Leadership Solutions

COVID-19 Security Related Resources (Last Updated: April 2, 2021)

We have created these resources to provide security leaders strategies for COVID-19 issues around the corner or in a few months. We hope these save you time now and avoid being blindsided later.

Some issues may not seem to be security related but the "new normal" will allow the SOC/GSOC and access control to add value like never before. For example, the opportunity for security to help in tracking where employees (vendors, visitors, contractors) have been and tracing contacts. The SOC/GSOC is the 24x7, 365-point of contact for employee reporting, self-testing, or sudden changes to be implemented e.g., if a floor is contaminated. The uniform security force may get pulled into monitoring disinfecting services and effectiveness.

Future forward we will examine the smart campus that enables transaction processing to minimize exposure while reducing cost. Frictionless access control devices. Applications for detecting and reporting risk. And what if more people end up working at home permanently - how will we protect them in these small and distributed "facilities?"

image of a heart expressing our appreciation of COVID-19 frontline workers
Commentary from SEC Subject Matter Experts

This pandemic came as a great surprise to the world; there will be ample lessons-learned for most of us. We recommend starting AARs early in the course of this pandemic. - Keith Jones and Dan Sauvageau

Until a suite of effective COVID-19 treatments or vaccine are widely available you need to focus on measuring Security's contribution to virus risk mitigation and remediation efforts as well as anything that promotes or threatens business resumption and continuity. - George Campbell

"Regardless of people, process and technology risk mitigation choices, continuously improving cross-functional teams will continue to drive all-hazards awareness and next generation innovation solutions." - Francis D’Addario and Neil Johnston

"This is a critical time for Security to rise to the occasion to assist their company in managing this crisis and demonstrate their value over the long term. This can be done by demonstrating their considerable crisis management experience, talents, and 24x7 presence, leveraging their tools, delivering excellence, and offering creative solutions to novel problems to keep a company safe, secure, and successful." - Dan Sauvageau

"Cybercriminals and APT groups have done everything but shelter in place; they are moving boldly across the globe at internet speed while actively taking advantage of the COVID-19 pandemic to gain access to companies sensitive, proprietary, and customer information." - Keith Jones and Herb Mattord

"Security Leaders, most of whom have been amid the fray, leading their top executives and organizations through this crisis, now need to refocus on planning for the future and preparing their organizations for what may come." - Jeremy Baumann

"This pandemic, like other crisis events, will eventually dissipate over time. However, mental and physical health issues will likely linger-on well into the future. It is therefore critical that security leaders and other stakeholders consider their Duty of Care responsibilities." - Keith Jones

"Multi-national corporations have a lot to gain or lose from how quickly and effectively their operations can return to normal. India will likely be faced with even greater challenges than the U.S. when it comes to this pandemic. Security leaders and their risk mitigation colleagues must figure out how they will assess, prepare and respond to India’s attempt at resuming normal operations." - Dan Sauvageau

"The main emphasis of COVID-19 is, and must remain, mitigating the virus, but senior business leaders must also focus on keeping the company economically viable. Leaders must strike a balance between slashing costs and implementing a responsible plan that reduces the effectiveness of some security measures while maintaining the absolute minimum standards necessary to protect people, property, and company brand." - Keith Jones

"Most Security executives maintain a risk register as a tool to identify, assess and manage risk to acceptable levels. COVID-19 is diverting everyone’s attention has become a risk multiplier. We must not lose sight of our mission and pay attention to how current events are morphing the probability of threat and risk from internal and external adversaries." - George Campbell

"Security leaders and their operational risk mitigation colleagues learn valuable lessons from rigorous after-action reviews. Importantly, brand reputation and stakeholders agree that risk mitigation confidence relies upon continuous improvement. Our questions going forward must probe beyond what worked and what didn’t in the response to COVID-19. The answers and critical few prioritized adjustments are within our grasp right now and for the months to come." - Francis D'Addario

"The largest presence in every corporate security organization are the internal first responders from Security Operations. If the company is up and working, whether proprietary or contract, they are typically found at the gates, the lobbies on calls for service, in the GSOC answering calls or doing a host of other protective and service tasks for employees and the company. Every member of this cadre is in a position to put a face and example on commitment to service and responsibility. My advice to CSOs is to encourage, engage and compliment them for what they do every shift, every day." - George Campbell

