 / January 2022

NZSM

1


NZ made

SECURITY TECHNOLOGY RELIABILITY

fire door holding

electromagnets 12 & 24 VDC selectable

rea

unb

!

le b a k

FDH40S

unbreakable universal mounting • Low power consumption - low operating temperature • One product suits floor and wall mounting • Universal armature - offsets to 55º to suit doors opening past 90º • Wall mount extensions available • 12 & 24 VDC selectable • Push off button with no residual magnetism • Oversize armature for easy alignment • Emergency release button • Electroless nickel plated armature and electromagnet • Stainless fastenings • Full local support and back up

10 YEAR GUARANTEE*

Standard, floor mounted, wall to door distance 114mm

Designed, tested and produced in New Zealand to AS4178 A) Wall mounted,126mm extn. tube (overall 202mm) B) Wall mounted, 156mm extn. tube (overall 232mm) C) Wall mounted, 355mm extn. tube (overall 431mm) B)

C)

TEE

Option A – Surface Mounted

AN GUAR

FDH40S/R

Surface and Recess mounting This device enhances an outstanding range of unbreakable products which conveniently hold open fire doors. When a smoke/fire alarm is activated the magnet instantly releases the door to the closed position to prevent the spread of smoke and fire. These units feature a choice of 3 covers for optimum aesthetic appeal and durability. The installer can utilise one device for surface mounting or for recess mounting. Option B – Recess Mounted

10 YEAR GUARANTEE*

Satin Aluminium

Gloss Black

Gloss White

Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK mail@loktronic.co.nz www.loktronic.co.nz

For expert advice and assistance with your security locking needs, trust in Loktronic, call us on 0800 367 565

GUARANTEE

*Standard terms & conditions of sale apply.

21556/1/18

A)


24

7


CONTENTS ISSN Print 1175-2149 • ISSN Online 2537-8937

12

26

Cover photo: Keri Little Photography - www.kerilittlephotography.co.nz

8

34

From The Editor...................................................................................................................................................... 6

World #1: Jennie Vickers named Global Security Influencer of the Year...............................................................8 Reimagining access control to respond to customer needs.................................................................................... 10 Women in Security Awards Aotearoa: The Winners...................................................................................................... 12 Update from the NZIPI Chairman..............................................................................................................................................17 Extremism on the rise: What are the risks of it turning violent? ............................................................................ 18 Pandemic Leads to Increase in Retail Security Threats.................................................................................................20 Police announce new unit to focus on repeat retail offending..............................................................................22 Retail NZ launches Declaration on Violence & Anti-social Behaviour..................................................................23 Warnings over surge in fake Covid cards.............................................................................................................................. 24 NZSA CEO’s November Report.................................................................................................................................................. 26 TPT Group acquires data communications business Cablenet...............................................................................30 Aritech appoints Surveillance Technologies as NZ Tecom distributor................................................................30 The Active Shooter That Wasn’t................................................................................................................................................. 32 How have Kiwis changed their internet use due to Covid-19?................................................................................34 How to be Cyber Safe in your Holiday Space....................................................................................................................36 Body Armour: Effective Protection from Hypodermic Needles?............................................................................38 Industry Associations

* www.security.org.nz

www.asis.org.nz

www.masterlocksmiths.com.au

Three leading brands from

0800 367 565 www.loktronic.co.nz

4

NZSM

www.skills.org.nz

www.nzipi.org.nz

December 2021 / January 2022


LEARNING WEBINARS IN PARTNERSHIP WITH THE

NEW ZEALAND SECURITY ASSOCIATION

The Skills VR Learning Webinar Series is an interactive online learning experience that helps new and current staff learn or refresh key industry knowledge. Engage staff at scale and provide valuable, up-to-date security conflict management training in line with COA training to keep staff safe and effective on the job!

REGISTER NOW AT SKILLSVR.COM/WEBINARS

PRE AND POST SURVEYS

WEBINAR POLLS

GENERAL SECURITY 9 December 2021

Q&A

WITH INSIGHTS FROM

11:00am, 60min

SECURITY IN HOSPITALITY 9 December 2021 1:00pm, 60min skillsvr.com/webinars

Quinton Swanson NZ SAFETY CULTURE EXPERT

LIVE


FROM THE EDITOR Kia ora and welcome to the December 2021 – January 2022 issue of New Zealand Security Magazine! In this issue we round out the year with our traditional December focus on retail security as well as some much-needed positivity with the latest awards news. It’s been a tough year, and I’d like to take this opportunity to thank our readers and contributors for their continued support throughout 2021. A big thanks also to our wonderful advertisers who apart from providing solutions and services that NZSM is proud to promote are also contributing to a vibrant and informed sector through their sponsorship of the magazine. It’s not often we feature an actual person on the cover of NZSM. In fact, it’s been years. But with this issue of the magazine, we have very good reason to do so with the crowning of Jennie Vickers as the inaugural IFSEC Global Influencer of the Year! Jennie is the immediate past CEO of the New Zealand Defence Industry Association (NZDIA) and is well known to NZSM as a regular contributor to our sister publication Line of Defence Magazine. Jennie has contributed to the broader security sector in Aotearoa though her advocacy for local private sector involvement in the Defence supply chain and for improved engagement between private suppliers and government customers. Most recently, Jennie has been shining a light on the Broader Outcomes component of the Government Procurement Rules and advocating buyer accountability to the new requirement. She has also forged closer links between the security and defence industries through closer engagement with Gary Morrison (who also picked up a well-deserved IFSEC influencer gong earlier in the year) and the team at the NZSA. In global context, Jennie’s win is big security industry news and a massive win for New Zealand. But that’s not all. To add to the silverware, Jennie has also – along with cybersecurity legend Sai Honig – just been named as co-winner of the 2021 Women in Security Awards Aotearoa (WiSAA) ‘Thought Leader’ category! NZSM is delighted to be a supporter of the WiSAA programme in its second year. Organised by the New Zealand Security Sector Network (NZSSN), these awards recognise the relatively unsung role played by female professionals within a sector in which they remain a minority, and to inspire their colleagues of all genders. A huge thanks to this year’s WiSAA judging panel Dr Bridgette Sullivan-Taylor, Ngaire Kelaher CPP PSP, and Senior Sergeant (ret) Claire Bibby, and congratulations to this year’s WiSAA recipients Sai Honig, Jennie Vickers, Heather Jones, Jill Priest, Tash Bettridge, Yvonne Bruce, Anupurna Kaw, Sherilyn Tasker, Amina Aggarwal, and Pascale Howell!! Lastly, from the team here at NZSM have a very happy and safe festive season and a brilliant start to 2022! Here’s hoping it’s a good one! Nicholas Dynon, Auckland

DEFSEC

New Zealand’s National Defence, Fire and Security Publishers of: Line of Defence, FireNZ, New Zealand Security Magazine

Contact Details: Chief Editor, Nick Dynon Phone: + 64 (0) 223 663 691 Email: nick@defsec.net.nz Publisher, Craig Flint Phone: + 64 (0)274 597 621 Email: craig@defsec.net.nz Postal and delivery address: 27 West Crescent, Te Puru 3575, Thames, RD5, New Zealand

6

NZSM

Upcoming Issue February 2022 / March 2022 Banking, Insurance and Finance Loss prevention, industry training

facebook.com/defsecmedia twitter.com/DefsecNZ linkedin.com/company/ defsec-media-limited

NZSM New Zealand Security Magazine

Nick Dynon Chief Editor Nick has written for NZSM since 2013. He writes on all things security, but is particularly fascinated with the fault lines between security and privacy, and between individual, enterprise and national security. Prior to NZSM he clocked up over 20 years experience in various border security and military roles. Disclaimer: The information contained in this publication is given in good faith and has been derived from sources believed to be reliable and accurate. However, neither the publishers nor any person involved in the preparation of this publication accept any form of liability whatsoever for its contents including advertisements, editorials, opinions, advice or information or for any consequences from its use. Copyright: No article or part thereof may be reproduced without prior consent of the publisher.

December 2021 / January 2022


i-PRO X SERIES powered by AI

Taking intelligent analytics on the network edge » Maximising network and bandwidth efficiencies » Installs up to three video analytics applications » Designed for third party application development » High endurance, high realiability even in extreme conditions » Five year warranty

AI Privacy Masking Available models: WV-X2571LN 4K outdoor dome camera WV-X2271L 4K indoor dome camera WV-X1571LN 4K box camera

WV-X2551LN 5MP outdoor dome camera WV-X2251L 5MP indoor dome camera WV-X1551LN 5MP box camera

business.panasonic.nz/security-solutions/


World #1: Jennie Vickers named Global Security Influencer of the Year Jennie Vickers, CEO of Zeopard Consulting and former New Zealand Defence Industry Association CEO, dominates a stellar international field to claim IFSEC Global’s inaugural supreme influencer award.

It was all revealed at the prestigious Security & Fire Excellence Awards in London on the evening of 23 November. After a final judging process in which the category winners of the IFSEC Global Influencers – who had already been judged the most influential in their fields – were again put through their paces, New Zealand’s own Jennie Vickers was announced as the inaugural Global Influencer of the Year!

Grant Lecky, co-founder of the Security Partners Forum and Lead Judge for the awards, commented that this new award will play an important role within the international community of security professionals. “Security affects our lives and communities more deeply and expansively than ever, and recognising global influencers helps to emphasise this,” he said. “This new award will help further recognise influencers who have made exceptional contributions throughout the year – not just over a career – which can help identify current and future trends and opportunities.” Editor of IFSEC Global, James Moore, commented that the new award was a ‘Primus inter pares’ – ‘First among Equals’ – award for the IFSEC Global Influencers in Security and Fire. It is an historic win for Aotearoa, having already claimed six IFSEC Global Influencers in Security and Fire 2021 awards earlier in the year. Constituting a record number of kiwi winners were NZSA CEO Gary Morrison, ASIS NZ Chapter Chair Ngaire Kelaher, Massey University academic Dr John Battersby, Atlas Gentech Enterprise Security & Risk Manager Andrew Thorburn, Security Lit Managing Director Ankita Dhakar, and eventual influencer-in-chief Jennie Vickers. The awards process The Global Influencer of the Year was chosen between the winners of the five security categories (excluding the ‘One to Watch’ category) that comprise the annual IFSEC Global Influencers awards. Judging was undertaken by an

8

NZSM

independent group of judges following the publication of the full list of IFSEC Global Influencers earlier in the year. The five categories the winner is chosen from are: ● Security executives (the senior most official in an enterprise, whose primary duties encompass leading and managing security for the enterprise) ● Security – end users (e.g. heads of security, directors of security) ● Security – manufacturers/vendors/installers/ integrators (those displaying exemplary work in the field of installation or specific projects, as well as technological innovation) ● Security – thought leadership (e.g. thought leaders, association figures, academics) ● Cyber security professionals and thought leaders

