DEFENDER

Alert fatigue isn’t the issue. Alert handoff is.

David Marsh — Mon, 05 May 2025 13:21:15 GMT

We’ve spent years perfecting the front end of security.

Better cameras. Smarter analytics. Faster alerts.

But most operations still lack what matters most: action.

Detection has evolved. Response? Not so much.
And that’s why most incidents fall through the cracks.

Historically, the only fix has been to add more staff.
That might close the gap, but it’s rarely…

Automating Incident Response

David Marsh — Mon, 03 Mar 2025 00:57:17 GMT

At 2:37 AM, an intruder scales the fence of a high-volume logistics hub. An AI-enabled camera detects the breach, triggering an audio and visual warning that startles the trespasser. Simultaneously, security is alerted. Recognizing the severity of the situation, the system escalates the event to an AI agent, which follows predefined protocols to notify …

Physical Security: Predictions and Insights for 2025

David Marsh — Thu, 02 Jan 2025 02:13:58 GMT

Today we revisit the key topics that shaped 2024 and explore how some of these made headlines—while looking ahead at what’s next for 2025.

5G & Security Trailers

David Marsh — Mon, 02 Dec 2024 14:07:15 GMT

5G didn't excite me for phones, but it's revolutionizing video surveillance. With its super-fast speeds and low latency, what was once rare in security monitoring is now standard. We can now roll out security trailers almost anywhere.

With 5G, we're looking at:

Real-Time, HD Monitoring: Thanks to 5G, we have live, high-definition video streaming from a…

From Passive to Proactive Security with AI

David Marsh — Mon, 25 Nov 2024 15:10:47 GMT

There's a lot written about AI these days, especially in security magazines, but as someone who’s now immersed in AI and robotics everyday, I’ve seen firsthand how these technologies are changing the security industry forever.

AI enables security teams to move from passive monitoring to proactive threat detection and response.

Manufacturers continue to in…

Beyond Protection: How Security Drives Profitability

David Marsh — Wed, 06 Nov 2024 15:11:09 GMT

When people outside the industry think of security systems, they often think about the obvious: access control, cameras and alarms.

However, these days, we’re going beyond just stopping “bad guys.” by actually helping businesses improve their bottom line.

We’re seeing a healthy trend that will move security from being seen as the “insurance policy” to th…

Unlocking LinkedIn's Potential with Tyler Schmoker

David Marsh — Tue, 29 Oct 2024 13:07:23 GMT

Join Dave and Tyler for a different side of the physical security industry—LinkedIn.

In this episode of the Defender Podcast, Dave sits down with Tyler Schmoker, an Army veteran, security professional, and entrepreneur.

With over two decades of experience in security management and consulting, Tyler has a wealth of knowledge to share about navigating LinkedIn as a physical security professional.

Tyler discusses his approach to developing his network and emphasizes the importance of professional development in the security field.

He explains how leveraging LinkedIn can significantly enhance career opportunities and shares actionable strategies for creating an impactful LinkedIn profile, engaging with industry content, and building a professional network that can lead to new connections and career advancements.

Watch or listen to the full episode on Defender.Video to learn how to elevate your professional presence and expand your connections in our growing industry!

Why Insider Threats Require a Converged Approach to Security

Vigilia: A Journal — Mon, 14 Oct 2024 13:46:06 GMT

In a high-profile 2022 case, North Korean operatives exploited remote work opportunities to gain employment at U.S. tech companies, enabling them to steal sensitive data and intelligence for the regime.

This case shows how insider risks extend far beyond a single department, requiring a unified approach to security.

According to the 2023 Verizon Data Breach Investigations Report (DBIR), insider threats account for nearly 25% of industry data breaches. Whether intentional or accidental, the result is the same - organizations face significant financial and reputational damage as a result of an incident.

Given the complexity and frequency of these threats, a siloed approach to security is untenable. In today’s environment, security leaders must adopt a converged strategy that brings together physical security, IT, HR, legal, and other critical stakeholders to address insider risks effectively.

This article will explore how breaking down silos between departments can help security practitioners stay ahead of insider threats and build a unified defense against them.

The Evolving Nature of Insider Threats

Traditionally, insider threats were often associated with cybersecurity breaches, such as employees stealing data or introducing malware into corporate systems. However, today’s insider risks are far more complex.

