AS 4485.2:2021 pdf Security for healthcare facilities

AS 4485.2:2021 pdf Security for healthcare facilities
1.1 Scope
This Standard provides guidance and explanatory material to assist with the implementation of the
requirements of AS 4485.1.
1.2 Normative references
There are no normative references in this document.
NOTE Documents for informative purposes are listed in the Bibliography.
1.3 Terms and definitions
For the purpose of this Standard, the terms and definitions given in AS 4485.1 and the following
definitions apply.
1.3.1 attractive asset
item which is vital to the operations of the facility, has a high monetary value or is of a particularly
attractive nature (e.g. jewellery or drug holdings)
1.3.2 burglar resistant areas
areas which are secured in a manner suitable for the handling of money, drugs and other attractive
assets to a level which will resist entry by an experienced criminal deliberately trying to force entry
with suitable equipment
1.3.3 chief executive officer
CEO
position at that level of responsibility and authority immediately below the facility’s governing body or authority, or proprietor
1.3.4 intruder resistant areas
areas which are secured in a manner suitable for the handling and storage of property of value to the facility and hazardous materials, to a level that will resist attempted entry, either unintentional or by a person without appropriate skills and equipment
1.3.5 may
indicates the existence of an option
1.3.6 outreach services
any service which visits clients, or potential clients, in their homes or at an external site .
1.3.7 should
indicates a recommendation
1.3.8 video surveillance system
VSS
system consisting of camera equipment, monitoring and associated equipment for transmission and
controlling purposes, which may be necessary for the surveillance of a protected area
[SOURCE: AS/NZS IEC 62676.4:2020]
2.1 Governance
Healthcare facilities should have a centralized governance mechanism in place for coordination and
implementation of the security policy and procedures.
2.2 Security administrator
2.2.1 Formal delegation
The chief executive officer (CEO]) should formally delegate a person to be responsible for the
management of the security function for that facility (e.g. Security Administrator). Depending on the
size and complexity of the facility this person could perform the role in a full or part-time capacity.
Ideally, this person should be able to have direct access to the CEO, independent of any normal line
management reporting mechanism.
2.2.2 Role and responsibilities
The facility security administrator should-
(a) provide executive management with expert advice on security matters;
(b) identify, assess, manage and monitor security threats, vulnerabilities and consequences to
the facility’s workers, property and information;
[c) develop a security risk management plan to address the identified risks outlined in Section 3
and incorporating the requirements of the facility’s security governance mechanism;
[d) implement and manage the security function throughout the facility;
[e) develop and review security measures to control the risks to acceptable levels;
[f) monitor security arrangements to ensure that they are being applied properly and are
proving effective;
[g) liaise effectively with other agencies concerned with security matters;
(h) raise the awareness of workers and others about security matters; and
(i) provide advice to planning groups on refurbishment and new construction projects. .
NOTE Some jurisdictions may require that a person undertaking this role be licensed.
2.2.3 Policy coordination
The security administrator should establish a mechanism for developing, approving, disseminating and coordinating security policy, standards and procedures in an integrated manner throughout the facility.
2.2.4 Other sources of expert advice
While the security administrator should be capable of developing and managing the security programs, they should be aware of other sources of expert advice. Several avenues exist to provide security administrators with expert advice about physical security measures. These include the following:
(a) External (independent) consultants who can assist facilities in conducting a security risk assessment and provide expert advice about security measures. The consultant selected should have a demonstrated knowledge and experience in security.