December 2021 / January 2022


In order to collect the top gong, Jennie finished in front of a star field, which included Brian Tuskan, Chief Security Officer (Physical), Microsoft; Christina Alexander Alexandropoulou, Director of Security, Four Seasons – Astir Palace Hotel Athens; Loredana Mancini, Vice Chair, OWASP WIA Diversity and Inclusion; and Andrew Lanning, Co-founder, Integrated Security Technologies. According to IFSEC Global, Jennie’s energetic efforts from her work at the New Zealand Defence Industry Association in building a base and creating momentum across the industry to connect New Zealand businesses with a large base of international experts “has been an inspiration in the field.” About the winner Jennie, a New Zealand security sector luminary and regular contributor to NZSM sister publication Line of Defence Magazine, was already delighted to have made it to the #1 Spot in the ‘Association Figures/ Academics/Thought Leaders’ category in the IFSEC Global Influencers in Security and Fire 2021, which were announced in July 2021. Her wining nomination had highlighted her achievements as the CEO of the New Zealand Defence Industry Association (NZDIA). Jennie describes her expertise as connecting people, building relationships, influencing, problem solving and supporting better business outcomes. For the last eight years she has been focused on the Defence sector in Australasia and championing open conversations between

December 2021 / January 2022

government and industry to support better procurement outcomes and supporting more SMEs to participate in government supply chains. Of particular mention by awards organisers was Jennie’s role in significantly increasing the NZDIA’s membership and its links across other industry sectors and internationally, and her pioneering of the use of made-forpurpose virtual event platforms. The latter enabled the NZDIA to quickly pivot during Covid-19 to virtual events, which was critical in ensuring that engagement among stakeholders within New Zealand’s national security supply chain continued without missing a beat. It also ensured the successful launch of New Zealand Defence’s Information Domain via an ambitious multi-event virtual programme. Since leaving her role in the Association in May this year, has continued to support the industry in an unofficial capacity by connecting people and ideas. Along with qualifications to practice law in New Zealand, Australia and the UK, Jennie is a WorldCC Fellow, an expert in SRM, and CCMP qualified in CCM. A lifelong learner, she is currently studying Disruptive Technologies at TechFuturesLab, Digital Transformation with Media Design School, and Art Appreciation. She’s also adding to her cyber skills portfolio on a daily basis In her consultant role to Fortinet, Jennie is focusing on helping businesses and non-tech public sector employees in ANZ understand what security-driven networking looks like and supporting Fortinet’s global initiatives around closing the cybersecurity professionals gap. NZSM

9


Reimagining access control to respond to customer needs Advances in technology in recent years have seen tracking technology become a huge part of everyday life, and an important tool for connecting people, organisations, and emergency services. From satellite navigation in vehicles, maps on our phones, live location tracking in messaging apps such as WhatsApp and Snapchat, through to wearables on our wrists and smart devices in our homes – new and improved technologies are being developed all the time.

As well as making everyday life easier, location data has helped us respond to the immediate health and safety threats that we face today – helping to track the spread of Covid-19 through Tracer apps and Bluetooth® technology is just one example. In Gallagher’s latest Command Centre software release, they have introduced the Tag Tracking feature, which provides the ability to conveniently update cardholder location using Bluetooth enabled tag technology. Customers with Gallagher’s Multi Tech readers could look to use this feature to track the location of assets or employees on site for organisational purposes. With the Tag Tracking feature, cardholder access into an Access Zone is granted or denied when a wearable Bluetooth Tag is identified at Bluetooth enabled Gallagher readers. As an asset or staff member moves throughout the site, the location of this asset/staff member is continually updated. Brad Small, Gallagher’s Regional Sales Manager for New Zealand, explains: “While the Tag Tracking feature was built for a specific customer’s use case, we think it has the potential to support a number of different use cases.

10

NZSM

“The best part is that our Tag Tracking feature adds value to our customers through utilising their existing access control infrastructure, such as our readers (if Multi Tech), wiring, and controllers. Potentially removing the need to install other solutions that can be expensive and time consuming to implement.” Aged Care facilities providing dementia care is a great example of how this technology is responding to customer needs. “Aged Care customers with Gallagher’s readers could look to use this feature to track the location of residents in their dementia care as they move around the facility. In addition, this feature could potentially help facilities identify the last location of a key piece of equipment, such as a defibrillator, which has an asset tag,” says Brad. Additionally, for organisations that need to transport several employees through their facility, this technology has the potential to save operational time and money, by removing the requirement of each individual employee having to exit the vehicle

and badge in at every new entry zone. “For example, if a vehicle transporting five people, each wearing a Bluetooth Tag, drives towards a gate, access will be granted without anyone having to exit the vehicle. Each person’s credential would be picked up by the reader, and if anyone does not have the right competencies or clearance for that area, the driver would receive an alert for any access denied events that occur,” explains Brad. “Think of the operational time this would save for vehicles that are required to move between several entry zones on site and must ensure that everyone within that vehicle has authorised access. “It’s important to note that the Tag Tracking feature was only developed for a specific use case, and these are just examples of other applications where the technology may be useful. They’re also great examples of how Gallagher’s existing access control technology can deliver additional value to customers beyond locking and unlocking doors,” concludes Brad.

December 2021 / January 2022



Women in Security Awards Aotearoa: The Winners We celebrate all nominees for the 2021 Women in Security Awards Aotearoa, and are proud to feature the winners in each category. Congratulations to all!

In its second year, the Women in Security Awards Aotearoa (WiSAA) has again proven a challenge for its expert judging panel, with a high quality field of nominees from across New Zealand’s security sector.

Organised by the New Zealand Security Sector Network (NZSSN) and supported by the Women in Security & Resilience Alliance (WISECRA), the WiSAA initiative was established in 2020 to recognise women who have advanced the New Zealand security and resilience sectors. Nominees must be women, or identify as women, with more than three years of experience in either the

Former New Zealand Police Senior Sergeant Claire Bibby.

12

NZSM

physical security, personnel security, information security, or resilience disciplines, and be actively practising in Aotearoa New Zealand. This year’s WiSAA categories include: • Consultant – A professional who provides advice and expertise to (or in) organisations to help them improve their security and/or resilience performance. • Analyst – A professional who collects, processes, and/or analyses security information. • Engineer – A professional working within software or hardware engineering that supports the security sector.

ASIS International New Zealand Chapter Chair Ngaire Kelaher CPP PSP.

• Executive – A professional who develops and implements security strategies, policies, protocols and procedures, and controls budgets for security and/or resilience operations. • Leader – A professional who leads a team or teams, such as a team leader involved in the recruiting, training and supervising of security officers, or an operations manager. • Educator – A professional who teaches, informs or inspires others. • Thought Leader – A professional who has expertise, insight, and a valuable perspective; one that challenges thinking, encourages colleagues and supports change. • Indigenous Advocate – A professional supporting grassroots Indigenous movements to protect, respect, and fulfil the rights of their communities. • Rising Star – An early career professional who is expected to achieve great things in the security and resilience sector. This year, WiSAA organisers were honoured to be joined by an expert judging panel reflecting the skills and experience diversity of the sector: • International risk management, organisational resilience, and extreme events specialist Dr Bridgette Sullivan-Taylor; • Former New Zealand Police Senior Sergeant and Australasian Council of Women and Policing Award recipient Claire Bibby, and • ASIS International New Zealand

December 2021 / January 2022


Chapter Chair, respected security educator and 2020 WiSAA recipient Ngaire Kelaher CPP PSP. And the winners are… Thought Leader (co-winner) Jennie Vickers, CEO, Zeopard Consulting.

tenure as CEO of NZDIA and event variety and frequency of delivery increased. Jennie’s vision recognised that to deliver Broader Outcomes the Primes needed to meet, then build relationships with NZ SMEs and Māori-Pacifica businesses. Making these connections is difficult for those spread across the World and Jennie used a range of tools to support those connections being made. Jennie uses social media like LinkedIn, as a force for good. Her posts rarely talk about her own achievements, instead she uses her platform to help and support others. She demonstrates to fellow Women in Security that courageous conversations conducted in a respectful way, help build trust and identify a way forward.

Sai has served on the global board of ISC2, and co-established the New Zealand Network for Women in Security, a local network for women currently working in cybersecurity or who are interested in cybersecurity. She has also served on the Cloud Security Alliance APAC Research Advisory Council, and is a director of the Black Cybersecurity Association. Executive Heather Jones, Director, Aegis Private Security.

Thought Leader (co-winner) As CEO of the New Zealand Defence Industry Association (NZDIA) for four years (having stepped down in May 2021), Jennie championed courageous and open conversations between government and industry in the defence and security sectors to support better procurement outcomes, and supporting more SMEs to participate in government supply chains. Along with qualifications to practice law in NZ, Australia and UK, Jennie is a WorldCC Fellow, Expert in SRM and CCMP qualified in CCM. In her consultant role to Fortinet, she is focusing on helping businesses and government employees in ANZ understand what security-driven networking looks like and supporting Fortinet’s global initiatives around closing the Cybersecurity professionals gap. Jennie was able to energise the membership of the NZDIA, build its base and create momentum across the span of industry from the very large international players to small New Zealand businesses. Jennie seemed to have unlimited energy which she used in an influential but considered manner. The NZDIA Membership expanded substantially over her

December 2021 / January 2022

Sai Honig, Senior Security Consultant, ANZ. Originally from the United States, Sai has worked in a variety of fields following achieving a BSc degree in Aerospace Engineering from the University of Arizona. Sai is a recent recipient of the 2020 IFSEC Global Top Influencer in Security – #16 in the Cyber Security category. Sai has volunteered across multiple organisations, including for the Grameen Foundation, which culminated in her being the recipient of a US Presidential Volunteer Service Award in 2013. Sai has demonstrable experience leading teams, advising C-Suite executives and boards on cyber security best practice, including establishing and delivering child awareness campaigns through ISC2 for the New Zealand youth. Sai is selfless with her time volunteering in New Zealand both inside and outside of the security industry. She has twice presented to the New Zealand Women in Security and ASIS New Zealand forums and is recognised as a progressive thought leader in cyber security governance, operations and policy.

Heather is the primary owner/ operator of Aegis Private Security Ltd and has been for over 20 years. Prior to that, she spent many years in security with various local businesses where she learnt the skills of the trade that she’s then been able to apply in her own business. Specialising in cash handling, event and static security: she is a role model for women in physical security and anyone who is interested in becoming a security guard or owning their own security business. With a strong moral compass – her approach to ensuring the client (and anyone she or her staff come into contact with) is treated with respect – is one that is to be admired. She is ‘hands on’ and in uniform. Her highly effective communication skills mean that she is able to diffuse situations that could otherwise escalate – which staff and others around her learn from. Over the last 24 months, her unwavering work ethic has been proven itself frequently in the NZSM

13


context of Covid-19. With the reality of losing around 70 percent of her income (with events being cancelled all over the country), she adapted by providing security services for the Tauranga DHB testing and vaccination centres. During the time, she was working 65+ hour weeks, adamant she didn’t want her staff to be working and exposed to the virus if she could help it – demonstrative of the care she has for the health and wellbeing of her staff. Heather is a well-respected individual within the Tauranga community – both as a general citizen and even more so as the Director of Aegis Private Security. Leader Jill Priest, Client Services Manager – Tauranga, FIRST Security

“Her relationship with Private Investigators, Police, other security providers and Councils in her region demonstrates that she collaborates with multiple agencies to provide us, as her customer with the multifaceted solution to a problem and collects information and intelligence from organisations that trust her,” stated a senior client security manager in relation to Jill. Jill was a finalist in the 2021 New Zealand Security Industry Awards, and it is demonstrative of the level of positive impact she has had in her region that her nomination was supported by testimonials from several external customers. Jill creates jobs for people that they want to come to, where they learn and grow as individuals and security professionals, and where they can make a difference. Always community-minded, Jill’s holistic approach to security and community safety puts people first – whether they are a client of FIRST Security or not. Indigenous Advocate Tash Bettridge, CSAM, Microsoft New Zealand.

