Engineering Standard

SAES-O-205 10 March 2012

Integrated Security System
Document Responsibility: Safety and Security Standards Committee

Saudi Aramco DeskTop Standards

Table of Contents

1 Introduction.................................................... 2
2 Conflicts and Deviations................................ 2
3 References..................................................... 2
4 General Requirements................................... 3

Previous Issue: New Next Planned Update: 10 March 2017

Page 1 of 6
Primary contact: Abu Alsaud, Ghasan Mahmoud Zaki on 966-3-8763400

Copyright©Saudi Aramco 2012. All rights reserved.

Document Responsibility: Safety and Security Standards Committee SAES-O-205
Issue Date: 10 March 2012
Next Planned Update: 10 March 2017 Integrated Security System

1 Introduction

1.1 This Standard covers mandatory requirements governing the design and
installation of security systems for Saudi Aramco industrial facilities classified
under SAES-O-201, Section 4.2.

1.2 This Standard shall be used in conjunction with Security Directive SEC-05
issued by the High Commission for Industrial Security (HCIS), Ministry of
Interior, Government of Saudi Arabia. The details of the requirements can be
found in SEC-05.

2 Conflicts and Deviations

2.1 All conflicts between Standards, Requisitions for Material, related

Specifications, Codes, Forms, Drawings and other documents shall be resolved
as per SAES-O-201, Section 2.

2.2 Any deviations from the provisions of this Standard shall be resolved as per
SAES-O-201, Section 2.

3 References

All referenced Specifications, Standards, Codes, Forms, Drawings and similar material
shall be of the latest issue (including all revisions, addenda and supplements) unless
stated otherwise.

3.1 Saudi Aramco References

Saudi Aramco Engineering Standards

SAES-A-112 Meteorological and Seismic Design Data
SAES-M-100 Saudi Aramco Building Code
SAES-O-201 Application of Security Directives
SAES-O-203 Security Gate
SAES-O-204 Security Lighting
SAES-O-206 Security Devices
SAES-P-100 - 199 Electrical Power Standard
SAES-Q-001 Criteria for Design and Construction of Concrete
Structures

Page 2 of 6
Document Responsibility: Safety and Security Standards Committee SAES-O-205
Issue Date: 10 March 2012
Next Planned Update: 10 March 2017 Integrated Security System

Saudi Aramco Standard Drawings

AA-036065-002 Building Elevation and Section, Typical Security
Support Building
AA-036065-003 Enlarge Plan / Elevation and Details, Typical
Security Support Building

3.2 Industry Codes and Standards

National Fire Protection Association (NFPA)

NFPA 70 National Electrical Code

National Electrical Manufacturers Association (NEMA)

IEC 60529 Degrees of Protection Provided by Enclosures
(IP Code)

Security Directives
SEC-05 Integrated Security System

4 General Requirements

4.1 Facilities shall be protected by an Integrated Security System (ISS) that shall
comply with the requirements of this standard.

4.2 The security systems selected for deployment at a facility shall be based on the
classification of the facility as shown below:

APPLICATION
SYSTEM
Class 1 Class 2 Class 3 Class 4
Intrusion Detection & Assessment System
(IDAS)  
Access Control System (ACS)  
Video Assessment & Surveillance System
(VASS)   
ID Management System (IDMS)    
Security Control Center (SCC)   
Plant Control Center ACS   

Page 3 of 6
Document Responsibility: Safety and Security Standards Committee SAES-O-205
Issue Date: 10 March 2012
Next Planned Update: 10 March 2017 Integrated Security System

4.3 The ISS shall be monitored 24 hours a day, seven days a week, in a Security
Control Center (SCC) by trained operators who will be familiar with the
procedures, limitations and capabilities of managing the ISS.

4.4 All Class 1 & 2 facilities shall deploy an Intrusion Detection & Assessment
System (IDAS) at the external perimeter fence. This IDAS shall have local
displays in the local gatehouse with adequate network connectivity, and
bandwidth, to transmit IDAS data to the primary monitoring facility at a
Regional Security Control Center (RSCC) which may be located remotely from
the facility.

The IDAS must be fully compliant with the existing Tailorable Integrated
Security System (TISS) environment currently used by Industrial Security
Operations (ISO). TISS provides a command and control environment that is
used to monitor, and control, all IDAS systems Kingdom-wide. All new IDAS
installations must seamlessly integrate into the TISS environment. Integration
of a new IDAS into the TISS environment shall be the responsibility of the
PMT.

The IDAS consists of perimeter sensors and cameras connected to a computer

system that will analyze and localize the sensor data, trigger an alarm when an
intrusion is detected and display pre and post alarm and live video from the
camera in the area where the alarm was triggered, to security personnel tasked
with monitoring the system. The details of its performance requirements can be
found in Section 4.2 of SEC-05.

Further details about IDAS/TISS requirements are available as specified in

Section 4.11 of SAES-O-201.

