Security Industry Association: Difference between revisions

Browse history interactively ← Previous editContent deleted Content addedVisual WikitextInline

Revision as of 22:27, 11 October 2020 editTrivialist (talk \| contribs)Extended confirmed users, Pending changes reviewers208,531 edits rm ®/™ (MOS:®) \| Cleaned up using AutoEd \| cutting down ext links← Previous edit		Latest revision as of 13:15, 30 August 2024 edit undoTheBezzle (talk \| contribs)Extended confirmed users922 edits added linksTag: Visual edit
(28 intermediate revisions by 16 users not shown)
Line 1:		Line 1:
	{{~~short~~ description\|U.S. trade association}}		{{Short description\|U.S. trade association}}
	{{~~about~~\|the trade association based in the United states\|the former body representing the financial securities industry\|Securities Industry Association\|the statutory body in the United Kingdom\|Security Industry Authority}}		{{About\|the trade association based in the United states\|the former body representing the financial securities industry\|Securities Industry Association\|the statutory body in the United Kingdom\|Security Industry Authority}}{{Third-party\|date=August 2023}}
		⚫	{{Use mdy dates\|date=September 2013}}

	{{Infobox organization		{{Infobox organization
	\| name = Security Industry Association		\| name = Security Industry Association
Line 47:		Line 47:
	\| num_staff =		\| num_staff =
	\| num_volunteers =		\| num_volunteers =
	\| website = ~~{{url\|http~~://www.securityindustry.org/}}		\| website = https://www.securityindustry.org/
	\| remarks =		\| remarks =
	}}		}}
⚫	{{~~use~~ mdy dates\|date=September 2013}}

	The '''Security Industry Association''' (SIA), based in Silver Spring, Maryland, is a U.S. trade association, founded in 1969, representing ~~electronic and physical~~ security solutions providers. The organization today represents nearly ~~900~~ firms and organizations in the security industry<ref>{{Cite news\|url=https://www.securityindustry.org/about-sia/\|title=About SIA {{!}} Security Industry Association\|work=Security Industry Association\|access-date=2018-07-31\|language=en-US}}</ref> and in 2017, the association expanded membership to include an academic category<ref>{{Cite news\|url=https://www.securityindustry.org/join-sia/membership-options/academic-membership/\|title=Academic Membership {{!}} Security Industry Association\|work=Security Industry Association\|access-date=2018-07-31\|language=en-US}}</ref> ~~open to students and faculty members.~~<ref>, Retrieved Sept. 3, 2013.</ref>		The '''Security Industry Association''' (SIA), based in Silver Spring, Maryland, is a U.S. trade association, founded in 1969, representing global security solutions providers. The organization today represents nearly 1,400 firms and organizations in the security industry,<ref>{{Cite news\|url=https://www.securityindustry.org/about-sia/\|title=About SIA {{!}} Security Industry Association\|work=Security Industry Association\|access-date=2018-07-31\|language=en-US}}</ref> and in 2017 the association expanded membership to include an academic category. Longtime CEO R. Walden Chace resigned under pressure in 2010 due to excessive spending and collaborations with Reed Exhibitions. <ref>{{Cite news\|url=https://www.securityindustry.org/join-sia/membership-options/academic-membership/\|title=Academic Membership {{!}} Security Industry Association\|work=Security Industry Association\|access-date=2018-07-31\|language=en-US}}</ref><ref>, Retrieved Sept. 3, 2013.</ref>

		⚫	Since 2010, SIA has presented Securing New Ground (SNG), an annual conference for executives in the security industry. The organization also produces the annual government security conference SIA GovSummit, which has addressed federal and state security topics, as well as national issues such a school security, and AcceleRISE, an annual conference for young security industry professionals presented by SIA's RISE community.
	SIA protects and advances the interests of its member companies by advocating pro-industry policies and legislation at the federal and state levels; creating open industry standards that enable integration; advancing industry professionalism through education and training; opening global market opportunities; and fostering collaboration with other like-minded organizations.<ref>, Retrieved Sept. 3, 2013.</ref>