Jill gives a human face and a formidable personality to security for her clients, and this, combined with a mastery of her trade and an exemplary commitment to her communities, makes her a truly inspiring leader and mentor to her teams of security officers, patrol officers and regulatory enforcement officers. Based in Tauranga, Jill is responsible for employees and clients across the Bay of Plenty, Coromandel, Hawkes Bay and Gisborne areas – a large area of responsibility with dozens of key clients from local government, to education and healthcare, to retail and large urban and rural enterprises.

14

NZSM

Tash Bettridge is a proud female and even prouder Maori female. Tash has advocated for greater access to technology, the implementation of it to disadvantaged communities and cyber security training for indigenous Maori. Tash has a strong connection with her whakapapa and recognises the importance of connecting Indigenous people with technology through an understanding of traditional Maori

tikanga. She holds a BSc from Unitec in Computer & Information Systems/Information Assurance, where she was the Student ISACA representative and continued post completion of her degree to work as a student mentor. Tash has worked tirelessly for diversity in the NZ cybersecurity landscape, most recently participating and presenting at the annual Women in Security seminars. Tash also coestablished the online community New Zealand Network for Women in Security. In doing this, she has woven traditional Maori manaakitanga and encouraged more people to access resources and become active participants in the sector. Whilst not alone in this category, Tash has broken many traditional barriers in her pursuit of connecting New Zealand’s indigenous Maori communities with knowledge and capability. Her advocacy of indigenous people and technology security as one makes her a stand out in this category. Educator Yvonne Bruce, Training Manager, FIRST Security. Yvonne is an experienced and highly qualified HR, professional development and training professional who believes in using her skills to improve the performance of an organisation and its people by offering practical solutions to operational challenges. Yvonne’s ongoing focus on developing life skills beyond security knowledge for a diverse workforce has seen her develop and deliver a literacy and numeracy training programme that has delivered literally life-changing results for many of her colleagues. Staff who have completed Yvonne’s courses have gained new life skills, more confidence in their roles, and the pathway to advancement in their careers. The impact of this goes well beyond their work life and into their lives outside of work.

December 2021 / January 2022


Yvonne has also been instrumental in the training and preparedness of security officers deployed to Managed Isolation and Quarantine (MIQ) sites around the country as part of the government response to Covid-19. COVID-19 and MIQ-focused training initiatives led by Yvonne were instrumental in FIRST Security’s provision of security guarding services to MIQ facilities. The resources developed by Yvonne directly supported the Covid-19 response and the prevention of community transmission of the virus in New Zealand from the border. The challenge was urgent, the situation was dynamic, and trained guards were required in timeframes that were unprecedented. Yvonne initiated training documents based on best practice and continually adapted these to comply with changing Government requirements. Yvonne’s training modules, which were favourably by independent reviewers, have been crucial to the training of the nation’s several hundred MIQ security guards. Consultant Anupurna Kaw, Senior Customer Success Engineer, Microsoft New Zealand. Based in Wellington, Anu has worked in the security industry in Australia and New Zealand for more than 18 years. She is always willing to support, volunteer and promote events or initiatives to help educate people about the importance of security, inclusion and diversity. Being a female and an immigrant, Anu has faced many challenges. But with confidence and perseverance, she has successfully broken all the barriers presented to her in the male-dominated industry. She has worked for leading organisations such as Unisys, Spark, Vocus, and Vodafone, and has made a significant positive impact at each place of her workplaces. Her impact resulted in her nomination by Vodafone (her previous employer) for the Technical

December 2021 / January 2022

Award in the Reseller News Women in IT Awards, 2019. She was selected as a finalist in a category that recognises candidates who have excelled in the technical and engineering segment of the ICT industry. In the words of her ex-Manager, Rowan Smith, Cyber Security Consulting Practice Manager at Vodafone New Zealand, “Anu has been one of the most indispensable members of my team, she has sought out challenging responsibilities and opportunities, both internal, for the Vodafone enterprise, and external for Vodafone customers. She is goaloriented and results-focused.” “Coupling her end-to-end holistic view of information security, with her technology-specific knowledge, Anu has often, and unexpectedly, found herself as the de-facto subject matter expert in the room. She rose to the challenge on every occasion.” In addition to her Customer Success Azure Subject Matter Expert role at Microsoft, Anu has been involved with a number of community organisations that focus on promoting inclusion and diversity in cybersecurity in NZ. She has built her own LinkedIn community where she actively posts meaningful content with her followers. She mentors youth and promotes inclusion and diversity by encouraging minorities to join the industry – a role model for many women who are keen to join the industry and thrive in it. Engineer Sherilyn Tasker, Software Team Leader, Gallagher. Sherilyn has worked in the Security industry for more than 30 years, starting with PEC Ltd as a Software Tester in 1989. With Gallagher for the past 20 years, Sherilyn is a senior people leader in Research & Development, currently overseeing the work of two development teams. Sherilyn impacts the development of new security products in her Release Management role, through

coordinating and quality assurance – ensuring both product quality, and quality of the technical and user documentation that accompanies it – of the release process across more than 10 development teams. Sherilyn is a straight shooter, providing unfettered feedback regarding any perceived opportunities to improve the way we do things across the organisation. Sherilyn actively considers and advises where she sees the greatest gaps are in how we work, and where potential positive changes can be made to improve process, systems, or resourcing to meet the larger needs of the team. As our team has grown, Sherilyn’s role has evolved from software testing to test team management, overall team leadership, and release management. This evolution has required her to mould a team of engineers from different backgrounds, including technical leaders, and understand what makes them tick to encourage an environment that breeds both individual and team success. Sherilyn sets a positive example for other women in security through being independent, confident, and forthright in a traditionally male dominated profession. The effectiveness of the teams Sherilyn leads also illustrates the importance of a people-centric approach with emphasis on clear communication. Analyst Amina Aggarwal, Security Design Consultant, Spark. Amina migrated to New Zealand in 2016 where she studied a Post Graduate Diploma in Computing from Unitec Institute of Technology. She commenced her IT career as a service desk specialist in 2017. Having come from a different background and without formal training in cyber, Amina faced significant obstacles, which she overcame by continued perseverance and focus when she landed her first role at Spark NZ in 2018 as a Security Analyst. NZSM

15


After leaving Spark, where she worked in the country’s largest Security Operations Centre, Amina moved to Workday in 2019 where she became a Senior Security Analyst for one of the world’s leading SaaS services. Recently Amina has returned to Spark as a Security Design Consultant where she continues working in Security for the largest ISP in the country assisting Spark’s internal and external customers. Amina has been involved with the New Zealand Network for Security as an administrator since 2020. She has committed to giving her time to Cybersecurity events globally and hopes to build a stronger presence locally. She has been involved in various programs, including the CyberConnect program for mentoring University of Maryland students. Through CyberConnect, ACES LLP and Minor Students are matched with cybersecurity professionals to

16

NZSM

explore the cybersecurity field, build professional relationships, and learn from others who were once in their shoes. Rising Star Pascale Howell, Customer Research Manager, Gallagher. Pascale joined Gallagher straight out of university as a Product Manager within the Security Customisation Team in 2018. Pascale’s dedicated work ethic and ability to quickly learn new concepts – and rapidly apply these learnings to her next challenge – is what inspired her nomination. Her ability to connect with customers, understand their needs, identify their problems, and then break this down into a format that everyone can understand, is what sets Pascale apart. She flourished in her role as Product Manager, contributing to a range of significant projects for

large multinational customers. It is these customers who benefit from her contribution most, as the delivery of new product developments have always been ahead of schedule and in excess of their expectations. Additionally, Gallagher’s R&D teams benefit from Pascale’s influence and skillset around identifying the customer’s challenges and distilling these down to identify the most impactful changes that need to be made. Pascale’s ability to both coordinate tasks and communicate effectively with everyone involved is something that is greatly appreciated by her sales colleagues and by Channel Partners. In September this year, Pascale started a new role as a Customer Research Manager in Gallagher’s recently established Research Centre of Excellence – providing a mechanism for all those involved in new product development to be able to gain insights directly from customers.

December 2021 / January 2022


Update from the NZIPI Chairman NZIPI Chairman Ron McQuilter talks licensing change, name change, membership change and website change at the Institute, and the election of a first-ever Life Member. NZIPI’s Annual General Meeting, which took place on Thursday 25 November, saw a number of key developments, not least a decision to return the Institute to its former name, the New Zealand Institute of Private Investigators. Speaking exclusively to NZSM, NZIPI Chairman Ron McQuilter noted that the change was driven largely by a recent determination by the Private Security Personnel Licensing Authority (PSPLA) that employment investigators should be licensed under the Private Security Personnel and Private Investigators Act 2010 (PSPPI Act). As reported by NZSM, a decision from the PSPLA in June 2020 ([2020] NZPSLA 007) concluded that a company investigating a case of workplace misconduct had breached the PSPPI Act because its investigators were not appropriately licensed during their investigation.

Ron McQuilter,Chairman NZIPI

December 2021 / January 2022

Despite this finding, the company avoided prosecution due to the PSPLA concluding that “any breach was inadvertent and a result of the widespread belief within the employment investigation industry that they were not private investigators.” Nevertheless, the finding has clarified the confusion over whether or not employment investigators are in fact private investigators. As a result, NZIPI has since been receiving applications for membership from employment investigators, prompting the Institute to hit the ‘re-set’ button and re-orientate itself as an organisation for ‘private investigators’ as defined in the PSPPA Act. In a related change, states Ron, the Institute’s rules have been changed to require that a member holds a PSPLA-issued license in the Private Investigator class. Those applying for membership of NZIPI will therefore now need to evidence that they hold a license in order to meet this new requirement. The change creates a conflict with the PSPLA website, which lists “evidence that you’re a member of the NZ Institute of Professional Investigators” as an example of evidence of competency for those looking to apply for a security license in the Private Investigator class.

NZIPI has informed the PSPLA of this. With NZIPI’s membership set to diversify with the addition of appropriately licensed employment investigators (and potentially others), Ron explained that the Institute will look to reflect the professional specialisations of its members with the creation of new special interest groups. Non-licensed ‘in-house’ investigators and trainee investigators will likely be moved to new associate membership categories. “We’re going to have a massive revamp of the website to show the different types of people who require the license now,” said Ron. With the changed membership requirements, NZIPI is conscious of the challenge of attracting new people into the profession and will work on this over the coming year. “We need new entrants, there’s a dire shortage of private investigators,” Ron added. In other NZIPI news, the Institute has elected a Life Member for the first time in its history. “Last September Mike Campbell was granted the Institute’s first ever Life Membership,” said Ron. Mike is a foundation member. Having served on the NZIPI Executive for many years, he is a former Detective Senior Sergeant with the NZ Police and a highly respected investigator. NZSM

17


COVID disinformation and extremism are on the rise in New Zealand. What are the risks of it turning violent? According to Alexander Gillespie, Professor of Law at the University of Waikato, the best defence against extremism is a “see something, say something” culture — one where people raise their concerns with authorities.