These threats now include everything from unintentional data leaks by employees to disgruntled staff members planning physical harm and even cases of espionage involving nation-state actors.

For example, consider the recent cases of foreign actors gaining employment at multinational companies through hybrid work arrangements only to siphon sensitive data back to adversarial governments.

Meanwhile, accidental threats—such as an employee unintentionally sharing privileged information — remain just as dangerous. The convergence of digital, physical, and human elements in these threats underscores the need for a holistic approach to risk management.

As the threat landscape broadens, it becomes clear that insider threats are not just a cybersecurity problem. They are organizational risks that affect every department and require a united response.

The Problem with Silos: Delayed Responses and Missed Signals

One of the most significant challenges in mitigating insider threats is the siloed nature of many organizations. Too often, physical security teams, IT departments, HR, and legal work in isolation, each focused on their specific domains. This disjointed approach can lead to delayed responses, missed warning signs, and inefficiencies in managing threats.

For instance, a cybersecurity team might detect unusual network behavior. Still, if they fail to communicate with HR or physical security, they may miss the larger context— such as that the employee in question has recently faced disciplinary action or tried unauthorized access to a restricted area.

Without a converged approach, information slips through the cracks, increasing the risk that an insider threat will go unnoticed until it is too late. By nature, insider threats require a multifaceted view, blending physical, digital, and human elements.

When teams fail to collaborate, they fail to detect and prevent a threat before it escalates.

The Case for a Converged Approach to Security

A converged approach to security brings together different departments—such as physical security, cybersecurity, legal, and HR—into a cohesive strategy for identifying and mitigating insider issues.

By sharing information and resources, teams can create a more cohesive “common operating picture,” allowing for better decision-making and faster responses. In a converged model, insider risks are viewed holistically, regardless of where they begin.

Insider risks are complex, multifaceted threats that can strike any organization from the inside or outside. In the face of these evolving threats, a converged strategy that unifies crucial stakeholders to create a more resilient, responsive defense is not just a "nice to have;" it should be a "must have."

Leadership expert Patrick Lencioni said, "Teamwork begins by building trust. And the only way to do that is to overcome our need for invulnerability."

Breaking down silos and encouraging collaboration isn't just about structure; it's about building trust across the organization to tackle insider threats together.

Inside Colocation: Doug Dreher on Security Challenges and Solutions

David Marsh — Thu, 10 Oct 2024 22:30:10 GMT

With the rapid growth of hyperscalers, understanding how to effectively manage security in these shared environments is more important than ever.

Defining the Security Landscape

Colocation facilities are designed to house multiple clients' IT infrastructure within a single space. This shared environment necessitates a comprehensive threat analysis to identify potential vulnerabilities. Doug emphasized the importance of leveraging clean data versus dirty data and utilizing paid intelligence analysis to inform security strategies.

Key Security Considerations

Physical Security Measures: The exterior of colocation facilities often lacks adequate physical barriers. Issues such as fencing regulations imposed by Authorities Having Jurisdiction (AHJ) can complicate security efforts. Organizations must assess whether they have staffed guard booths or effective intercom systems in place.
Access Control Protocols: A robust access control system is essential. This includes evaluating how vehicles are vetted upon entry and whether facilities utilize mantraps or other layers of protection. Doug highlighted that many colocations are hesitant to disclose details about their camera systems without a non-disclosure agreement (NDA).
Infrastructure Assessment: Understanding the facility's construction—whether multistory or discreetly located—plays a significant role in risk management. Key factors such as power distribution, cooling methods, and backup systems must be evaluated for resilience and continuity of operations.
Interior Security Features: Inside colocation facilities, cages protect critical assets but may lack mantraps, which can expose vulnerabilities. It's crucial to assess how access control is managed across multiple tenants and how security providers monitor these systems.
Construction Phase: Doug emphasized the critical importance of the “construction security piece” phase in security management for colocation facilities. This involves meticulous planning and execution to ensure that security measures are integrated from the ground up.

Advanced Security Solutions

Doug discussed the necessity of implementing multiple layers of access control, including programmable lockers and advanced scanning technologies like millimeter-wave scanners for personnel. He also stressed the importance of encryption and robust incident management protocols to protect against unauthorized access.

Future-Proofing Security Infrastructure

As technology evolves, so must our approach to securing colocation facilities. Doug pointed out that integrating intelligent systems capable of real-time threat detection can significantly enhance security posture. Proactive measures are essential; better a false alarm than a post-incident report.

Bottom Line

The conversation with Doug reinforced that as organizations rely on colocation facilities, physical security leaders must adapt their strategies to meet the challenges.

By prioritizing thorough assessments, leveraging technology, and fostering collaboration between IT and security teams, businesses can effectively safeguard their critical infrastructure.

Thanks for tuning in!

Chuck Randolph: Building a Risk-Aware Culture and Fostering Collaboration

David Marsh — Mon, 30 Sep 2024 13:07:16 GMT

In this episode, we welcome Chuck Randolph, Chief Security Officer with Ontic, with an impressive background in Corporate Security, U.S. Department of State and Military.

Together, we discuss the various threat vectors, how security can unify the effort for organizations to become threat aware, and the power of our security networks if incidents occur.

Chuck emphasizes the need for a unified approach involving various departments like HR, legal, cyber, and physical security.

He shares insights on mitigating risks through assessment, governance, monitoring, and education. He also highlights the role of technology and the critical need for a common operating picture.

Key takeaway: building a risk-aware culture and fostering collaboration across departments are crucial in managing insider threats effectively.

Follow Chuck Randolph here.

https://www.linkedin.com/in/chuckrandolph/

Conversations In Close Protection Podcast

The Ontic Protective Intelligence Podcast

Subscribe to Defender and stay informed, don't forget to check out defender.video for more detailed insights into enterprise-level security.

Securing Hybrid Workspaces: The Importance of Visitor Management Systems

David Marsh — Mon, 09 Sep 2024 14:30:23 GMT

Visitor Management Systems

Visitor Management Systems have become crucial since 2020, especially as offices navigate the challenges associated with hybrid work models.

These systems not only streamline the visitor check-in process but also enhance security and improve the overall experience for visitors.

My first experience using a visitor management sys…

Warehouse and Distribution Center Security Threats

David Marsh — Fri, 30 Aug 2024 15:54:19 GMT

As of 2024, the warehousing and distribution sector in the United States accounts for around 5% of private-sector jobs.

With sites located in all 50 states, big or small, their impact on our everyday lives can’t be overstated, ranging from the food we buy at the grocery store to the equipment we use on our jobs.

It’s everything.

With so much at stake, it’…

Safety Starts Here: Best Practices for Securing Parking Lots

David Marsh — Thu, 22 Aug 2024 19:45:28 GMT

This article examines statistics related to parking lot incidents, common challenges faced by security teams, along with some of the security layers frequently implemented to ensure the safety of employees and visitors.

The Numbers

According to the FBI, parking lots and garages are the third most common location for violent crimes, with approximately 2 mi…

Zero Trust Framework in Physical Security

David Marsh — Wed, 14 Aug 2024 13:16:24 GMT

I’ve been reading a lot about “zero trust frameworks”, and wanted to take a closer look at its adoption within the physical security industry, and how it improves an organizations security posture.

Before we jump into the article, I’d love to know if you’ve already implemented a zero trust framework, and your thoughts in the comments below.

Back to the ar…

DJI Drone Ban Debate in the NDAA

David Marsh — Mon, 05 Aug 2024 16:03:51 GMT

In the world of drones, Shenzhen DJI Innovation Technology (DJI) is the undisputed leader, commanding a staggering 80% of the U.S. market. But this dominance is now under scrutiny as the National Defense Authorization Act (NDAA) debates a potential ban on DJI products.

For us in the physical security field, this isn't just industry chatter—it's a develo…

Defender Rewind: Defining Modern Access Control and Its Growing Impact

David Marsh — Sun, 04 Aug 2024 15:09:56 GMT

Watch the full podcast episode only on Defender.Video

Lee emphasizes the need for the industry to adapt to modern enterprise demands, integrate new players, and embrace a hybrid approach between on-site and cloud solutions.

Subscribe to Defender for more in-depth discussions on the cutting edge of security technology, and visit our website for additional insights into enterprise-level security solutions.

Lee Odess: Defining Modern Access Control and Its Growing Impact

David Marsh — Thu, 01 Aug 2024 13:07:06 GMT

In this episode of Defender, David Marsh welcomes Lee Odess, CEO of Access Control Executive Brief, to discuss his background in the security industry and his journey to becoming an international speaker and thought leader in the access control space.