	In ~~support~~ of ~~those~~ ~~goals,~~ ~~SIA~~ ~~sponsors~~ the ~~International~~ ~~Security~~ ~~Conference~~ ~~and~~ ~~Expo~~ ~~(ISC)~~ ~~trade~~ ~~shows—ISC~~ ~~West~~ ~~and~~ ~~ISC~~ ~~East—in~~ ~~partnership~~ ~~with~~ ~~ISC~~ ~~Events~~.<ref>, Retrieved Sept. 3, 2013.</ref><ref>, Retrieved Sept. 3, 2013.</ref>		SIA's industry activities generally fall under one of the following divisions of the association: Government Relations, Industry Relations, Learning & Development and Standards & Technology.<ref>, Retrieved Sept. 3, 2013.</ref>

			==Learning and development==
⚫	Since 2010, SIA has presented Securing New Ground (SNG), an annual ~~two-day~~ conference for executives in the security industry. The organization also produces the annual , which has addressed federal and state security topics, as well as national issues such a school security.

			SIA's learning and development team creates and presents training classes at various trade shows and conferences, including ISC West and ISC East. SIA develops professional development and industry training conference programs at ISC East and West each year under the brand of SIA Education@ISC.
	The organization is led by a and is supported by a . In November 2011, Don Erickson became the chief executive officer SIA following the hasty departure of R. Walden Chace for excessive spending and collaboration with Reed Exhibitions.<ref>. SecurityInfoWatch. Nov. 2, 2011. Retrieved Sept. 3, 2013.</ref> Previously, Erickson served as SIA Director of Government Relations.

			SIA's learning and development offerings also include the Security Project Management (SPM) training program, the Certified Security Project Manager (CSPM) credential program and the Security Industry Cybersecurity Certification (SICC) program.
	SIA's industry activities generally fall under one of three divisions of the association: SIA Education, SIA International Relations, SIA Government Relations and SIA Standards.<ref>, Retrieved Sept. 3, 2013.</ref>

			The SICC, developed by SIA with support from PSA Security Network and Security Specifiers, is the security industry's first credential focused specifically on cybersecurity for physical security systems. Becoming a designated SICC helps validate the skills required to support technical security installations according to industry best practices for electronic security and cybersecurity and aligning with clients’ organizational priorities and business objectives.
	==SIA Education==

		⚫	==Government relations==
	SIA Education orchestrates and presents training classes at various trade shows and conferences, including ISC West, ISC East and the ASIS International Annual Seminar and Exhibits, among others. At ISC and ISC East, SIA Education hosts professional development and industry training through SIA Education@ISC. These educational opportunities include presentations, lectures and demonstrations by industry leaders, public officials and other key actors in the security industry.<ref>, Retrieved Sept. 3, 2013.</ref>

		⚫	SIA Government Relations lobbies federal and state governments on measures that would affect the security industry while tracking and reporting on the progress of various legislative initiatives. Through its government relations initiatives, SIA has accomplished legislative and administrative advances. SIA lobbied for the enactment of legislation creating the GSA Schedule 84 Cooperative Purchasing Program. The Local Preparedness Acquisition Act (Public Law 110-248), signed June 26, 2008, authorizes state and local governments to purchase from GSA alarm and signal systems, facility management systems, firefighting and rescue equipment, law enforcement and security equipment, marine craft and related equipment, special purpose clothing and related services, according to GSA.<ref>, Retrieved Sept. 3, 2013.</ref>
	At ISC West 2017 in Las Vegas, SIA Education delivered 63 sessions at the Sands Expo on April 4–7. Key ISC West sessions included:
	* Hands-on Workshop: Creating Intelligent Physical Security Products Using AI and Deep Learning
	* How Drones and Video Technology are Redefining Situational Awareness
	* Data Security and Video Systems
	* Cybersecurity and Security Installations: Hardening IP Connected Physical Security Equipment

