State Government Headquarters Analyzes Security Gaps with a 360-View

 

Security Risk Assessment

State and Federal government buildings continue to be a highly attractive target for terrorist attacks and other mass violence. Ever since the 1995 Oklahoma City Bombing, federal buildings have been on high guard against terrorist threats. They house sensitive information and represent critical infrastructure capable of causing significant city-wide disruptions. Many are open to the public (e.g., courthouses, parks, administrative buildings), creating unique security challenges. The Department of Revenue is particularly attractive to criminally motivated entities due to its strong association with state taxes and finances.

Challenge

A State Department of Revenue and entry points while providing several public-facing services. They needed to strengthen access control and find ways to efficiently share threat information. Understanding the different profiles of threat actors was also crucial to the client’s safety and security program.

Strategy

To address this location’s vulnerabilities, the client partnered with Rozin Security to conduct a complete Security Risk Assessment (SRA). The SRA considers the client’s unique operations, assets, threats, and vulnerabilities. Rozin Security uses the assessment findings to develop customized solutions that are prioritized, efficient, proven, and cost-effective. Below are some core elements that went into the plan:

Comprehensive Asset Analysis — Rozin Security’s first task was to understand the building’s operations thoroughly. This includes access to sensitive information, including receiving and processing taxes and tax information, as well as the storage of sensitive financial data, tax stamps, and evidence related to potential financial crimes.

Identify Peripheral Operations—Several events, such as administrative court hearings, periodic large meetings and events hosted by the governor, and even a publicly accessible ground-level cafeteria, brought in large groups of people.

Identification of Principal Assets—Rozin Security and the client identified specific assets that should be protected. These included the staff and patrons, tax information and criminal evidence, the data center, and other infrastructure systems essential to the Department of Revenue’s operations and reputation.

Creation of a Tailored Threat Profile — Rozin Security conducted a comprehensive threat profile analysis for the client, identifying unique, criminal, and ideologically motivated threat actors relevant to government entities and revenue targets. The assessment included a review of past security incidents at the property and surrounding areas. Rozin Security developed a tailored threat profile by focusing on the client’s assets and operational factors that could attract malicious activity.

In addition to the client’s comprehensive onsite assessment of property, operations, and assets, the client received training to demonstrate how deficiencies within the site’s security operations may be exploited to target 1) executive staff members and 2) critical tax documents and information. This involved conducting multiple Red Team assessments. RSC can simulate threat actors ranging from corporate espionage to low-level criminals, from terrorists and other violent events.

To address identified vulnerabilities and risks, Rozin Security traditionally divides its solutions into three broad categories:

  1. Physical security features (exp., hardened doors and window safety features).
  2. Technological security features (exp., access control mechanisms and video surveillance systems).
  3. Human asset security features (exp., increased security personnel presence, access control procedures, and threat information sharing).

Rozin Security considered these categories at every layer of the client’s property and operations – from exterior and public-facing zones to interior and restricted storage and operational spaces.

Results

Once the client’s total risk was assessed, Rozin Security provided a set of prioritized recommendations encompassing physical, technological, staffing, policy, and procedural corrective measures to enhance security preparedness against relevant threats. These recommendations were prioritized based on their effectiveness in deterring, preventing, detecting, and responding to threats, ensuring the best return on investment for each site.

This holistic approach integrates physical, technological, and human measures to create a comprehensive security program.

At the conclusion of the project, the client committed to implementing several key protective measures, including:

  • Procedural Enhancements: Improving routine and emergency security operations.
  • Regular Training: Equipping security and non-security personnel with skills to proactively identify and neutralize potential threats.
  • Lobby Redesign: Reconfiguring the building’s main lobby to better control access and protect against threats while maintaining a welcoming atmosphere for public-facing services.

As the threat landscape evolves, it’s crucial for high-profile buildings and facilities to maintain a proactive security posture, identify vulnerabilities, and have a clear response plan for potential events. By implementing these measures, the Department of Revenue has effectively addressed its security needs and established a strategy for long-term safety.

Security Consulting

Rozin Security offers security consulting services to help you design a comprehensive and proactive security plan to meet the needs of your organization today, and over time.

Learn More >