"We have seen too often in recent weeks that organizations praise first responders as heroes but have in many cases failed to equip, train or otherwise communicate proven practices to mitigate pandemic. Anticipate needs. Provision. Consider asking dependent cross-functional personnel what they believe they need and communicate your provisioning broadly. Benchmarking proven practices and providing confidence feedback loops can pay dividends including attracting and retaining needed talent." - Francis D'Addario

Jump to: SEC Resources
Jump to: Tracking Sites/Resources
Jump to: Other Resources

SEC Resources

Expected Employee Response to Mandatory COVID-19 Vaccinations

Reimagine Risk and Security: Evolving Beyond COVID

SEC COVID Work From Home Guidance

Register for Return to Site: COVID-19 Risk Model reports

Phases of Pandemic with Action Items for Security (Version 2)

Addressing COVID-Related Complaints and Reporting

COVID-19 Decision Insight: The Importance of Conducting After-Action Reviews During the COVID-19 Crisis

The Top COVID-19 Concerns of Security Leaders

COVID-19 Decision Insight: Measuring Security Risk and Response to COVID-19

COVID-19 Technology Innovations: Access Control, Contact Tracing and Unified Risk Oversight

COVID-19 Security Response Tactics and Strategies to Consider for Business Resumption Plans

General Security Risk Mitigation Strategies Checklist for COVID-19 (Version 3)

COVID-19 Decision Insight: Cyberattacks Resulting from COVID-19 - Information Security Risks

SEC Security Barometer poll: How confident are you that Security has identified/addressed the issues and is prepared to return to business-as-usual after COVID-19 isolation is withdrawn? Instant results!

COVID-19 Decision Insight: Preparing for the Future - Adapting to the "New Normal" with COVID-19

COVID-19 Decision Insight: Addressing Employee Wellness and Duty of Care Responsibilities

COVID-19 Decision Insight: Multi-national Corporations with Operations in India

COVID-19 Decision Insight: COVID-19 and Security Cost-Cutting Measures

COVID-19 Decision Insight: How has COVID-19 Changed the Threat/Risk Register at your Company?

COVID-19 Decision Insight: How will COVID-19 Inform Your Future All-hazards Resilience?

COVID-19 - Are We Ready? GSOC Considerations and Implications

When Your Security Nightmare Comes True

When Emotions Run High: Dealing with Stress in Crisis Management

Structured Critical Incident Response (Parts 1-4)

Business Continuity Program (BCP) Checklist

Strategic News Related to Corporate Security

Return to top of page

Tracking Sites/Resources

Georgia Tech's COVID-19 Event Risk Assessment Planning Tool

Johns Hopkins University eSchool+ Initiative Analysis of School Reopening Plans

MultiState's resources on the state and local government response to COVID-19/coronavirus

Private Automated Contact Tracing

Massachusetts General Hospital COVID-19 Simulator

SafetyDetectives Coronavirus Live Update

US Chamber of Commerce Essential Critical Infrastructure Workforce Tracker

Wilhemsen COVID-19 Global Port Restrictions Map

TOPO.ai Interactive COVID-19 Map and Infection Data

John Hopkins Coronavirus COVID-19 Global Cases by the Center for Systems Science and Engineering (CSSE) at Johns Hopkins University (JHU)

Institute for Health Metrics and Evaluation COVID-19 Projections

Boston Children's Hospital HealthMap

Worldometers COVID-19 Coronavirus Pandemic

Return to top of page

Other Resources

John Hopkins Operational Toolkit for Businesses Considering Reopening or Expanding Operations in COVID-19

COVID-19 Healthcare Coalition

CISA Guidance on the Essential Critical Infrastructure Workforce

NACD Assessing Management’s Effectiveness in Responding to the COVID-19 Crisis: A Quick Checklist for Boards

CDC Fact Sheet: Closed Point of Dispensing (POD) Roles and Responsibilities

International Air Travel Association (IATA) Travel Bans

CDC COVID-19 Travel Recommendations by Country

US Department of State COVID-19 Country Specific Information

Return to top of page