		⚫	SIA also lobbied for legislation (Public Law 111-360), signed by President Barack Obama in January 2011, that exempts external power supplies for security and life safety products from federal energy efficiency standards that apply to devices in no-load model. A SIA-led coalition that included both industry and environmental groups argued that, since security and life safety equipment must always be in active mode, an efficiency standard for no-load mode would make no sense.<ref>. May 30, 2012. Retrieved Sept. 3, 2013.</ref>
	At ISC East 2017 in New York City, SIA Education delivered 31 sessions at Javits Convention Center on Nov. 15-16 (40 percent more sessions than 2016). ISC East offered four hands-on workshops for the first time, enabling attendees to engage in practical exercises reinforcing details on physical security devices and sales training. Key ISC East sessions included:
	* The Protection of Times Square Plaza from Vehicle Attacks
	* U.S. Stadium Security: Could the Unthinkable Occur Here?
	* Securing the Entrance in a Converged World
	* The Evolution of Credentials and Its Use in the IT, OT and Physical Security Environment

			In July 2024, SIA signed a to members of both the ] and the ] opposing Section 828 of S. 4628, the ], entitled "Requirement for Contractors to Provide Reasonable Access to Repair Materials," which would require contractors doing business with the US military to agree "to provide the Department of Defense fair and reasonable access to all the repair materials, including parts, tools, and information, used by the manufacturer or provider or their authorized partners to diagnose, maintain, or repair the good or service."<ref>{{Cite web \|last=Koebler \|first=Jason \|date=2024-08-28 \|title=Appliance and Tractor Companies Lobby Against Giving the Military the Right to Repair \|url=https://www.404media.co/appliance-and-tractor-companies-lobby-against-giving-the-military-the-right-to-repair/ \|url-status=live \|archive-url=https://web.archive.org/web/20240829115850/https://www.404media.co/appliance-and-tractor-companies-lobby-against-giving-the-military-the-right-to-repair/ \|archive-date=2024-08-29 \|access-date=2024-08-29 \|website=] \|language=en}}</ref>
	At Securing New Ground (SNG) 2017, SIA Education programmed 14 sessions. Content focused on Security Megatrends and presenters delivered content on many areas including accessing and analyzing smart and big data, evolution of risk management and emerging connected services. The event offered networking opportunities and provided a valuable education experience, with presenters demonstrating subject matter expertise and engaging interest.

			The annual SIA GovSummit, hosted by SIA and organized by its government relations team, is a public policy and government security conference.
	SIA Education also offers the and the . The SPM program has been delivered as in-person classroom training that addresses the requirements of security projects and presents learning on core security system technologies.<ref>, Retrieved Sept. 3, 2013.</ref> SIA Education presents the 2-1/2 day Security Project Management training course to prepare for CSPM certification exam four or five times a year in various locations around the United States. It has also offered Security Project Management courses in partnership with the Canadian Security Association (CANASA).<ref>, Retrieved Sept. 3, 2013.</ref>

		⚫	==Standards and technology==
	The SPM class and the CSPM exam prepare project managers to develop a comprehensive project plan that includes realistic scope, schedules, budgets, reporting and processes. The course goes beyond basic principles and offers new and seasoned program managers a clear perspective on the importance of their role to stakeholders, and identifying risks that could hinder project success.<ref>, Retrieved Sept. 3, 2013.</ref>

		⚫	SIA's standards and technology team produces, maintains and advocates for technical standards that enable interoperability between security devices. SIA develops American National Standards Institute (ANSI)-accredited standards that promote interoperability and information sharing in the industry.
⚫	==~~SIA~~ Government ~~Relations~~==

			SIA's Open Supervised Device Protocol (OSDP) standard is an access control communication standard developed by SIA to improve interoperability among access control and security products. OSDP was approved as an international standard by the International Electrotechnical Commission in May 2020 and has been published as IEC 60839-11-5. SIA OSDP v2.2, which is based on the IEC 60839-11-5 standard, was released in December 2020.
	SIA Government Relations lobbies federal and state governments on measures that would affect the security industry while tracking and reporting on the progress of various legislative initiatives. SIA Government Relations organizes the participation of SIA Members in government affairs through five subcommittees and working groups, as well as an ad hoc planning committee and its Government Representatives Group.<ref>, Retrieved Sept. 3, 2013.</ref> The five subcommittees and working groups are the Biometrics and Identity Working Group, Critical Infrastructure Protection Subcommittee, GSA Policy Working Group, PIV Working Group and State and Local Policy Subcommittee.

