Security Consulting Systems

The Vendor is required to provide security consulting services to support ongoing operation and development of their security program and systems.
- Security Risk Assessments & Prioritization
• Site and portfolio level assessments (facilities, yards, offices, arenas, water/wastewater, gravel pits, remote sites, etc.).
• Threat, vulnerability, and impact analysis; likelihood/consequence scoring
• Prioritized recommendation roadmap with 1–3-year plan.
• Alignment with relevant standards (e.g., risk management frameworks) and municipal policies.
- Policy, Standards & Procedure Development
• Corporate security policy, roles & responsibilities (governance model).
• Standards for access control, key control, visitor management, badging, contractor security, screening, elected official security.
• SOPs, post orders, incident reporting templates, and escalation matrices.
• Training and change-management materials (slide decks, job aids, toolbox talks).
- Incident Management & Readiness
• Incident response to playbooks (workplace violence, trespass, vandalism, bomb threat, cyber/OT crossover, utility disruptions).
• Tabletop exercises and post incident reviews (RCA, corrective actions, lessons learned).
• Business continuity interfaces (coordination with emergency management).
- Security System Design & Technology Advisory
• Concept of Operations and performance requirements for CCTV, card access, intrusion detection, duress alarm, perimeter, and integrations.
• Design drawings/specs, camera layouts and studies, storage calculations, privacy impact considerations, cybersecurity hardening requirements for physical security systems.
• Procurement support (technical specs, evaluation criteria), installation QA, and commissioning/acceptance testing.