4.5 All Class 1 & 2 facilities shall deploy a Security Access Control System (SACS)
at gates leading into industrial facilities to manage access for personnel and
vehicles. The SACS shall seamlessly integrate into the existing SACS deployed
Kingdom wide and operated by ISO. The deployed SACS shall use existing
Saudi Aramco ID cards and shall be managed and configured using the existing
SACS installation.

SACS consists of local card readers or biometric readers, computer systems to

validate an access request and local displays to advise security personnel of
system status and access request status. This local SACS shall connect to the
central SACS Master Computer System (MCS) for data storage of all local
SACS logs and access data. The MCS shall be used for reporting, data
management and configuration. The details of its performance requirements can
be found in Section 4.3 of SEC-05.

Page 4 of 6
Document Responsibility: Safety and Security Standards Committee SAES-O-205
Issue Date: 10 March 2012
Next Planned Update: 10 March 2017 Integrated Security System

Class 3 & 4 facilities shall deploy a SACS system that can read Saudi Aramco
identification cards and authenticate access rights from the SACS MCS.
While the requirements at Class 3 & 4 facilities are less stringent then a fully
configured SACS, the requirement is to electronically authenticate access rights,
from a verifiable source, at these facilities.

Further details about SACS requirements are available as specified in Section 4.11
of SAES-O-201.

4.6 A Video Assessment & Surveillance System (VASS) shall be installed at

facilities as specified in Section 4.4 of SEC-05 as part of the integrated security
system. It shall include Closed Circuit Television System (CCTV) abilities to
monitor main gates, critical buildings and areas of the facility. The system shall
annunciate an alarm when the video signal from the camera is lost. It shall
operate on a dedicated, local network.

The VASS shall process the imagery using a video analytics system to detect
and annunciate threats. All cameras installed for VASS compliance shall have
geo-spatial coordinates that will allow accurate display on a Geographical
Information System (GIS) map at the SCC. Where needed the VASS shall
include a long range surveillance system, using active sensors, to detect
approaching targets.

The VASS shall comply with the requirements of Section 4.4 of SEC-05.

4.7 All computers installed in security systems shall follow specific guidelines in
order to ensure reliable operation. Section 4.6 of SEC-05 provides the specific
design constraints for security system computers, software and networks.

4.8 Security systems shall present an integrated view to security personnel.

This does not preclude individual system installation on physically discrete
computers as technology limitations may preclude the optimal solution of a
single, common hardware platform for all systems. Section 4.7 of SEC-05
provides specific requirements for system integration.

4.9 SEC-05 provides specific structural and location requirements for facilities that
house security systems.

Cooling systems for security system rooms shall not use any air handlers that
require chilled water air handlers in the security equipment room for operation.
All water sources shall be maintained external to the equipment room.

Transformers and telecomm equipment shall not be installed in the security

system equipment room. This is required to ensure that the security system

Page 5 of 6
Document Responsibility: Safety and Security Standards Committee SAES-O-205
Issue Date: 10 March 2012
Next Planned Update: 10 March 2017 Integrated Security System

equipment room can remain locked and access is only available to authorized
security personnel.

Plumbing, sewage or drainage for toilets or kitchens shall not be routed in the
security equipment room walls, ceiling or floors.

A typical layout for a support building to house security systems can be found at
http://standards.aramco.com.sa/ by entering the keyword Security in the search
box. AA-036065-002 and AA-036065-003 are two examples of standard
drawings for a support building that can be found on the website. Local IDAS
& SACS equipment shall be housed in such support buildings.

See Section 4.12 of SAES-O-201 for further information.

4.10 An access control system shall be installed at all plant control rooms as specified
in Section 4.9 of SEC-05. Any Class 1, 2 or 3 facility that has a plant control
room shall fully comply with this requirement. This ACS can be managed
locally or connected to SACS as desired by the proponent.

4.11 Section 4.10 of SEC-05 provides details in the design and operation of the
Security Control Center (SCC). Any facility that includes an SCC shall fully
comply with this requirement.

4.12 Security System related devices installed in enclosures in the field shall be
sealed to IEC 60529 or higher standards to protect them against the
environmental conditions specified in SAES-A-112. The level of protection
provided for an enclosure shall be clearly identified and referenced to an
internationally recognized standard. When requested by ISO acceptable proof
shall be provided to verify the classification.

4.13 All outer gates leading to major communities, major administrative or industrial
areas or facilities designated by ISO shall deploy a Plate Recognition System
(PRS) to monitor license plates of all vehicles entering and exiting the facility.
The PRS is a standard ISO system as referenced in SAES-O-201, Section 4.11.

4.14 Industrial facilities deploying SACS shall install a Radio Frequency

Identification System (RFID) to read vehicle mounted ID tags when the vehicle
approaches the process facility SACS gate. The RFID shall be fully integrated
with SACS.

The RFID is a standard ISO system as referenced in SAES-O-201, Section 4.11.

Revision Summary
10 March 2012 New Saudi Aramco Engineering Standard.

Page 6 of 6