			In 2023, researchers disclosed a suite of vulnerabilities that allow a ] to largely break OSDP even with its "Secure Channel" extension.<ref>{{Cite web \|last=Goodin \|first=Dan \|date=2023-08-09 \|title=Next-gen OSDP was supposed to make it harder to break in to secure facilities. It failed. \|url=https://arstechnica.com/security/2023/08/next-gen-osdp-was-supposed-to-make-it-harder-to-break-in-to-secure-facilities-it-failed/ \|access-date=2023-08-10 \|website=Ars Technica \|language=en-us}}</ref> For example the Secure Channel Base Key (SCBK), which encrypts the connection between each reader-controller pair, is itself sent in the clear from the controller to the reader when the reader first joins the network. The protocol is also vulnerable to a ]. They demonstrated splicing a covert attack device named Mellon into the network in about 60 seconds, so only a brief period of physical access to the devices may be needed. A variety of other flaws in the protocol make it difficult to secure.<ref>{{Cite web \|last=Petro \|first=Dan \|last2=Vargas \|first2=David \|date=2023-08-09 \|title=Badge of Shame: Breaking into Secure Facilities with OSDP \|url=https://www.blackhat.com/us-23/briefings/schedule/#badge-of-shame-breaking-into-secure-facilities-with-osdp-32762 \|access-date=2023-08-10 \|website=www.blackhat.com}}</ref>
⚫	Through its government relations initiatives, SIA has accomplished ~~some key~~ legislative and administrative advances ~~on behalf of the security industry~~. SIA ~~successfully~~ ~~implemented~~ the enactment of legislation creating the GSA Schedule 84 Cooperative Purchasing Program. The Local Preparedness Acquisition Act (Public Law 110-248), signed June 26, 2008, authorizes state and local governments to purchase from GSA alarm and signal systems, facility management systems, firefighting and rescue equipment, law enforcement and security equipment, marine craft and related equipment, special purpose clothing and related services, according to GSA.<ref>, Retrieved Sept. 3, 2013.</ref>

			SIA Standards developed and maintains the ANSI/SIA CP-01–False Alarm Reduction Standard. The standard generally specifies the design for controls of security alarm systems at the control panel. The specification focuses chiefly on the arming and disarming process.
⚫	SIA also ~~supported~~ legislation (Public Law 111-360), signed by President Barack Obama in January 2011, that exempts external power supplies for security and life safety products from federal energy efficiency standards that apply to devices in no-load ~~mode~~. A SIA-led coalition that included both industry and environmental groups argued that, since security and life safety equipment must always be in active mode, an efficiency standard for no-load mode would make no sense.<ref>. May 30, 2012. Retrieved Sept. 3, 2013.</ref>

			SIA also manages AG-01, the Architectural Graphics for Security Standard, which is a collection of architectural graphics for security intended for use by architects, building contractors, system integrators, electrical contractors and security managers who use CAD to produce construction drawings, shop drawings and installation/as-built drawings, and physical security system layouts.
	The annual SIA Government Summit, a two-day event organized by SIA Government Relations, connects the security industry with officials from Congress and the White House. In 2013, the SIA Government Summit featured keynote addresses from Connecticut Gov. Dannel Malloy and Rep. Michael McCaul, R-Texas, chairman of the House Homeland Security Committee, as well as insights from officials at the Department of Homeland Security, National Institute of Standards and Technology, General Services Administration and others.<ref>, Retrieved Sept. 3, 2013.</ref>

	SIA Government Relations publishes the State Policy Digest (SPD), a quarterly publication reporting on the progress of state legislation affecting the security industry, and the Fiscal Year Informer (FYI), a quarterly insert to ''Security Systems News'' examining federal funding and procurement issues.<ref>, Retrieved Sept. 3, 2013.</ref>

⚫	==~~SIA~~ Standards==

⚫	SIA ~~Standards~~ produces, maintains and advocates for technical standards that enable interoperability between security devices. SIA ~~Standards is a standards-developing organization accredited by the~~ American National Standards Institute (ANSI)~~.<ref>,~~ ~~Retrieved~~ ~~Sept.~~ 3, ~~2013~~.~~</ref>~~