Last week’s [09 November] COVID protest outside parliament served as a warning that New Zealand is not immune to the kinds of anger seen overseas. As Labour Party whip Kieran McAnulty put it, “I think everyone needs to be aware that things are starting to escalate.”

Professor Alexander Gillespie holds a PhD from Nottingham University and completed post-doctoral studies at Columbia University in New York City. His areas of scholarship include international and comparative environmental law, the laws of war, and civil liberties.

McAnulty himself had been abused by some with strong antivaccination views, and there has been increasingly violent rhetoric directed at government politicians and Prime Minister Jacinda Ardern. As a result, security for MPs has been stepped up. As the recent report from research centre Te Pūnaha Matatini showed, there has been a sharp increase in the “popularity and intensity of COVID-19 specific disinformation and other forms of ‘dangerous speech’ and disinformation, related to farright ideologies”. The analysis noted a broader threat: “that COVID-19 and vaccination are being used as a kind of Trojan Horse for norm-setting and norm-entrenchment of far-right ideologies in Aotearoa New Zealand.” Terror threat: medium Last year, New Zealand’s Security Intelligence Service (SIS) warned

18

NZSM

of the “realistic possibility” that continued COVID restrictions or further vaccination requirements could trigger an act of violent extremism. The country is not alone in this, of course. COVID-19 has seen dissent and angry protest rise globally, with inevitable concern over an increased risk of terrorism or violent extremism. Right now, New Zealand’s official terror threat level is assessed as “medium”, meaning an attack is deemed “feasible and could well occur”. By contrast, Australia’s threat level is set at “probable” and Britain’s at “severe”. According to its Department of Homeland Security, the US “continues to face a diverse and challenging threat environment as it approaches several religious holidays and associated mass gatherings”. The lone actor problem An SIS terrorism threat assessment from February this year, coupled with a “Threat Insight” from the Combined Threat Assessment Group in November 2020, divided potential terrorists in New Zealand into three groups based on faith, identity

December 2021 / January 2022


There has also been an increase in firearms injuries, many (but not all) gang-related. Figures released under the Official Information Act show the police are facing increased risks: between March 2019 and July 2021, officers had firearms pointed or discharged at them 46 times. New Zealanders can have some faith in the system, however. Two potential shooting events, one involving a school, were foiled by police. The New Lynn extremist was already subject to monitoring so tight he was shot within 60 seconds of launching his attack. Security intelligence also detected espionage in the military, and was instrumental in New Zealand Cricket calling off its tour of Pakistan due to a plausible terror threat.

and politics. What they share is a willingness to use violence to achieve their goals. The most likely scenario involves a lone actor, inspired by any ideology and probably using an unsophisticated means of attack, without any intelligence warning. However, a small anti-government cell was also considered a realistic possibility. The SIS assessment noted there are almost certainly individuals who advocate the use of violence to promote racial or ethnic identity beliefs, as well as individuals potentially prone to faith-based violent extremism. As for politically motivated actors, the SIS was more reassuring. While some individuals and groups have lawfully advocated for significant change to current political and social systems, there continues to be little indication of any serious intent to engage in violence to achieve that change. The February report is heavily redacted, so needs to be placed next to the November “Threat Insight”. That report noted a “realistic possibility” of terrorist acts depending on how COVID-19 and the associated economic and social

December 2021 / January 2022

impacts unfolded, and how individual extremists might be affected. It concluded: The situation in New Zealand over the next 12 months is likely to remain dynamic. There is a realistic possibility further restrictions or potential vaccination programmes […] could be triggers for New Zealand-based violent extremists to conduct an act of terrorist violence. Still a peaceful place? If there is any comfort to take, it might be that New Zealand has risen in the 2021 Global Peace Index, putting the country second only to Iceland. This represents a return to relative normality after the 2019 Christchurch terror attack saw New Zealand drop 79 places in the Global Terrorism Index in 2020 (ranking 42nd, just behind Russia, Israel and South Africa). But while there are other reasons to be hopeful – notably New Zealand’s comparatively low and apparently reducing homicide numbers – there remain reasons for concern. From the Lynn Mall terror attack through to the murder of a police officer or the tragic shooting of an innocent teenager, serious violence is not uncommon.

A ‘see something, say something’ culture All of this underscores the need for everyone to do what they can to combat alienation and misinformation in the community, anchored by tolerance, respect and civil behaviour. And it also requires that people be prepared to report acts of suspicious activity or threats of violence (online or not). As the Royal Commission on the Christchurch terror attacks noted, the likeliest thing to have prevented the tragedy would have been a “see something, say something” culture — one where people could safely raise their concerns with the appropriate authorities. “Such reporting,” the commission concluded, “would have provided the best chance of disrupting the terrorist attack.” As the pandemic stretches into the next year, with likely ongoing restrictions and unforeseeable complications, this remarkable sentence is worth remembering. It suggests the best defence against extremism is to be found within ourselves, and in the robust and safe communities we must create. This article was originally published on 18 November 2021 in The Conversation. NZSM

19


Pandemic Leads to Increase in Retail Security Threats Organised retail crime and other security concerns evolved in 2020, and most retailers attribute increases in criminal activity to the pandemic, according to the US National Retail Federation 2021 Retail Security Survey. “Retailers have continuously pivoted throughout the pandemic to ensure their employees can work within a safe environment and their customers can shop safely, whether in stores, online or through avenues like buy online, pick up in store,” NRF Vice President for Research Development and Industry Analysis Mark Mathews said. “But new ways of shopping have also opened up new avenues for criminal activity. As retailers adapt to address these new security threats, the need for federal support is even greater to combat these dangerous and harmful activities.” The Covid-19 pandemic impacted the risk environment for retailers on several fronts. While more than twothirds (69 percent) said the pandemic resulted in an increase in overall risk for their organization, respondents specifically mentioned the impact on workplace violence (61 percent) and organized retail crime (57 percent). Mandated store shutdowns and other shopping restrictions that occurred throughout 2020 had an impact on where fraudulent activity occurred. More than one-third (39 percent) of respondents said they saw the greatest increase in fraud in multichannel sales channels such as buy online pick up in store, up from 19 percent the year before. In contrast, just 28 percent said the greatest increase in fraud came from in-store-only sales, down from 49 percent the year before. The percent of those who pointed to online-only sales fraud remained flat.

20

NZSM

The survey found that while the overall shrink rate remained relatively steady compared with 2019, it remains above the average of the last five years. Respondents reported an average shrink rate of 1.6 percent, unchanged from last year’s high. Apprehensions and prosecutions of dishonest employees are down compared with last year and with the five-year average. However, the cost per dishonest employee case is increasing. Half (50 percent) of respondents reported an average dollar loss of at least $1,000 compared with 29 percent in 2019. Perhaps more concerning is the fact that a majority of retailers (65 percent) agree that ORC gangs are exhibiting higher levels of aggression and violence than they did the year before. Retailers cited Covid-19, policing and changes to sentencing guidelines, and the growth of online marketplaces as top reasons behind the increase in ORC activity. ORC gangs target a variety of stolen items including designer

clothing (reported by 22 percent of retail respondents), laundry detergent (17 percent), designer handbags, allergy medicine, razors and high-end liquor (tied at 15 percent each), pain relievers (13 percent) and infant formula and teeth whitening strips (tied at 11 percent each). As additional threats emerge, retailers are investing in more resources to safeguard their customers, employees and operations. Half (53 percent) of retailers said their companies are allocating additional technology resources and another 50 percent said they are allocating additional capital specific to LP equipment. In a shift from the last few years, there was a significant increase in those reporting they would dedicate additional staffing resources. With the size and scope of these threats continuing to grow, it is clear retailers need support from additional external resources, including lawmakers and law enforcement.

December 2021 / January 2022


fired up protection LOKTRONIC’s expansive product range has just become even wider with these first class EGRESS and FIRE PROTECTION DEVICES and PROTECTIVE COVERS.

NEW

STI-1130 Ref. 720-102

STI-WRP2-RED-11 IP67 Ref. 720-062R

Surface mount with horn and spacer 255mm H x 179mm W x 135mm D

Also available in White.

STI-RP-WS-11/CN Ref. 720-052W Available in White, Green, Blue & Yellow.

STI-13000-NC Ref. 720-090 Flush mount, no horn 206mm H x 137mm W x 69mm D

STI-RP-GF-11/CN Ref. 720-051G Available in White, Green, Blue & Yellow.

NEW

STI-RP-RS-02/CI

STI-13B10-NW Ref. 720-092 Surface mount, horn and label optional 206mm H x 137mm W x 103mm D

Ref. 720-058 Cover included. Flush Mount Available. • •

STI-1100 Ref. 720-054

Flush mount with horn 255mm H x 179mm W x 86mm D

• • • • •

STI-6518 Ref. 720-060 Flush mount, no horn 165mm H x 105mm W x 49mm D

STI-13210-NG Ref. 720-093 Surface mount, horn and label optional 206mm H x 137mm W x 103mm D

All STI ‘Stoppers’ are made of tough, UV stabilised polycarbonate. Many can be supplied with or without a 105 dB horn. Other models and sizes available including weather resistant options.

Approved to EN54-11 Current Rating: 3 Amps @ 12-24V DC, 3 Amps @ 125-250V AC Material: Polycarbonate Comes with Clear Cover 2 x SPDT switches Positive activation that mimics the feel of breaking glass. Visible warning flag confirms activation. Simple polycarbonate key to reset operating element - no broken glass. Dimensions: 87mm Length x 87mm Width x 23mm Depth (Flush Mount) & 58mm Depth (Surface Mount)

STI-6255 Ref. 720-042

Mini Theft Stopper discourages inappropriate use of equipment. Sounds a powerful 105 dB warning horn when activated. Tough, ABS construction. Reed switch activation for cabinets and display cases or unique clip activation for freestanding equipment. Does not interfere with use of protected fire fighting equipment. Compact design 85mm H x 85mm W x 25mm D.

STI-6720 Ref. 720-047

Break Glass Stopper. Keys under plexiglas. Protects emergency keys from inappropriate use. Keys remain visible. Fast, easy installation. Simple, inexpensive plexiglas. 3 year guarantee against breakage of the ABS housing within normal use.

NEW

Battery Load Tester Ref. 730-101

Fire Brigade Alarm: (Closed/Open) Ref. 730-231

Anti-Interference Device

ViTECH, strong, lightweight aluminum case, 5, 15 and 30 amp battery load tester for fire and alarm use. Weight: 500gms, Size: 165mm x 90 x 70mm.

ViTECH branded Type X (730-230) and Type Y (illustrated) models with temperature compensated pressure transducers with digital display showing pressures for defect, fire and pump start.

Ref. 730-400 series ViTECH AID for sprinkler valve monitoring; fits all ball valve sizes.

Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK mail@loktronic.co.nz www.loktronic.co.nz

21620/1/18

21620

ViTECH products are designed and produced in New Zealand.


Police announce new unit to focus on repeat retail offending New Zealand Police has announced the establishment of a National Retail Investigation Support Unit to address patterns of high priority repeat retail offending across the country. Police Commissioner Andrew Coster made the announcement on 8 December at the Retail NZ Summit in Wellington.

“We have heard Retail NZ’s concerns and see this as a real opportunity to work in partnership to address them,” said Commissioner Coster. The Unit will partner with the retail sector and crime prevention organisations to draw on current data, identify patterns and work with local staff to better address repeat offending. “Working together allows us to make the most of our resources: the sector understands the changing crime environment and Police can provide strategic support, core policing and prevention activity and advice. There are also other opportunities to share information to address the offending.” Retail NZ reports $1 billion a year in losses from retail offending, with the 2017 New Zealand Survey of Retail Theft and Security measuring retail crime as costing New Zealand retailers just under $1.1 billion a year – the vast majority of which is never recovered. That same survey found that retailers had given NZ Police a mixed scorecard in relation to its response to retail crimes: a great job (23.8 percent); an ok job (38.8 percent); a bad job (17.7percent); and a terrible job (19.7percent).

22

NZSM

In addition to financial losses, there has more recently been a spike in the incidence of shopper violence and aggression towards retail staff, likely fuelled by Covid-19 movement restrictions, physical distancing, and mask wearing protocols – including several cases that have hit the media. “The financial impact of this offending is significant however we’re also seeing an impact on the safety, wellbeing and health of people working in retail in New Zealand,” said Commissioner Coster. “No retail worker or customer should experience fear or trauma when going about their day-to-day activities and the establishment of this Unit signals our continued commitment to ensuring everyone can be safe and feel safe.” The Unit will primarily be made up of Police with specialist staff seconded from within the retail

sector and other crime prevention organisations. Retail NZ, the lead representative body for the retail sector, says the establishment of the new Unit is a hugely positive step. “Retail NZ has been calling for the establishment of a dedicated Retail Crime Taskforce for some time, and the increasing levels of violence, aggression and anti-social behaviour makes this more important than ever,” said Retail NZ Chief Executive Greg Harford. “Sharing information and ensuring focus on repeat offenders is a key way retailers and Police can help keep everyone safe in the retail environment. Retail NZ looks forward to working with Police on this initiative and other ways to support the retail sector over the coming months.” The Unit is expected to be up and running in the first quarter of 2022.

December 2021 / January 2022


Retail NZ launches Declaration on Violence & Anti-social Behaviour In the wake of a dramatic increase in incidents of violent and anti-social behaviour against retail workers, the national retailers association launches a programme of work to reduce abuse and harassment. Retailers throughout the country assembled together 8 November at the Retail NZ Summit on Violence and Anti-social behaviour in Parliament’s Grand Hall to signify their commitment to keep their employees and contractors safe. “Rates of aggression, violence and anti-social behaviour from members of the public have doubled over the past year, on top of significant increases over the last few years,” Greg Harford, Retail NZ Chief Executive said. “This is having a big impact on the wellbeing of everyone working in the sector, and retailers have come together today to discuss solutions. “Retail workers have the right to come to work and go home every day without feeling unsafe. However, retail teams are often threatened and abused in store, online or over the phone, and are increasingly being subjected to physical or even sexual assault in-store. This is completely unacceptable, and retailers are asking everyone to #shopnice. “Retailers are committed to providing great customer service and treating our customers with respect, but also to keeping employees, contractors, other customers and visitors to stores safe and well. In a new Declaration on Violence and Anti-social Behaviour, retailers are asking customers to treat workers with respect, use polite and non-threatening language at all times, and comply with team member requests. “This is especially important as Auckland retail stores begin to reopen from Wednesday. Some people may be frustrated by new requirements around masks and distancing, but retailers are not prepared to accept sexual or racist harassment of any kind, offensive or abusive language, threats or violence. People engaged in antisocial behaviour can expect to be asked to leave stores. Let’s #shopnice and treat everyone with respect.” The Summit and declaration is the first step in a programme of work being led by Retail NZ, according to the association. The next step is to confirm the Retail NZ Sector Action Plan on In-store Violence and Aggression with the retail sector, the government and relevant public sector agencies. A copy of the Declaration follows:

December 2021 / January 2022

The Retail NZ Declaration on Violence & Anti-social Behaviour As retailers within New Zealand, we are committed to providing great customer service and treating our customers with respect, but also to keep our employees, contractors, other customers and visitors to stores safe and well. This is our Declaration on Violence & Anti-social Behaviour. We ask our customers to: • treat our people with respect; • use polite and non-threatening language at all times; • comply with team member requests. We will not accept: • sexual or racist harassment of any kind (racist, religious or gender) or innuendo; • offensive or abusive language; • threats; or • violence. If you engage in rude or anti-social behaviour, we will ask you to leave our store, and we will not engage with you on social media. Let’s #shopnice and treat everyone with respect. For further information, email advocacy@retail.kiwi. NZSM

23


Warnings over surge in fake Covid cards According to the International Hologram Manufacturers Association, more investment in anti-counterfeiting measures are needed to combat a burgeoning online trade in fake Covid vaccination cards.

In April this year, 45 US attorneys general called on social media and tech companies to crack down on fraudulent vaccination cards known to be circulating online. In a letter to the CEOs of Twitter, Shopify and eBay, officials asked that companies take action to prevent the sales of fake vaccine cards on their platforms.

“It has come to our attention that your platforms are being used to market and sell blank or fraudulently completed COVID vaccine cards bearing the Centers for Disease Control and Prevention logo,” the letter said. Despite these efforts, news reports continue to indicate that the online trade in fake documents is booming. This has prompted the International Hologram Manufacturers Association (IHMA) to call for global supply chains and authorities to review their anticounterfeiting plans and investment in security resources. According to the IHMA, there exists a wide array of authentication and verification technologies, including holograms, that could be deployed immediately to better protect people and document distribution channels. Thousands of online traders are offering near-perfect copies of Covid vaccination cards at rapidly rising prices, reports US news outlets, with some selling a single card for hundreds of dollars. US Customs

24

NZSM

Dr Paul Dunn is the chairperson of the International Hologram Manufacturers Association (IHMA)

and Border Protection has been intercepting thousands of packages of fake cards from China and has admitted that it has “basically stopped keeping track, because there were so many”. According to the IHMA body, research by a cyber security firm earlier this year uncovered an estimated 1,200 vendors around the world offering false documents. Counterfeiting is a multi-billiondollar global problem but the surge in fake Covid documents is concerning as criminals continue to take advantage of the situation, said Dr Paul Dunn, chair of the IHMA. “The use of counterfeit vaccine cards puts people and their friends and families at risk and must be stopped,” said Dr Dunn. “Supply chains have to be bolstered with

countries enhancing their anticounterfeiting plans, which include the introduction of harder hitting anti-counterfeiting legislation and strategies.” “The use of track and trace programmes featuring security devices are especially helpful in proving the authenticity of Covid documentation and passports. This can be effective, reassuring those in law enforcement and government as well as consumers that documents are genuine, safe and secure.” The use of well-designed and properly deployed authentication solutions, as advocated by the ISO12931 standard, enables examiners to verify the authenticity of a legitimate product, differentiating it from fake products coming from counterfeiting hot spots like China. Even those that carry a ‘fake’ authentication feature can be distinguished from the genuine item if that item carries a carefully thought-out authentication solution. The IHMA (www.ihma. org) is made up more than 80 of the world’s leading hologram companies. Members include the leading producers and converters of holograms for banknote security, anti-counterfeiting, brand protection, packaging, graphics and other commercial applications around the world, and actively cooperate to maintain the highest professional, security and quality standards.

December 2021 / January 2022


Power supply cabinets • Mounts for our 5 most popular models of power supplies; 6 key-hole anchor points for easier mounting • Lift off hinged doors for added convenience

total reed switch

• Louvre ventilation on doors • Roller ball reed switch provides anti-tamper to front and rear of cabinet

solutions from Flair

• 6 x 25mm knockouts, 2 each sides and bottom • Medium cabinet holds 5 x 7 A/h batteries

Choose from Closed Circuit or SPDT. Listed options will suit Standard doors, Steel doors, Roller doors

• Large cabinet holds 14 x 7 A/h batteries • Cam lock for security • Front lip to retain batteries and for additional strength

• Lip return on door for greater rigidity • Durable powder coated white finish in N Z •

Lo

ic Prod ron uc •D

,T

es

uc

ed

e s i gned

and Pr od ted

Designed, tested and produced in New Zealand.

kt

ts

• Heavy gauge 1.2mm steel

for power supplies

Specials available to order.

With 30 models in stock, make Loktronic your go-to supplier. Fully monitored Powerbox brand security PSUs in 12 VDC from 3.5 A to 20 A and 24 VDC units from 5 A to 12 A. We have Meanwell DIN rail PSUs in 12 & 24 VDC from 20 - 100 watts, with optional battery charging. Inline, Plug packs and DC/DC converters round out this great range.

Flair reeds from Loktronic: an unbeatable combination.

Power supplies from Loktronic – a Powerful Deal.

• Surface mount • Press fit • Self adhesive tape or screw mounting • Flying leads or screw terminals • Standard and wide gap • Stubbies • Mini flange • Sub miniatures • Pull aparts • Clamp ons • Overhead doors with offsets

• Removable shelf and removable back plate to facilitate easy bench mounting of equipment

Loktronic

R

R

ISO 9001:2015

ISO 9001:2015

REGISTERED COMPANY

REGISTERED COMPANY

Certificate No. NZ1043

Certificate No. NZ1043

20238_PSC

Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK www.loktronic.co.nz

Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK www.loktronic.co.nz 20237.FL.2018

Loktronic

Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK www.loktronic.co.nz 20757_BP.2018

Loktronic

Power

Power

distribution module

distribution module

key switches Two functions are available Momentary or maintained contact (specify when ordering) This 6, 8 rated or 10 way Distribution Module Switch at 6APower @ 28 VDC will drop power to akeyed group of doors when signaled Supplied random byRe-key a fire alarm and key has at individual fused power or master any locksmith supply lock. LED lights when fuse fails. Front to or each rear fixing Red and black terminals distribute from PSU orApplications battery to load. Access control, air-conditioning, lifts, lighting etc Comprises • DPDT 12 or 24 VDC Fire Drop Relay New options with this versatile product • 6, 8 or 10 fused terminals with LED supplied loose • 2Key Redswitch Terminals bracket • 2Mounting Black Terminals Escutcheonon DIN Rail • Assembled Mounted on PDL plate with alloy cover • All Terminals Labelled

Loktronic

for gate locks

For the widest range range of applications, see our IP67 rated Loktronic and Loktrenz electromagnetic locks with optional brackets to make fitting a breeze.

ic Prod ron uc •D

in N Z •

kt

Comprises • DPDT 12 or 24 VDC Fire Drop Relay • 6, 8 or 10 fused terminals with LED • 2 Red Terminals • 2 Black Terminals • Assembled on DIN Rail • All Terminals Labelled

ts ,T

es

uc

ed

e s i gned

Outdoor and Gate Locks from Loktronic - a smart choice.

