Threat & Vulnerability Assessment

HXZA offers our clients comprehensive threat and vulnerability assessments (TVAs) for existing and planned facilities worldwide. Our consultants combine in-situ vulnerability inspections with bespoke threat assessments derived from geopolitical, socio-economic, structural design, and operational activities of the subject site to identify security deficiencies and make recommendations to enhance facility security posture.

The Company's TVA services provide an independent, objective perspective, allowing facility operators to build on site-specific security recommendations and implement strategies which mitigate risk to facilities, personnel, and operations.

Background

Security forces around the world have waged a decades-long struggle against domestic and international terrorist groups. Significant progress has been made combating or restricting the operational radius of some groups, especially those based overseas which target the global oil and gas sectors.

Although the strides made in the Global War on Terror in recent years have been significant, visible, and even quantifiable, terrorist groups continue to target foreign affiliated infrastructure at the homefront and abroad.

Our experts will conduct a tailored threat and vulnerability assessment of the client facility, producing a customized report for each facility unique characteristics and operations, and make full scope recommendations to improve security posture across physical, operational, personnel and cyber domains.

Our Solutions

HXZA's experts identify gaps in security processes and make recommendations to mitigate risks to facility infrastructure. If clients request, the team can also assist in establishing security modernization plans, setting security posture improvement goals and periodically undertaking independent audits to ensure satisfactory progression in line with a set security improvement timetable. A typical Threat and Vulnerability Assessment includes the following activities:

I. Vulnerability Assessment
★ Perform a detailed site inspection and penetration testing for existing sites, and review of blueprints / CAD files for planned or proposed sites.
★ Review existing Security Identification Display Area (SIDA) / Security Awareness computer-based training modules and other security-related communications to employees (e.g., Rules and Regulations, Facility Directives, Airport Bulletins, etc.).
★ Conduct facility management and facility stakeholder interviews and/or surveys for assessment of culture (Consultant to recommend number and types?of facility employees to interview.)
★ Undertake targeted vulnerability assessment focused on the key aspects of the facility security program (operations, access points, escort program, and management / employee culture) considering the size, complexity, history, and target value?of the Terminal.

II. Threat Assessment
★ Produce a comprehensive threat assessment covering global, regional, and site specific threats to the facility type including terrorism, piracy, narcotics, civil disobedience, and other threats.
★ Draft a historical threat trend covering attacks against the sector broadly梠il & gas, chemical, aviation, passenger terminal, etc.
Elucidate Possible Mode of Attack (PMA)- Site specific PMA analysis taking into account facility infrastructure, value, geography, and tactical environment specifically concerning threats of terrorism and piracy to high risk targets such as terminals, port facilities, airports, vessels, and aircraft.

III. Compliance Assessment
★ Undertake a compliance assessment to design future security solutions or audit existing procedures in compliance with national or international rules and standards. This is of particular importance for US and EU shoreside port facilities, international airports, and ocean going vessels which must meet or exceed stringent compliance standards set by domestic regulations, ISPS Code, ICAO regulations and other pertinent legal instruments.

IV. Recommendations and Security Improvement Plan
★ Produce a report based on the targeted and focused TVA and in consultation with the facility Attorney and Security Department staff, recommend physical and operational modifications to strengthen the facility security posture (perimeter security, access control, structural integrity, counter-IED, counter-narcotics, surveillance, cargo screening, baggage screening, passenger screening, escort program, IT/Cyber security, tactical/rapid response, behavior monitoring, management structure, and employee culture among other topics), in line with the company proposed security improvement budget and timeline.
★ Deliver a workshop with the facility Attorney and security department to review the findings/recommendations
★ Prepare a draft and final detailed report documenting all aspects of work described above.
★ Expand the report to include a Security Improvement Plan. This can be a 1-year, 2-year, or 5-year enhancement plan with certain security milestones for the facility to achieve along a proposed timeframe and in line with the facility security improvement budget. HXZA can guide the facility operator throughout this process and conduct periodic assessments to ensure security plan trajectory is maintained and audits to evaluate staff compliance.