	SIA Standards developed and maintains the ANSI/SIA CP-01–False Alarm Reduction Standard. The standard generally specifies the design for controls of security alarm systems at the control panel. The specification focuses chiefly on the arming and disarming process, which is responsible for generating many false alarms. The standard is chiefly used by manufacturers and security system installers. SIA last revised the standard in 2019 to add some clarifications.<ref>. SecurityInfoWatch. June 1, 2010. Retrieved Sept. 3, 2013.</ref>

	In 2012, SIA Standards released version 2.1.5 of the Open Supervised Device Protocol (OSDP) specification, allowing card readers, control panels and other security management systems to work together.<ref>, Oct. 17, 2012. Retrieved Sept. 3, 2013.</ref>

	In September 2013, SIA Standards kicked off its latest effort to define standards for management information bases (MIB) for networked security devices to communicate over Simple Network Management Protocol (SNMP).<ref>, July 23, 2013. Retrieved Sept. 3, 2013.</ref>

	==International presence==

	For much of its existence, SIA has operated only in the United States. But around 2010, SIA established a branch in Brazil, introducing it as SIA Brasil.<ref>, Retrieved Sept. 3, 2013.</ref> SIA Brasil used to present the annual ISC Brazil conference in São Paulo, Brazil, in partnership with ISC Events.<ref>, Retrieved Sept. 3, 2013.</ref>

	SIA is not associated with distinct international security associations that may have similar names, such as the ], the Irish Security Industry Association or the Australian Security Industry Association.

	==References==		==References==
	{{~~reflist~~}}		{{Reflist}}

	==External links==		==External links==
	* ~~, the association's official website~~		* {{Official website\|https://www.securityindustry.org/}}

			{{Authority control}}

	]		]

Latest revision as of 13:15, 30 August 2024

U.S. trade association This article is about the trade association based in the United states. For the former body representing the financial securities industry, see Securities Industry Association. For the statutory body in the United Kingdom, see Security Industry Authority.

This article may rely excessively on sources too closely associated with the subject, potentially preventing the article from being verifiable and neutral. Please help improve it by replacing them with more appropriate citations to reliable, independent, third-party sources. (August 2023) (Learn how and when to remove this message)

Security Industry Association
Abbreviation	SIA
Type	501(c)(6)
Legal status	Association
Purpose	Trade
Headquarters	Silver Spring, Maryland
Location	Silver Spring, Maryland
Region served	United States
Official language	English
Chief Executive Officer	Don Erickson
Main organ	Board of Directors
Website	https://www.securityindustry.org/

The Security Industry Association (SIA), based in Silver Spring, Maryland, is a U.S. trade association, founded in 1969, representing global security solutions providers. The organization today represents nearly 1,400 firms and organizations in the security industry, and in 2017 the association expanded membership to include an academic category. Longtime CEO R. Walden Chace resigned under pressure in 2010 due to excessive spending and collaborations with Reed Exhibitions.

Since 2010, SIA has presented Securing New Ground (SNG), an annual conference for executives in the security industry. The organization also produces the annual government security conference SIA GovSummit, which has addressed federal and state security topics, as well as national issues such a school security, and AcceleRISE, an annual conference for young security industry professionals presented by SIA's RISE community.

SIA's industry activities generally fall under one of the following divisions of the association: Government Relations, Industry Relations, Learning & Development and Standards & Technology.

Learning and development

SIA's learning and development team creates and presents training classes at various trade shows and conferences, including ISC West and ISC East. SIA develops professional development and industry training conference programs at ISC East and West each year under the brand of SIA Education@ISC.

SIA's learning and development offerings also include the Security Project Management (SPM) training program, the Certified Security Project Manager (CSPM) credential program and the Security Industry Cybersecurity Certification (SICC) program.

The SICC, developed by SIA with support from PSA Security Network and Security Specifiers, is the security industry's first credential focused specifically on cybersecurity for physical security systems. Becoming a designated SICC helps validate the skills required to support technical security installations according to industry best practices for electronic security and cybersecurity and aligning with clients’ organizational priorities and business objectives.

