Bastion Security - Core Competencies. Please visit http://www.thefortressgroup.com/bastion for full details

Bastion Security provides services and products to individuals and organizations operating in high-risk situations and remote sites globally with the objective of providing effective protection while utilizing client and security resources in an efficient manner. In order to meet this objective, all aspects of security operations must be studied and understood, and thus it is essential that your security provider have knowledge, skill and experience in all the necessary aspects of security.

The system created by Bastion Security is designed for one purpose: To detect and identify threats and predict their targets in advance of an attack in order to provide sufficient warning for the protection teams to allow them to plan a course of action which will ensure that the resources required to effectively avoid, deter or negate that threat are made available at the required time, in the required location.

A detailed study of high-risk security illustrates that there exists six distinct elements which must be considered and implemented through the appropriate combination of security services and products as shown in the following chart;

Primary elements/tasks are those which comprise Security Command and Control and Operational elements. In short, they are focused on, and are responsible for, the in-depth knowledge of the structure, operations, objectives and net worth of a specific group within the target-threat relationship (see below). Secondary elements/tasks are those which directly support the primary elements/tasks and tertiary elements/tasks are those which indirectly support both the Primary and Secondary elements/tasks.

It should be noted that when feasible, Primary elements are expected to perform the tasks of secondary and tertiary elements and Secondary elements are expected to perform the tasks of tertiary elements as well when feasible.

A brief summary of the goals (aim), focus, tasks and descriptions of each element can be obtained by moving your mouse cursor over the text boxes in the chart below;

Operations Management Tasks are considered to be 'Command and Control' tasks and are focused on the protection of specific assets operating/existing within a specific area as defined by the security plan.

Products and services offered aim to influence the situation within the entire geographic area the Client operates within over the lifetime of their operations and assist in the creation of a security plan.

Their primary tasks are to identify, classify and rank potential targets which are critical to the existence, operations, net worth and objectives of the client.

Asset Protection Tasks are considered to be 'Operational' tasks and are focused on the (in)direct protection of the client's assets and (in)direct support of those resources providing protection.

Products and services offered aim to protect the targetted assets while they are performing their tasks and operating in locations/situations in which threats may exist and/or operate.

Their primary tasks is to provide effective protection by avoiding, deterring, and/or negating threats present in the defined task area over the lifetime of the task.

Security Intelligence Tasks are considered to be 'Operational' tasks and are focused on the threats operating/existing within a specific area as defined by the security plan.

Products and services offered aim to predict threats to client assets in advance of an attack and determine the conditions which must exist for current threats to be negated, and new threats may be created.

Their primary tasks are to identify, classify and rank potential threats to assets which are critical to the existence, operations, net worth and objectives of the client.

Consulting Tasks are considered to be 'Operational Support' tasks and are focused on providing an objective look at the key players present within the situation.

Products and services offered aim to assess the vulnerabilities of each key player in probable, possible and emergency response scenarios in which the client and its security teams may be operating in and ensure effective protection is achievable.

Their primary tasks are to create, analyze and critique the implementation of the security plan.

Training Tasks are considered to be 'Operational Support' tasks and are focused on increasing the knowledge and skills essential operating securely in high-risk situations and remote locations.

Products and services offered aim to increase the depth and breadth of knowledge and skills to personnel performing security tasks as well as provide an awareness of security issues to Client personnel (non-security) operating in these environments.

Their primary tasks are to transfer knowledge skill and experience to create a client which is educated and aware of their security concerns.

Service Support Tasks are all other tasks which are focused on providing Logistics, Administrative and other Operations Support tasks which are necessary to ensure those operations run smoothly.

Products and services offered aim to increase the efficiency of the security operation, thus allowing the Primary and Secondary elements to concentrate on their tasks.

Their primary tasks are to perform the various required service support tasks which can not be performed by the Primary or Secondary elements of the Security Team.

Bastion Security takes a low-profile, modular and scalable approach to high-risk security. The underlying concept of all products and services provided or recommended is that they need to adapt to the most probable, possible and emergency response scenarios which have been identified, assessed and predicted over the life of the security task. They must be flexible enough to quickly respond, and adapt, to a changing situation as well as those which elements which have not been identified, assessed, or predicted. Most importantly, security measures should not draw attention to the client from threats which are seeking targets.

The Target-Threat Relationship is a term we use to determine or outline the various interactions (probable, possible and emergency response actions and reactions) between those entities we classify as key in any given situation, whether it be based on actual events, or potential situations which can be predicted and modelled given certain criteria which must exist for that potential situation to become real, or actual.

Effective protection can only be provided with a thorough knowledge of the situation as well as the structure, operations and objectives of the key players present within that situation. Without the knowledge of what assets are vulnerable, (as well as when, why and from what) any deployment of security resources will be inefficient at best, and critically useless at its logical worst. Those entities which have the greatest level of control over the situation are considered to be the key components, or players, and in the case of security operations, are the following;

The Client is defined as the entity (organization, individual, and/or asset) whose structure, operations, objectives and/or net worth are vulnerable to some degree and require protection from various real or perceived threats.

Key External Organizations (KEO) are defined as those entities which are external to the structure of the 'Client', but are utilized to support the client as it works towards its objectives. An attack on a KEO may be just as effective as an attack on the client.

Security is a 'generic' term for those resources utilized by the 'Client' to allow it to exist, operate and meet its objectives with minimal disruptions by threats.

In essence, this is achieved by minimizing interactions between Threats and Client-owned/controlled assets (Targets of an attack). In its simplest terms, Security is the protection of an asset from threats to it.

A Target is an asset of real or perceived value which is owned, or controlled, by another entity.

An 'attack' on that asset, whether it be acquisition of, or damage to, the asset and/or its removal from its current owner/controller/benefactor will have a positive impact on the structure, operations, objectives and/or net worth to the 'attacker' and a negative impact to the same attributes of the original owner/controller/benefactor of that asset.

A Threat is any entity (organization/individual/asset) whose existence, operations, and/or objectives have a negative effect on the existence, operations, objectives and/or net worth of another entity.

A threat may be external or internal to the structure of the client, its key external organizations and/or security forces.

Move your mouse pointer over the key player ellipse above for a brief description.

These components must not only be viewed in isolation, but more importantly, how, where and when they interact with each other. The existence (structure), operations, objectives and/or net worth of one component may affect the existence (structure), operations, objectives and/or net worth of another. Actions of any component will have consequences to the other components which will in turn affect their actions. Failure to understand the relationships between the key players and account for the consequences of their interactions will almost always limit or lessen the effectiveness of the security plan.

Implementation of an effective protection plan will allow the beneficial interactions between the Client assets and those Key External Organizations present in the situation and avoid, deter and/or negate those critically harmful interactions between the threats and their targets which are critical to the existence (structure), operations, objectives and net worth of the client. This is achieved through identifying, sourcing, preparing and deploying the appropriate mixture of resources (services and/or products) in advance of an attack.

Once the Key Players have been identified and their structure, operations, objectives and net worth have been suitably determined and studied, attacks can be predicted in advance and effective protection is possible. Thorough understanding of the Target-Threat Relationship is key to operating in high-risk situations.