Lo

We have strikes by FSH and eff-eff, Rim locks by CISA, plus specialty roller door locks.

This 6, 8 or 10 way Power Distribution Module will drop power to a group of doors when signaled by a fire alarm and has individual fused power supply to each lock. LED lights when fuse fails. Red and black terminals distribute from PSU or battery to load.

Designed,tested testedand and Designed, producedininNew NewZealand. Zealand. produced

Designed, tested and produced in New Zealand.

and Pr od ted

R

ISO 9001:2015

REGISTERED COMPANY Certificate No. NZ1043

Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK www.loktronic.co.nz 20756_BP.2018

R

R

ISO 9001:2015 ISO 9001:2015 REGISTERED COMPANY

REGISTERED COMPANY Certificate No. NZ1043 Certificate No. NZ1043

Unit Edwin StreetMtMt EdenAuckland Auckland Unit 7 71919 Edwin Street Eden PO Box 8329Symonds Symonds StreetAuckland Auckland1150 1150New New Zealand PO Box 8329 Street Zealand 9 623 3919Fax Fax 9 623 38810800 0800 FOR LOK PhPh 6464 9 623 3919 6464 9 623 3881 FOR LOK www.loktronic.co.nz 21636.KS.2018 www.loktronic.co.nz 20239.2018

R

ISO 9001:2015

REGISTERED COMPANY Certificate No. NZ1043

Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK www.loktronic.co.nz 20239.2018


NZSA CEO’s November Report NZSA CEO Gary Morrison talks vaccination certificates, mental health, NZ Security Awards, VR training, NZSA AGM, MBIE minimum wage submission, Electronic Security Special Interest Group, and more.

Gary Morrison is CEO of the New Zealand Security Association (NZSA). A qualified accountant, Gary originally joined Armourguard Security as a junior accountant and held several roles over two decades prior to appointment as GM for New Zealand and Fiji, after which he established Icon Security Group.

26

NZSM

Mental health Covid-19 has had a significant impact on how we interact with others, go about our lives, our work, study and many other aspects of our lives. We know that a combination of stress and uncertainty can have significant and wide-reaching impacts on the mental wellbeing of people in New Zealand. It is important that people know that it is normal to not feel all right at this time – it is understandable that people will be feeling sad, distressed, worried, confused, anxious or angry during this crisis. Everyone reacts differently to difficult events, and some may find this time more challenging than others. The ways people think, feel and behave are also likely to change over time and we all have good days and bad days. The NZSA has regularly promoted mental wellbeing tools and resources to assist our members but for further information refer to the website.

NZ Security Awards After Covid-19 again played havoc with the planned Annual Security Awards event scheduled for late August, it was fantastic that we were quickly able to transform into an Awards Week event utilising a range of media platforms that ensured both a timely delivery and wide accessibility and coverage. Our congratulations to the very deserving award category winners and special recognition to Marishka Wallace, winner of the Ian Dick Memorial Award for Security Professional of the Year. For those who haven’t viewed the awards, access is still available via the NZSA website. Proposed change to Schedule 6A Earlier this year legislation was enacted recognising some security staff as vulnerable workers and with it, the obligation to consult with employees when there is a change of provider or delivery is taken in-house.

December 2021 / January 2022


From our information the new processes have by and large been implemented with minimal confusion or disruption however it has become apparent that the inclusion of Patrol Officers and Cash-In-Transit Officers within the coverage is somewhat problematic given that their normal duties may involve servicing multiple customers. Technically this means that every time a patrol customer or CIT cancels with one provider and moves to another, the affected employee must be consulted with and given the option of transferring – even if the customer service requires say a fiveminute attendance as part of a twelvehour patrol run. Obviously, this is operationally and financially unviable. We have discussed this matter with Etu and they are in agreement that this falls outside of the intended coverage for vulnerable workers. We are in the process of preparing a joint submission to MBIE proposing a change to the regulations supporting the legislation where a minimum threshold will apply before the obligation to consult is triggered – suggested at 25% of duration of the shift. We will keep members posted on this but also welcome any feedback on any other issues being identified. MBIE submission re minimum wage We recently distributed a questionnaire provided by MBIE as

December 2021 / January 2022

part of the consultation process on future movements in the Minimum Wage. Whilst only a few responses were received, we have consolidated the feedback into our industry submission. Our focus was very much around the limited ability of some industry sectors (such as Hospitality) to absorb and even survive any further increases and the importance of certainty and clarity in the determination of future increases. VR training platform and webinars We are pleased to advise that the delivery of training utilising the SkillsVR E-Learning and VR Training Platform will be facilitated by Ben Kingi of POP Training (a registered PTE). The platform provides a further option for the delivery of the CoA training (unit standards 27360, 27361 and 27364) with the benefit of being cost effective and readily accessible for those who do not have inhouse or locally based training options. This is particularly relevant during lockdown situations as employees can still access the mandatory training, unlike traditional classroom based training. For more information contact Ben Kingi on benkingi38@gmail.com. We have also launched a package of Webinars utilising the VR scenarios as an option for pre-

employment screening and refresher training – details will be announced soon. Conflict management Train the Trainer and Refresher training As part of their industry role, Skills has overseen and managed the approval process for trainers delivering the CoA Mandatory Training and facilitation of Train the Trainer and Refresher Training programmes. With the transition of the Standard Setting Body (SSB) functions of Industry Training Organisations (ITOs) such as Skills into the Work Development Councils (WDCs) over coming months there remains a high degree of uncertainty as to where the responsibility for functions such as this will sit. Given the critical nature of the Conflict Management training and the necessity for training continuity, the NZSA as the peak body representing the security industry and with support of the Security Training Special Interest Group, will exclusively deliver the Train the Trainer and Refresher Training programmes. We recently conducted an RFP to select suitably experienced and qualified trainers to deliver the Train the Trainer and Refresher Training and are pleased to advise that we have appointed two providers – Hard Target (Quinton Swanson) and Risq (Ngaire Kelaher and Mac Te Haara). NZSM

27


We are currently developing a training calendar for next year and will communicate this shortly with those needing to complete the Refresher Training or have registered interest in the Train the Trainer programme. However we would encourage anyone interested in undertaking this training to contact Andrea Charlton on andrea@security. org.nz and register your interest. Training details will also be detailed on our website www.security. org.nz Electronic Security Special Interest Group Special Interest Groups (SIG’s) play a key role in ensuring the NZSA’s relevancy across a range of industry sectors and issues, particularly where we may not have a lot of in-house institutional knowledge (in other words where my skills and knowledge are somewhat limited!) The SIG’s are made up of a group of volunteers with skills, knowledge and expertise specific to an industry sector or segment and with a strong interest in lifting standards and performance within that sector. Normally SIG members are employed by NZSA members however this is not restrictive and participants from other interested parties (such as academia, customers and government agencies) are also welcomed and can provide specific expertise. We are currently in the process of establishing an Electronic Security SIG and whilst the key focus areas will be determined by the group once it is in place, they are likely to include compliance matters, industry training (including recognition of prior learning) and creating and promoting career pathway opportunities that attract and retain quality workers to the industry. Participation is not overly onerous with a meeting bi-monthly (currently via zoom) and communication via circulated emails. If you are interested in being involved on the Electronic Security SIG please contact Gary on gary@ security.org.nz.

28

NZSM

Audits – Accredited Members An NZSA Accredited Member is one who has been audited to see if they adhere to the Codes of Practice which apply within their respective industry sector, and that they comply with the NZSA Rules, Bylaws and Code of Ethics. Once they have been found to meet or exceed these requirements, they are provided with a Certificate stating this and listed on the NZSA website as an Accredited Member. This gives the company an added point of difference that they may use in promoting their business. It gives confidence to the person or organisation who is interested in using their services. The audit also provides guidance on how the business can achieve further improvements and enhancements to the way they operate. Audit compliance is valid for five years, subject to the submission of an annual declaration advising of any material change to the business operations. Whilst the audit programme has been hampered since lockdown, we are happy to discuss the process with members and to pencil in dates for 2022. More information can be found on our website or contact Gary to discuss on gary@security.org.nz. NZSA AGM and Annual Report We have deferred this year’s AGM to the 7th December in the hope of being able to hold a face to face event – details are provided later in this newsletter.

Should lockdown restrictions make holding a face-to-face meeting impossible, we will revert to a virtual format and communicate this to members well in advance. Building Networks member benefit programme We are pleased to announce that we have entered into an agreement with Building Networks where NZSA members will receive a 20% discount on services and programmes provided by Building Networks. Building Networks are New Zealand’s leading authority on building and fire compliance and can help you and your people understand, know and apply the rules. Company licence renewals With the original licensing requirement for individual and company licenses introduced in 2011 and a five yearly renewal process, there is a large number of licences that require renewal during the current year. Whilst the PSPLA have a notification system in place, this is based on the email addresses that they hold on file and should not be relied upon as those records are often out of date. We recommend that members check on their licence status and put in place a reminder process for at least three months prior to the expiry date. Members should also note that if they fail to renew their licence within the specified dates, they will be required to undertake a new licence application.

December 2021 / January 2022


on

e c u r i ty I

ar

Z

S ’s

mited 30 y Li e

nd

Loktr

ic

y tr s u

ss

ervicing N

Loktronic for Electric Locking Hardware and Accessories

Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK mail@loktronic.co.nz www.loktronic.co.nz


TPT Group acquires data communications business Cablenet

Aritech appoints Surveillance Technologies as NZ Tecom distributor

TPT Group has made its twelfth acquisition in New Zealand with the purchase of data communications business Cablenet.

Aritech, a provider of intrusion solutions, has announced that Surveillance Technologies will distribute the Tecom portfolio in New Zealand.

According to a TPT Group media release, Cablenet is one of the largest ICT infrastructure companies in New Zealand. It will join other technology related businesses in TPT’s Advanced Group, which includes Advanced Security, IT Engine and ASG Technologies. According to TPT Group CEO Mike Marr, the Group is built on a passion for growing a great group of businesses in a way that heroes and harnesses Kiwi talent and innovation. “This new acquisition is a strategic move that means we can converge our businesses and utilise Cablenet’s capabilities for the benefit of all the New Zealand companies in our group. This represents a significant opportunity and a chance to embrace further growth and innovation,” Marr said. “Cablenet has been heavily involved in some of the largest communications and network infrastructure projects in New Zealand. Their senior management team remains committed to the belief that the ongoing success of the company is a direct result of the professionalism of the staff and the quality of service the company provides,” he continued. According to former Cablenet owner Terry Powell, the business has developed a proven ability to complete a range of ICT projects, from time-critical national technical rollouts to large scale data, wireless and electrical contracts. “This is an exciting chapter for Cablenet, and we are extremely excited to be joining TPT Group,” said Powell. “Our biggest strength is our people, and this acquisition gives a clear pathway forward while maintaining our family values to staff and clients.” TPT Group launched in 1999, its Advanced Group provides services and solutions in electronic security, information technology, exponential technologies and now data communications. A new Cablenet office is planned for Palmerston North in early 2022.

