Once the drawings and specifications are finalized, we continue to support the client through the tender and construction process. This includes supervision of security contractors and all security design elements to ensure that installation meets the design requirements. We are involved in tender review and integrator pre-qualification, material and product review and approval, shop-drawing and as-built review, conducting on-site compliance reviews and participating in final system testing and commissioning. We can also coordinate system operations training for the integrator and the client’s operations team.
We can conduct third-party peer reviews, assisting the client as a technical specialist to ensure that designs are in accordance with project and authority requirements, or to supervise coordination of the project security strategy and masterplan.
In addition to security technology systems design, we often provide full project management and leadership services, overseeing multidisciplinary design teams in the delivery of complex security-driven initiatives. Such projects often include systems with electrical, mechanical, IT and architectural elements, which need to be coordinated to meet the overall security vision.
For any organization to survive in an emerging information security ecosystem, standard security measures are no longer sufficient. The changing business landscape now requires an information resilience strategy, enabling an organization to prevent, respond and recover from potential threats, and maximize the trustworthiness of its information.
WSP has established its own approach to information resilience, supported by a relevant implementation framework. We follow a holistic approach to protecting all types of sensitive information, in all phases of the information lifecycle, throughout all business verticals, regardless of the underlying business and technology ecosystem. Information resilience includes continuous assurance, improvement and response.
Enterprise resilience includes the development of incident response plans in line with governance, risk and compliance requirements. These are delivered through organizational training and the development of procedures, such as responsibility identification and escalation. Resilience planning includes Crisis Management, Disaster Recovery and Business Continuity Management Systems.
Smart Buildings and Cyber-Physical Security
People typically associate cybersecurity threats with data theft or the manipulation of money, but a breach today could have far more tangible results. These will only be exacerbated as we approach hyper-connectivity. The big difference in the future is that there will be direct physical effects. An attack might, for example, turn all the traffic lights red or take control of a building’s HVAC system, making it unusable and disrupting business continuity. Or it might disable the elevator system in a high-rise building or overload critical national infrastructure for electricity or water.
When designing a system, security needs to be built in from the beginning and all of these systems need to be thought through carefully and managed holistically, with care and foresight, through a multidisciplinary approach. At WSP, we develop strategies for smart technology and converged data networks which factor in security components to maximize functionality, monitoring and resilience.