Security Operations

A major utilities company has an ambitious remit from the public—upgrading critical infrastructure that serves tens of millions of homes and businesses across Australia.

The company’s real estate footprint is similarly vast, with high-rise buildings in the country’s biggest cities, to small but crucial infrastructure sites strategically placed in remote corners of the continent. Every day, more than 5,000 employees work to keep this infrastructure network running, with technicians constantly on the move, and employees travelling across the country.

Keeping the company’s many buildings secure and people safe is the responsibility of the Security Emergency Response Centre (SERC) team, which serves as the company’s real-time security information hub. When a security-related incident happens, the SERC needs fast, accurate and relevant information about that incident, to protect people and property.

Dataminr represents an important real-time information source for this company’s SERC.

Dataminr’s artificial intelligence platform processes publicly available information from over 200,000 data sources, including social media, blogs and web forums, IoT sensors, audio transmissions, and the deep/dark web.

Inside the SERC

This utility company opened its SERC in 2012, with the goal of monitoring security risks at 10 sites. Since then, the SERC has grown into a 24/7 centre with 15 employees, providing 18 distinct services. Major services now include:

  • Serving as the streaming information hub for the company, receiving live updates on potential risk events through email, phone and real-time alerting solutions like Dataminr
  • Monitoring building alarms and personal duress alarms
  • Monitoring closed-circuit surveillance cameras
  • Employee and executive travel safety
  • Operating a 24-hour security hotline, which acts as an internal version of 000
  • Carrying out welfare checks when build engineers are out after-hours, or haven’t returned to their home base in time
  • Escalating relevant information to the right stakeholders inside the company for action, and serving as the key information source when the company stands up an incident response team

The SERC has adopted cutting-edge technology, and today serves as a model for similar security operations centres in Australia. For example, they’re an early adopter of Honeywell Command Control Suite, which gives security analysts a single view of what’s happening across the company’s entire real estate footprint.

It also adopted electronic key cabinets, which the company uses to secure physical access to its network infrastructure racks. While many companies have just one electronic key cabinet, this utilities company has installed 190 across the country.

Risk in real time
Newsletter

Risk in Real Time

Sign up for our monthly newsletter for the latest on security and business trends, news and insights.

SUBSCRIBE

The Value of Faster Information

Real-time information is a crucial catalyst for action inside the SERC. In an interview, a SERC Security Advisor described a January 2017 incident where a man deliberately drove a car into pedestrians on Melbourne’s Bourke Street retail thoroughfare, killing 6 people and injuring more than 20 others.

In those chaotic early minutes, SERC analysts worked quickly to build an accurate picture of what was happening: Where had the attack occurred? Was it accidental or deliberate? Was the threat still active? Were company employees injured or needed help? Should the company send out an internal communication to nearby employees? Should it lock down and secure its buildings in Melbourne?

Someone called into the SERC’s security hotline, but had bad information—the location they reported was incorrect, as were the details, the security advisor said. Initial news reports were slow.

In 2018, SERC analysts experienced similar information challenges as they responded to another attack, coincidentally, again on Bourke Street. In that case, a different security software platform alerted the SERC to the attack hours after it had happened—too late to be helpful.

In September 2019, the SERC adopted Dataminr, which specializes in delivering fast, accurate and relevant information in real-time.

In one recent example, Dataminr alerted the SERC that a fire had broken out about 800 metres away from one of the company’s buildings in Adelaide. Using that information, SERC analysts called the building’s site manager, who had no idea there was a fire nearby. That early alert gave the team extra time to talk about evacuation plans if the fire threatened employee safety.

“When you look at Dataminr, my thinking is if it gives you even two minutes advance notice of an event, prior to anything coming through other media, that’s money well spent,” the SERC’s Senior Security Advisor said. “If we get an extra two minutes to make a decision, send comms out to staff or shut down a building, anything like that, it’s worth it.”

March 8, 2021
  • Security Operations
  • Corporate Security
  • Case Study

Related resources

Case Study

Ellie Mae

See how Ellie Mae's California-based security team uses Dataminr to protect employees in 9 offices worldwide.

Case Study

Pilgrims Risk Management Group

Pilgrims Risk Management Group uses Dataminr to protect people and assets for clients in some of the world’s most challenging environments.

Infographic

Risk In Real Time: Corporations Lack Confidence and Are Improvising Risk Preparedness

Real time information can provide a time advantage for security and risk professionals. Dataminr provides real time alerts, effective communication and visibility into crisis size and scope.