30

NZSM

Surveillance Technologies has a 10 year relationship with Aritech, currently distributing the TruVision and IFS portfolios. Aritech is a part of Carrier, a global provider of innovative heating, ventilating and air conditioning (HVAC), refrigeration, fire, security and building automation technologies. Since 2008, Surveillance Technologies has been providing a high level of support, from initial design all the way through to commissioning for customers across the country. Phil Brown, General Manager of Aritech in Australia and New Zealand welcomed the expansion of the Tecom portfolio via this trusted distributor. “We are excited to expand the reach of the Tecom portfolio across New Zealand. Surveillance Technologies have been a focused and successful distributor for over 10 years and we have no doubt that the extension of their portfolio will be a welcome addition for their customers,” he said. “Our focus continues to be focused on providing an outstanding customer experience and we are thrilled that we can now offer this portfolio of intrusion solutions,” said Robert McDowell, Director Surveillance Technologies. From 15 November 2021, Tecom, TruVision, wired sensing and IFS products will be distributed by Surveillance Technologies.

December 2021 / January 2022


i-PRO X SERIES powered by AI

Taking intelligent analytics on the network edge » Maximising network and bandwidth efficiencies » Installs up to three video analytics applications » Designed for third party application development » High endurance, high realiability even in extreme conditions » Five year warranty

AI Privacy Masking Available models: WV-X2571LN 4K outdoor dome camera WV-X2271L 4K indoor dome camera WV-X1571LN 4K box camera

WV-X2551LN 5MP outdoor dome camera WV-X2251L 5MP indoor dome camera WV-X1551LN 5MP box camera

December 2021 / January 2022

business.panasonic.nz/security-solutions/ NZSM 31


The Active Shooter That Wasn’t ASIS International’s Scott Briscoe writes that good security awareness training and welltrained security guards – and a not insignificant amount of luck – averted a potential hospital active shooter incident. Eighteen minutes. On a sleepy Saturday morning in 2008, the actions taken in a span of 18 minutes were the difference between tragedy and just another sunny day in La Crosse, Wisconsin. Fortunately for the people at a mid-sized hospital there on 12 April, it ended up being just another sunny day. But it wasn’t entirely fortune. When Michael J. Barrett entered the hospital through an employee entrance carrying a concealed weapon, it wasn’t fortune that led a cafeteria worker to notice something unusual, approach the man, confirm her suspicions that this was indeed unusual, and go straight to security to report it. That was security awareness training. And yet, you can’t help but think that fortune played a role. “There were things that went wrong,” Drew Neckar, CPP, president of Security Advisors Consulting Group, said during a session at the recent Global Security Exchange (GSX) conference in Orlando, Florida. “But luckily, there were enough things that went right.” This is the story that Neckar, who was the midnight shift supervisor about to go off duty that morning, and his supervisor at the time, then security manager and now owner of NORD Security Management, Bob Nordby, CPP, told to the GSX audience at “Lessons from a Near Miss: The Active Shooter That Almost Was.” The overriding lesson: try not to overthink it. What saved the hospital that day was good, basic security practices. The lessons they learned— those “things that went wrong”— also were basic security principles. “In my role as a consultant, I see a lot of organisations place a lot of

32

NZSM

laser-like emphasis on countering the active shooter threat,” Neckar said in an interview after the presentation. “It’s important not to over-emphasise 18 minutes.” To be clear, both Neckar and Nordby are advocates for active assailant preparation and mitigation security measures. They emphasise that such measures need to be part of a comprehensive security approach that emphasises actions, policies, and strategies appropriate to the risks faced by the organisation. Here’s how that morning on 12 April played out. 7:35 a.m.: Man enters hospital through employee-only entrance. This is not detected at the time—it was discovered in video footage during post-incident review. (The 18-minute clock starts.) 7:40 a.m.: The man enters the hospital cafeteria area—bustling at this time in the morning—and stands near the back wall, observing. Again, this report is part of the post-incident review. 7:47 a.m.: At some point in the intervening minutes, a cafeteria worker notices the man, and it seems unusual to her. It did not seem like a threatening situation, so she walks up to the man and asks if she could help him with something. The man reaches for his belt and says, “I have a permit for this.” The cafeteria worker disengages and proceeds to security. Approximately 7:49 a.m.: The cafeteria worker reports the incident to the security shift supervisor

Scott Briscoe ASIS Content Development Director

(Neckar), who instantly begins searching live video feeds to find the man. The supervisor radios the two security officers on duty, who leave their current posts and begin patrolling the hospital. The supervisor also calls 911 and reports that police may be needed at the hospital. 7:51 a.m.: Using video footage from high-traffic areas, the location of the suspect is narrowed down to a location on the fifth floor. That information is relayed to the security officers. 7:53 a.m.: A chaotic scene where the first security officer on the scene makes initial contact with the suspect telling him to remain still. Fortunately, the two security officers were approaching the location from different directions. As the suspect appeared again to go to his waist, the first security officer shouts “Gun, gun, gun!” just as the security officer behind the suspect is able to initiate a takedown procedure. The 911 dispatcher is still on the phone, hearing the commotion, and urgently asking for details. The security officers report that the suspect is in custody. (The 18-minute clock ends. However, while the threat has been quashed, the incident—and the potential for lessons—is not over.)

December 2021 / January 2022


7:55 a.m.: Police arrive in a flurry at emergency room waiting and demand to know how to get to the fifth floor. The receptionist is initially flustered and after a little back and forth, police are escorted to the fifth floor. Approximately 8:10 a.m.: Media begin to call, including national media. No senior hospital executives or communications staff are available yet. There are many lessons and takeaways from these 18 minutes (and the immediate aftermath). Here’s a look at some of those things that went wrong. The first obvious breakdown is access control at the employee-only entrance. The door was not locked down. Why? As Nordby said in the GSX session, “This was 100 percent convenience for the doctors.” It’s an obvious security weakness, but it was not an oversight. Prior to the incident, hospital leaders determined that the risk presented by the entrance was not severe enough to force badge access. Mostly, staff wanted to leave their badges in their lockers and not run the risk of forgetting them and being delayed access in the rare occasions when quick access was needed to prevent adverse patient reactions. Another area of improvement was having an explicit process and training on what to do when police arrive during an emergency—no matter the time, since hospitals operate 24/7. It is easy to assume that in the absence of other information, police will show up at emergency entrances, so additional procedures and training for that situation is called for. A related lesson is that security did not have a public address system code for a situation where there was an incident that is no longer an emergency situation. They were still using the colour system at the time. Post-incident, they initiated a more plain-language approach with an announcement starting with “security incident” followed by a specific condition or instruction. Finally, the hospital’s incident

command system needed an overhaul as it was not up to the task for a significant Saturday morning incident. Communication channels and a system of on-call executives and communications needed to be established and tested. Just as important is emphasising what went right, and that starts with the hero of this story: the cafeteria worker. All hospital staff had been trained on security awareness, and to act when they feel something is outof-the-ordinary. “If that person hadn’t noticed something and come told us, this could have been a very different incident,” said Neckar. “We wouldn’t have had that five- or six-minute jump on it. It would have been a response to a shooting instead of a response to a suspicious person.” Some might question if it is wise to put a staffer in a potentially dangerous situation. Nordby explained that he thinks this situation occurred exactly as it should. If the person in question had been acting erratically or been doing something— anything—other than just standing there, then perhaps a direct report to security would have been in order. But 99 times out of 100, that initial customer service approach would have revealed that he was waiting for someone or needing direction of some kind. Instead it led to a concern, and the potential for danger, at which point the worker went straight to security. And that brings up the next success factor. The next success factor is a combination of security planning and security drilling. Using crime prevention through environmental design (CPTED) principles, the hospital layout directed the flow of traffic in the hospital through choke points, so these and other key entering and exit areas could be monitored by cameras. The security drilling that came into practice was some gamification that the security team used in the control room in conjunction with officers on the floor—basically a game of hide-and-seek. This

drilling, combined with the CPTEDinfluenced surveillance, is what enabled security to pinpoint the suspect’s location in two minutes. The radio system worked as needed, and security officers were able to engage the suspect within two minutes of his location being identified. Next, security officer physical training meant the officers— equipped with pepper spray, handcuffs, and keys—were able to effectively take down a suspect who was carrying, but not yet wielding, a .44 Magnum handgun and hundreds of rounds of ammunition. And finally, there was a culture within the security team that they knew they were empowered to act. They knew that if somehow the takedown ended up being an inappropriate action, that, based on all the information the officers had at the time, it was a course that their supervisors would defend. And do not completely discount fortune. That initial notice by the cafeteria worker coupled with the feeling that it just didn’t look right? There’s a bit of fortune in that. The approach from the security officers, when they were able to approach the suspect from different sides? There was no time to coordinate as they were still trying to sight the suspect. They just happened to be coming from different ends of the hospital. So really, it’s great planning that allows you to capitalise on a little luck to prevent a tragedy. A final point of emphasis from Nordby is to be sure to use major incidents to effect positive security change. “You don’t want to appear to be opportunists,” Nordby said. “But on the other hand, there are always security incidents happening, and when you have the attention of the executives, it’s important to have a list of concrete solutions needed and examples to back up why the security measures you want to enact are necessary, and what the risks are if the measures are not adopted. When security is successful, nobody sees it, so it is important to document successes and share action reports.”

© 2021 ASIS International, 1625 Prince Street, Alexandria, VA 22314. Reprinted with permission from the November/December 2021 issue of Security Management.

December 2021 / January 2022

NZSM

33


How have Kiwis changed their internet use due to Covid-19? Auckland University of Technology’s (AUT) NZ Work Research Institute (NZWRI), in collaboration with InternetNZ, has released the latest New Zealand World Internet Project (WIP) report. AUT runs the New Zealand WIP survey and analysis, which sits alongside similar reporting activities by 38 WIP partner countries. Aotearoa has been included in this international benchmarking endeavour since 2007.

The large-scale, nationally representative survey provides insights into how Kiwis used the internet during the first Covid-19 lockdown in 2020. During that time, up to half of the just over 2,000 respondents increased their internet usage for the purposes of communication, information, entertainment, and financial transactions. Perhaps surprisingly, the increase in internet activity during lockdown was largely temporary, with most users reporting their internet use returned to pre-lockdown levels soon after restrictions were lifted. The survey also found a significant “digital user divide” with respect to income levels and age. Simply put, the lower the household income, the more likely it was that the respondent was not an internet user. Approximately 13 percent of those earning under $30,000 a year (the lowest household income) described themselves as non-users; in contrast, this figure ranged between 0-4 percent of higher income households. In terms of age, the proportion of non-users in the age ranges of 16-24 years and 55-64 years was between 2 and 5 percent. Among

34

NZSM

older respondents (over 65 years), 16 percent reported they were non-users. Asked why they didn’t use internet, many said they “didn’t see the purpose”. In another key finding, over a quarter of non-users (28 percent) said that a better understanding of the internet and/or cheaper costs associated with internet access would help them become internet users. NZWRI researcher Alexandra Turcu, who led the study, said the WIP survey makes clear that income, age, education and access are all important variables when it comes to Kiwis engaging effectively with the internet. “We saw a clear division in digital use across household income levels and age. This division is especially important in the context of the Covid-19 lockdown, which saw individuals who have internet access rely more heavily on the internet than

ever before. When it comes to digital awareness, access, and engagement, inequity can have major wellbeing implications for those who are disconnected.” InternetNZ Chief Executive, Jordan Carter, agrees, saying the Covid-19 lockdowns have brought even more clarity and urgency to reach digital equity for all New Zealanders. “There are too many people in Aotearoa who are excluded from the online world for various reasons, including cost of the Internet, access in remote areas, and the level of skill that people have to use the Internet and devices,” said Carter. “This is why InternetNZ is a major supporter of the Digital Equity Coalition Aotearoa (www.digitalequity.nz), which has been established to bring the digital inclusion ecosystem together and drive towards digital equity.”

