Knowledge | News | Careers | Contact us

Our disciplines

Personnel security

Who is the weakest link? Making sure that your people are informed and aware of their security responsibilities can provide significant improvement in security posture. stratsec assesses risk and develops tailored security training, awareness and vetting programs for our clients.

It’s clear that people are the weakest link in any security program.  Organisations bring together people of different roles, skill sets, professions and commercial interests.  Getting the right security message out to all those people and establishing an effective security culture requires careful planning that considers all elements of an organisation’s security program.  It is often the case that organisations that don’t have a plan for their personnel security programs end up with:

  • a greater number of security incidents due to negligent acts or omissions;
  • security incidents that go undetected or unreported for extended periods;
  • uncontrolled sharing of the organisation’s most sensitive information and knowledge;
  • the wrong people in the wrong roles at the wrong times; and
  • increased levels of fraud or misuse of business assets.

stratsec assists clients with establishing effective personnel security programs through a strategic approach that is aligned with the business objectives of the organisation.  The stratsec approach guides an organisation through consideration of three important aspects for delivery of any personnel security capability:

  • Governance. Establishing the strategic direction and alignment, understanding risk, and defining policies, procedures, standards, and roles and responsibilities for personnel security.
  • Assurance. Providing assurance that the personnel security capabilities in the business environment continue to be effective in meeting the business need, and are implemented in accordance with established policies and standards.
  • Capability. Designing, deploying and operating personnel security programs appropriate for the risk profile of the organisation that are compliant with the defined standards, whilst implementing and maintaining established policies, standards and procedures.

Through this strategic approach clients can then develop personnel security program requirements to procure or implement personnel security services aligned with their business objectives and unique operational environment.