Government relations

SIA Government Relations lobbies federal and state governments on measures that would affect the security industry while tracking and reporting on the progress of various legislative initiatives. Through its government relations initiatives, SIA has accomplished legislative and administrative advances. SIA lobbied for the enactment of legislation creating the GSA Schedule 84 Cooperative Purchasing Program. The Local Preparedness Acquisition Act (Public Law 110-248), signed June 26, 2008, authorizes state and local governments to purchase from GSA alarm and signal systems, facility management systems, firefighting and rescue equipment, law enforcement and security equipment, marine craft and related equipment, special purpose clothing and related services, according to GSA.

SIA also lobbied for legislation (Public Law 111-360), signed by President Barack Obama in January 2011, that exempts external power supplies for security and life safety products from federal energy efficiency standards that apply to devices in no-load model. A SIA-led coalition that included both industry and environmental groups argued that, since security and life safety equipment must always be in active mode, an efficiency standard for no-load mode would make no sense.

In July 2024, SIA signed a letter to members of both the House Committee on Armed Services and the Senate Committee on Armed Services opposing Section 828 of S. 4628, the National Defense Authorization Act for Fiscal Year 2025, entitled "Requirement for Contractors to Provide Reasonable Access to Repair Materials," which would require contractors doing business with the US military to agree "to provide the Department of Defense fair and reasonable access to all the repair materials, including parts, tools, and information, used by the manufacturer or provider or their authorized partners to diagnose, maintain, or repair the good or service."

The annual SIA GovSummit, hosted by SIA and organized by its government relations team, is a public policy and government security conference.

Standards and technology

SIA's standards and technology team produces, maintains and advocates for technical standards that enable interoperability between security devices. SIA develops American National Standards Institute (ANSI)-accredited standards that promote interoperability and information sharing in the industry.

SIA's Open Supervised Device Protocol (OSDP) standard is an access control communication standard developed by SIA to improve interoperability among access control and security products. OSDP was approved as an international standard by the International Electrotechnical Commission in May 2020 and has been published as IEC 60839-11-5. SIA OSDP v2.2, which is based on the IEC 60839-11-5 standard, was released in December 2020.

In 2023, researchers disclosed a suite of vulnerabilities that allow a man-in-the-middle attack to largely break OSDP even with its "Secure Channel" extension. For example the Secure Channel Base Key (SCBK), which encrypts the connection between each reader-controller pair, is itself sent in the clear from the controller to the reader when the reader first joins the network. The protocol is also vulnerable to a downgrade attack. They demonstrated splicing a covert attack device named Mellon into the network in about 60 seconds, so only a brief period of physical access to the devices may be needed. A variety of other flaws in the protocol make it difficult to secure.

SIA Standards developed and maintains the ANSI/SIA CP-01–False Alarm Reduction Standard. The standard generally specifies the design for controls of security alarm systems at the control panel. The specification focuses chiefly on the arming and disarming process.

SIA also manages AG-01, the Architectural Graphics for Security Standard, which is a collection of architectural graphics for security intended for use by architects, building contractors, system integrators, electrical contractors and security managers who use CAD to produce construction drawings, shop drawings and installation/as-built drawings, and physical security system layouts.

References

"About SIA | Security Industry Association". Security Industry Association. Retrieved July 31, 2018.
"Academic Membership | Security Industry Association". Security Industry Association. Retrieved July 31, 2018.
Security Industry Association, Retrieved Sept. 3, 2013.
Security Industry Association, Retrieved Sept. 3, 2013.
GSA Schedule 84 Summary, Retrieved Sept. 3, 2013.
"SIA Files Comments with DOE on Energy Efficiency Rule". May 30, 2012. Retrieved Sept. 3, 2013.
Koebler, Jason (August 28, 2024). "Appliance and Tractor Companies Lobby Against Giving the Military the Right to Repair". 404 Media. Archived from the original on August 29, 2024. Retrieved August 29, 2024.
Goodin, Dan (August 9, 2023). "Next-gen OSDP was supposed to make it harder to break in to secure facilities. It failed". Ars Technica. Retrieved August 10, 2023.
Petro, Dan; Vargas, David (August 9, 2023). "Badge of Shame: Breaking into Secure Facilities with OSDP". www.blackhat.com. Retrieved August 10, 2023.

External links

Official website

Categories: