l
l
l
saboteurs, or vandals. (See the Security Manual
and OPNAVINST 5530.14 for evaluation
guidelines.) Special equipment can be installed
to improve the quality and reliability of electric
power. Special door locks, military guards, and
intrusion detectors can be used to control access
to critical areas.
Improve procedures to close gaps in controls.
These might include better controls over
operations or more rigorous standards for
programming and software testing.
Early detection of harmful situations permits
more rapid response to minimize damage.
Fire and intrusion detectors are both typical
examples.
Contingency plans permit satisfactory
accomplishment of command missions
following a damaging event. Contingency
plans include immediate response to
emergencies to protect life and property and to
limit damage, maintenance of plans and
materials needed for backup operation offsite,
and maintenance of plans for prompt recovery
following major damage to or destruction of the
AIS facility. The command’s Disaster Control
Plan should coincide with the AIS facility’s
contingency plans.
Table 4-3 shows examples of remedial measures for
a few threats. When selecting specific remedial
measures, use the following two criteria:
1.
2.
The annual cost is to be less than the reduction
in expected annual loss that could be caused by
threats.
The mix of remedial measures selected is to be
the one having the lowest total cost.
The first criterion simply says there must be a cost
justification for the security program-that it returns
more in savings to the AIS facility than it costs. This
may seem obvious but it is not uncommon for an AIS
manager to call for a security measure, to comply with
higher authority security instructions and directives,
without first analyzing the risks.
The second criterion reflects the fact that a given
remedial measure may often be effective against more
than one threat. See table 4-3.
Since a given remedial measure may affect more
Table 4-3.—Example of Remedial Measures by Threat Type
than one threat, the lowest cost mix of measures
probably will not be immediately obvious. One
possible way to make the selection is to begin with the
threat having the largest annual loss potential. Consider
possible remedial measures and list those for which the
annual cost is less than the expected reduction in annual
loss. Precision in estimating cost and loss reduction is
not necessary at this point. If two or more remedial
measures would cause a loss reduction in the same area,
list them all, but note the redundancy. Repeat the
process for the next most serious threat and continue
until reaching the point where no cost justifiable
measure for a threat can be found. If the cost of a
remedial measure is increased when it is extended to
cover an additional threat, the incremental cost should
4-17