Key topics covered in this episode include:

We explore the significant transformations in the access control market, especially with the rise of modern access control with cloud, mobile, and wallet (Apple, Google and Samsung), and what that means for the industry.

Lee emphasizes the need for the industry to adapt to modern enterprise demands, integrate new players, and embrace a hybrid approach between on-site and cloud solutions.

He also highlights the importance of improving user experience and streamlining the deployment of best-in-class technologies.

The discussion concludes with recommendations for security managers on updating their systems and the promising future prospects in the access control industry.

Subscribe to Defender for more in-depth discussions on the cutting edge of security technology, and visit our website for additional insights into enterprise-level security solutions.

Thank you for reading DEFENDER. This post is public so feel free to share it.

The Growing Demand for Extended Video Surveillance Retention

David Marsh — Fri, 19 Jul 2024 13:19:04 GMT

It's clear that we're witnessing some big developments in the world of video surveillance, a market valued at around $53.7 billion in 2023 and driven by technological advancements, changing regulatory requirements, and the ever-growing need for enhanced security.

The Growing Demand for Extended Retention

Gone are the days when businesses could get by with…

Defender Rewind: AXIS Communications on Visual Intelligence

David Marsh — Sat, 13 Jul 2024 03:17:21 GMT

In this Defender Podcast Rewind - David Marsh and John Callahan from Axis Communications discusses the change from traditional Video Surveillance to Visual Intelligence, providing businesses operational efficiencies unimaginable before advancements in chipsets, analytics and artificial intelligence.

John brings up a good point.

It wasn’t long ago that electronic security was thought of as an insurance policy, without the legal requirements of fire and life safety. Like insurance, purchases were scrutinized and seen as a burden, until an incident.

Camera sensors are performing more than visual identification, they’re providing visual intelligence, from detection, to operational efficiencies with AI.

This changes the way we design camera systems, from being reactive “witnesses of a crime”, to active deterrents of crime, and productive assets for the organization.

This requires asking new questions.

For example, if I were speaking with a physical security manager responsible for a production floor, they were typically concerned about security of that space, worker safety, and ensuring they’d have video footage of any accidents for legal.

Today, we could include the production manager into the conversation, to determine what a good workflow should look like, if they would need to be alerted to production slowdowns, or mechanical issues.

Security is now able to incorporate additional stakeholders when budgeting for security initiatives. This lessens the justification when requesting better equipment, because these systems can provide more value.

While having additional stakeholders involved can add time to the review process, and potentially cause design changes. Security can lead the project to ensure the design ultimately protects people, property and information.

Wait a second, did I just say information?

Today information is a key asset that must physically be protected by security, not just cybersecurity. The most effective sabotage, or infiltration efforts require getting past physical security departments, but that’s for another article.

Thanks for reading.

John Callahan: From 1984 to 2024, AXIS Communications Continues to Innovate

David Marsh — Fri, 12 Jul 2024 00:54:31 GMT

In this episode of Defender, David Marsh speaks with a long-time friend and colleague, John Callahan, Director of the Southeast Business Area for Axis Communications. Dave and John discuss Axis Communications' history of innovation and their continued leadership in the physical security industry due to their unique approach.

Axis Communications has a 40-year history of innovation. Since 1984, they have developed some of the very first Internet of Things (IoT) devices aimed at connecting devices to IP networks, created the first IP camera in 1996, and developed the ARTPEC chipset that has helped Axis become the $1.6 billion company we know today.

John Callahan has a 30-year career in the physical security industry and provides great insights into Axis Communications' philosophy and approach to the industry.

With an extensive product range, Axis Experience Centers provide a unique capability for end customers and systems integrators to see the technology working and integrating with their many Axis Technology Integration Partners.

Key topics covered in this episode include:

John Callahan: How Did You Get Into Security?
Axis Communications' History of Innovation
Axis from Video Surveillance to Operational Efficiency
AI-Powered AXIS P3738-PLE Panoramic Camera
Axis Cloud Program
Technology Integration Partner Program
Axis and Cybersecurity
Axis Communications' Approach to Channel Partnerships
Axis Experience Centers
What Products Surprise Customers and Channel Partners?
Axis at GSX 2024 and AXIS Q1809-LE Bullet Camera
How to Connect with Axis Communications

Subscribe to Defender for more in-depth discussions on the cutting edge of security technology, and visit our website for additional insights into enterprise-level security solutions.