December 2021 / January 2022


on

e c u r i ty I Z

S ’s

ss

ervicing

N Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 Fax 64 9 623 3881 0800 FOR LOK mail@loktronic.co.nz www.loktronic.co.nz

ar

Loktronic for ex-stock availability

mited 30 y Li e

nd

Loktr

ic

y tr s u


How to be Cyber Safe in your Holiday Space According to Jennie Vickers of Zeopard Consulting and Consultant to Fortinet, the first action you need take to protect your business over the holiday break is security awareness training for everyone, including your employees and your contractors.

Global influencer: Jennie Vickers.

Despite being over 2021 we are not quite at year end yet Most people have had enough of 2021 (I think we said the same for 2020 but anyway, here we are again) and the countdown to the annual shutdown is beginning, encouraged by all the TV advertising reminding us of the lazy hazy days of the summer break. One of the differences this year from previous years, is the substantial number of devices which will be going off on holiday with your team members, which are connected back to HQ, to your email, your database, with access to your operational technology (OT), all your IP…., get the picture? According to data released earlier this year extracted from Stats NZ data: • around 97 percent of the population in New Zealand were active mobile social media users; • the population of NZ had 1.3 smartphones each; • there were more mobile subscriptions than people in the country; and • about 46 percent of web traffic was created by mobile phones. All of this adds up to a lot of digital activity. No one wants to be a killjoy, but the combination of the increase in threat activities plus the number of devices heading off to the beach (and those staying home), adds up to even greater risks to your business and individual economic prosperity, than at the same time in previous years.

36

NZSM

Are your exhausted people going to be using the devices that connect to your network and your data, to surf for shopping, quizzes, and puzzles, on their well-deserved days of rest? Earlier this year, the 2021 Fortinet Networking and Cybersecurity Adoption Index Research Report, collated the opinions of 300 IT decisionmakers in Australian businesses and 105 IT decisionmakers in New Zealand businesses. When the research was conducted the results were clear about the need and demand for awareness training: “When it comes to IT security programs, awareness was at the top of the list for Australian organisations at 67% [and training (62%)] while training was at the top of the list for New Zealand organisations at 70% followed by awareness (68%)”. Are you one of the organisations surveyed and have you actually got around to putting a programme in place? Security Awareness and Skills Training – there is no option In reporting to their boards, most NZ businesses will have covered cyber risks. The frameworks and structures businesses chose to comply with and report to are many and varied but chances are you have picked one. ISO27001, NIST 800-50 Framework, CERTNZ’s Critical Controls, the ACSC Essential 8, CIS Controls, APRA CPS-234 or MITRE AT&CK are the best known and most include an obligation around the delivery of security awareness training.

December 2021 / January 2022


• Check your cyber policy terms and make sure you have complied with the hygiene requirements; and • Ensure that your record keeping clearly documents when, and where training was delivered and keep the data on staff completion records and results. Find a Security Awareness Service There are a number of options out there. For example, organisations of all sizes can benefit from Fortinet’s complimentary information security awareness and training service, which is suitable for your entire workforce, from technical to non-technical employees and contractors. Taking one to two hours to complete by each person, you can educate your workforce about today’s cyber threats, such as phishing, social engineering, and ransomware attacks, and how to protect against them. The service’s training course was researched and developed in alignment with NIST guidelines: NIST 80050 and NIST 800-16. To get the ball rolling to sign up, using the search term “Fortinet information security awareness and training” will get you to the page and the instructions for how to sign up for your organisation.

If you are ISO27001 certified then, apart from the rest of the compliance obligations, you need to be addressing Control 8.2.2 Awareness Training, if the CIS Controls is your chosen Framework, then have a look at Control 14. If you have a cyber risks insurance policy you may have confirmed in your last policy proposal declaration, that you are providing awareness training. Cyber insurance remains an important part of cyber risk management, but reality is, we all win if training happens but claims do not. Despite everything I have said. don’t panic, but do:

December 2021 / January 2022

• Review the training you do deliver and identify when it was last a compulsory requirement for staff; • Consider the latest reports on threats (Fortinet’s FortiguardLabs provide a good publicly available threat update service) and check that the new attack vectors are covered in your current training; • Before the holiday starts run every staff member and contractor through your security awareness training; • If you have no training programme in place, read on for options that are still available before the break;

Protecting you and your family This urgent need for better awareness is not a business only problem. All of the family needs to be cyber smart. For teenagers and adults, the Fortinet training is also available free for individuals to sign up. For the little people there are a number of great video resources. I loved watching the WCF Foundation’s Cyber Security Awareness Program on Youtube and there are plenty to choose from. Australian Leonie Smith is called the Cyber Safety Lady and is based in Sydney. Her site is full of resources for families. My current favourite resource for little people is “Cyber Safe: A Dog’s Guide to Internet Security” recently published by Renee Tarun Fortinet’s Deputy CISO. Available as a book and an e-book it is accessible by even the littlest person who can swipe a device! NZSM

37


Body Armour: Effective Protection from Hypodermic Needles? Robert Kaiser, CEO/Founder PPSS Group, writes that although there is no standard for testing body armour specifically against needle attack, some good indicative standards do exist. Hypodermic needles pose a serious threat to domestic frontline professionals, such as private security, police, prison officers and paramedics.

Facing someone carrying any type of edged weapon can be classed as a ‘real problem’, but many of us will know someone who has been stabbed and survived such assault. Unless you face someone who really knows what they’re doing, there’s a realistic chance of surviving such an assault. However, being attacked by a random person waving a hypodermic needle at you and sticking it anywhere into your body is of equal or even greater danger. It could mean coming into contact with blood-borne pathogens such as HIV and Hepatitis C. In my personal and professional opinion this presents a realistic risk. There are many recorded incidents of HIV positive prisoners and criminals using a hypodermic needle as weapon, such as the one which occurred when UK Police Officer Gemma Newman was stabbed with a hypodermic needle in her arm, by shoplifter Grzegorz Pajak who was claiming that he was ‘HIV Positive’. She has since considered leaving front line policing due to ‘deep psychological distress’ a court heard. Other reported incidents include: • “Boston Man Charged with Armed Robbery and Assault with a Hypodermic Needle Facing Life Sentence”. • “Birmingham Hypodermic Syringe Attacker has Stabbed 11 Women”.

38

NZSM

• “Security guard stabbed with syringe in test wait”. • “Dublin muggers bring terror to the streets with blood-filled syringes”. • “Security guard pricked in neck with needle, Houston police say”. • “Cheltenham supermarket security guard stabbed with needle during attempted theft”. I’m guessing that the arresting officers would be quite keen to understand whether their standard issue body armour is protecting them from such a weapon. Despite the opinion of many experts, there are needle resistance standards out there. They might not be designed to test body armour specifically, but they can nevertheless give professionals a clear indication of what level of needle protection a piece of personal protective equipment (PPE) offers. ASTM (The American Society for Testing and Materials) has recently developed a new international standard, the ASTM F2878. This is a

‘Test Method for Protective Clothing Material Resistance to Hypodermic Needle Puncture’. This test-method evaluates puncture resistance of protective clothing materials, which may include plastics or elastomeric films, coated fabrics, flexible materials, laminates, leathers or textile materials. No single standard can replicate the real-life conditions in which a needle puncture takes place but testing to such a standard must be a good thing and will certainly eliminate some concerns a potential body armour wearer might have. The EN 388:2016 (Protective gloves against mechanical risks) is another available test. This was developed to verify the needle puncture resistance of gloves and has not been designed to test body armour, but again it will indicate that a specific product or material has been tested against a recognised standard. However, in the world of body armour, it is widely accepted that official SPIKE tests and successful ‘spike resistance certifications’ are evidence that a body armour can withstand any type of hypodermic needle. In fact, such body armour can potentially withstand many other tools/toys/weapons much stronger than a needle. If I personally would have to wear any type of body armour, then I would of course prefer to know that an independent government authorised agency had had a look at it and confirmed that it offers spike level protection.

December 2021 / January 2022


REACH

NEW HEIGHTS in Professional Excellence

ASIS accredited certifications can help you reach your career goals.

Validates your ability to conduct security investigations through the effective use of surveillance, interviews, and interrogations. Designed for those with 5 years of related experience.

WHY EARN THE PCI DESIGNATION? • Provides independent confirmation of your specialized skills in security investigations • Gain global recognition by your peers and industry • Get a competitive edge in the marketplace • Enhance your career and earnings potential • Enjoy personal satisfaction and professional achievement Be one of the many ASIS board certified practitioners who are leaders, mentors, and trusted strategic partners, serving both their organizations and the profession.

Visit www.asis.org.nz

“PCI is an important element in the ASIS Certification programme, dovetailing into both CPP and PSP for a comprehensive understanding of broader security industry objectives. An effective and reliable investigation depends on objectivity, thoroughness, relevance, accuracy and timeliness. PCI helps identify critical investigative outcomes, including evidence collection, case management, and the process of offender detection, identification, interview and prosecution. Good physical security designs, together with robust policies and procedures are key elements in a successful investigation. The PCI certification provides an insight into how these pieces interrelate." - David Horsburgh, MSc CPP PSP PCI

WHY SHOULD AN EMPLOYER HIRE ASIS CERTIFIED PROFESSIONALS? • B uild a strong, dedicated team committed to high standards and continuing professional development • Promote ongoing education of critical job knowledge and skills • Feel confident that your staff are using best practices • Recruit the most qualified professionals • Reinforce or elevate your organization’s reputation and credibility Increase the competency level of your staff by supporting your security professionals in their certification journey.


on

e c u r i ty I

ar

Z

S ’s

mited 30 y Li e

nd

Loktr

ic

y tr s u

ss

ervicing N

Three great brands that stand for QUALITY and VALUE

from Loktronic Limited SERVICE and SUPPORT drive us. Loktronic Limited Unit 7 19 Edwin Street Mt Eden Auckland P O Box 8329 Symonds Street Auckland 1150 New Zealand Ph 64 9 623 3919 • Fax 64 9 623 3881 • 0800 FOR LOK mail@loktronic.co.nz • www.loktronic.co.nz

R

ISO 9001:2015

REGISTERED COMPANY Certificate No. NZ1043


Turn static files into dynamic content formats.

Create a flipbook
Issuu converts static files into: digital portfolios, online yearbooks, online catalogs, digital photo albums and more. Sign up and create your flipbook.