Security Risk Assessment

• Site conducted

• Conducted on

  Date

• Prepared by

• Location
  Address

• Primary Station Category

  Flagship

  Commuter

  Local

  Regional

• Secondary Station Category

  Interchange

  Event

  N/A

• Background: The Security Intelligence Unit (SIU) is undertaking a program of Security Risk Assessments (SRA) and SRA Reviews for all Queensland Rail (QR) locations, Assets and Activities. All those outlined in the SRA Review were provided an opportunity to comment as part of the consultation process of this risk assessment.

• Scope: This SRAR includes consideration of security risks relating to the Queensland Rail location during the timeframe indicated in the Threat Assessment and the types of security incidents reported during that period. Security risks identified pertain to personnel (including customers), physical infrastructure, assets, procedures, and operations.

• Description:

• Station Maps

  Media

• Station infrastructure

  Media

Review previous Security Risk Assessment:

• Consider previous recommendations and/or Management Actions

• Consider any current maintenance request

• Identify what has been closed out and is still outstanding

• Review previous highest risk score and relevant controls

Review location influences:

• Are there any local organisation / places that could impact on behaviours at the station? E.g., schools / sporting associations / pubs / mental health / methadone clinics

CCTV by day / night check

• Damage to cameras

• Obstruction – signage / vegetation

• Camera Field of View / positioning

Physical Security

• Perimeter fencing

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Anti-climb

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Safe(s)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Doors

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Keys and locks

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Customer Service Window

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Lighting

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Signage

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

Crime Prevention Through Environmental Design (CPTED)

• Natural surveillance (i.e., vegetation, convex mirrors)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Pathways and access points

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Subways

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Overhead bridges

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Furniture

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• PosART

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

Security Technology

• CCTV Fields of View

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• CCTV by day

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• CCTV by night

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Alarms / Door lock-out

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

Personal Security

• Situational awareness

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Access to employee carparks

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Identified routes and routines

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Emergency contact numbers

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

Procedural Security

• Current security education collateral

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Security Incident Reporting (SIMS)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Violence Avoidance (ALERT)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Counter-Terrorism Awareness (CTA)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Self-Harm Recognition, Intervention and Awareness (SHRIA)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Armed Robbery (CODE A)

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Persons of Interest (POI) reporting

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• CCTV Guidelines

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

Enforcement

• Police / Authorised Officer / Mobile Patrols

  Compliant

  Compliant (Not Current)

  Non-Compliant

  N/A

• Physical Security:

• Crime Prevention Through Environmental Design (CPTED):

• Security Technology:

• Personal Security:

• Procedural Security / Security Education:

• Enforcement:

• Conducted on

  Date

• GENERAL SIMS INCIDENT ANALYSIS:

• MANAGED TRENDS OVER THE CURRENT PERIOD:

• ANALYST COMMENTS:

KEY STAKEHOLDERS ENGAGED

• Customer Service Manager (CSM)

• Group Station Master (GSM)

• Station customer service employees (SCS)

• Health & Safety Representative

Security Intelligence Unit (SIU)

• Compiled

  Sasa Powter

  Bec Fear

  Bree Johinke

  Matthew Robertson

• Reviewed

  Sasa Powter

  Bec Fear

  Bree Johinke

  Matthew Robertson

Manager Protective Security and Compliance

• Pete Sanderson

Security Program Team

• Wiremu Reweti

• Jade Marshall

Graffiti Management Team Leader

• Steven Pennycook

Other stakeholders engaged

• undefined

NETWORK SECURITY EDUCATION PROGRAM:

• The Security Risk and Education Unit delivered refreshers to SEQ employees in the last reporting period.

  Select ALERT – Violence Avoidance Self-Harm Recognition, Intervention & Awareness (SHRIA) Counter-Terrorism Awareness (CTA) Security Incident Reporting (SIMS)

  • ALERT – Violence Avoidance
  • Self-Harm Recognition, Intervention & Awareness (SHRIA)
  • Counter-Terrorism Awareness (CTA)
  • Security Incident Reporting (SIMS)

• The Security Risk and Education team will continue to provide security education to the group through the Security Education Program of Work and through ad hoc requests.

• LIKELIHOOD

  Rare

  Unlikely

  Possible

  Likely

  Certain

• CONSEQUENCE

  Insignificant

  Minor

  Moderate

  Major

  Severe

• This risk is assessed as

  Low

  Medium

  High

  Extreme

  N/A

• undefined

• Security Risk Evaluation:

• During the SRA site visit, vulnerabilities relating to Security were identified. These have been assessed and advice has been provided to the relevant stakeholders.

  Select Physical Security Crime Prevention Through Environmental Design (CPTED) Security Technology Personal Security Procedural Security Enforcement

  • Physical Security
  • Crime Prevention Through Environmental Design (CPTED)
  • Security Technology
  • Personal Security
  • Procedural Security
  • Enforcement

• Current controls that are in place have been assessed as

  Select Effective Substantially Effective Partially Effective Largely Ineffective NIL Controles approved (Enterprise Risk ONLY)

  • Effective
  • Substantially Effective
  • Partially Effective
  • Largely Ineffective
  • NIL Controles approved (Enterprise Risk ONLY)

• undefined

• Ongoing monitoring and reporting of all security incident types will continue, and reviews of the security risk will be ongoing as part of the Security Risk & Education Program of Work.