PRINCIPLES

OF

PHYSICAL SECURITY AND MANAGEMENT

1
1
 3
PERSONNEL &
DOCUMENTATION SECURITY
2
 Personnel security

Personnel security plays a crucial role in

organizations for various reasons. Its
primary purpose is to safeguard the
organization, its employees, and its assets
by ensuring that individuals with access to
sensitive information or critical roles are
trustworthy, reliable, and have the
organization's best interests at heart.

3
 Keselamatan kakitangan memainkan peranan
Keselamatan penting dalam organisasi atas pelbagai sebab.
Kakitangan/ Anggota- Tujuan utamanya adalah untuk melindungi
anggota Syarikat organisasi, pekerjanya dan asetnya dengan
memastikan individu yang mempunyai akses
kepada maklumat sensitif atau peranan kritikal
boleh dipercayai dan mengutamakan
kepentingan terbaik organisasi.

4
Key aspects, methods, benefits, and negative implications of
personnel security in organizations:

Significance and Purpose of Personnel Security:

•Protection of Assets: Personnel security helps protect

physical, intellectual, and financial assets, such as
proprietary information, trade secrets, equipment, and
funds, from theft, espionage, or misuse.

•Mitigating Insider Threats: It helps identify and prevent

potential insider threats, including data breaches, fraud,
and sabotage, by ensuring that employees have the
organization's trust.
5
Aspek utama, kaedah, faedah dan implikasi
negatif keselamatan kakitangan dalam organisasi:

Perlindungan Aset: Keselamatan

kakitangan membantu melindungi aset
fizikal, intelek dan kewangan, seperti
maklumat proprietari, rahsia
perdagangan, peralatan dan dana,
daripada kecurian, pengintipan atau
penyalahgunaan.

Mengurangkan Ancaman Orang Dalaman:

Ia membantu mengenal pasti dan
mencegah potensi ancaman orang dalam,
termasuk pelanggaran data, penipuan
dan sabotaj, dengan memastikan pekerja
mendapat kepercayaan organisasi
6
•Maintaining a Safe Work Environment: Personnel
security measures contribute to creating a safe work
environment by screening individuals to identify
those who may pose risks to colleagues or the
organization.
•Compliance: It helps organizations comply with
legal and regulatory requirements related to
employee background checks and data protection.
•Maintaining Reputation: Ensuring the integrity of
employees helps maintain the organization's
reputation and credibility, which can be crucial for
customer trust and investor confidence.
7
•Mengekalkan Persekitaran Kerja yang Selamat: Langkah keselamatan kakitangan
menyumbang kepada mewujudkan persekitaran kerja yang selamat dengan menyaring
individu untuk mengenal pasti mereka yang mungkin menimbulkan risiko kepada rakan
sekerja atau organisasi.
•Pematuhan: Ia membantu organisasi mematuhi keperluan undang-undang dan
peraturan yang berkaitan dengan pemeriksaan latar belakang pekerja dan perlindungan
data.
•Mengekalkan Reputasi: Memastikan integriti pekerja membantu mengekalkan reputasi
dan kredibiliti organisasi, yang boleh menjadi penting untuk kepercayaan pelanggan dan
keyakinan pelabur. 8
Methods for Ensuring Employment Security and Personnel Security:

•Background Checks: HR departments

conduct background checks on potential
employees to verify their qualifications,
employment history, criminal record, and
other relevant information.
•Reference Checks: Contacting previous
employers and personal references helps
confirm an applicant's suitability for the job.

9
Kaedah untuk Memastikan Keselamatan Pekerjaan dan Keselamatan Kakitangan:

Pemeriksaan Latar Belakang: Jabatan HR menjalankan semakan

latar belakang ke atas bakal pekerja untuk mengesahkan
kelayakan mereka, sejarah pekerjaan, rekod jenayah dan
maklumat lain yang berkaitan.

Semakan Rujukan: Menghubungi majikan terdahulu dan

rujukan peribadi membantu mengesahkan kesesuaian
pemohon untuk pekerjaan itu.

10
•Criminal History Checks: This involves
checking an applicant's criminal record to
identify any potential risks.
•Credit Checks: In some roles, especially
those related to finance, credit checks may
be conducted to assess an individual's
financial responsibility.
•Drug Testing: Some organizations conduct
drug tests as a condition of employment,
particularly in safety-sensitive positions.

11
Semakan Sejarah Jenayah: Ini melibatkan
pemeriksaan rekod jenayah pemohon untuk
mengenal pasti sebarang potensi risiko.

Semakan Kredit: Dalam sesetengah peranan,

terutamanya yang berkaitan dengan
kewangan, semakan kredit boleh dijalankan
untuk menilai tanggungjawab kewangan
individu.

Ujian Dadah: Sesetengah organisasi

menjalankan ujian dadah sebagai syarat
pekerjaan, terutamanya dalam kedudukan
sensitif keselamatan.
12
•Security Clearances: Certain roles may
require employees to obtain security
clearances, which involve thorough
background investigations and ongoing
monitoring.
•Training and Awareness Programs: HR
departments may implement security
training and awareness programs to
educate employees about the importance
of security and best practices.

13
Pelepasan Keselamatan: Peranan
tertentu mungkin memerlukan pekerja
mendapatkan pelepasan keselamatan,
yang melibatkan penyiasatan latar
belakang yang menyeluruh dan
pemantauan berterusan.

Program Latihan dan Kesedaran:

Jabatan HR boleh melaksanakan
latihan keselamatan dan program
kesedaran untuk mendidik pekerja
tentang kepentingan keselamatan dan
amalan terbaik.
14
Benefits of Initiating Personnel Security:

•Reduced Risk: Identifying potential

threats and risks early helps organizations
proactively reduce the likelihood of
security incidents.
•Enhanced Trust: Personnel security
measures enhance trust between
employees and the organization, fostering
a positive work culture.

15
Faedah Memulakan Keselamatan Kakitangan

Risiko Dikurangkan: Mengenal pasti potensi

ancaman dan risiko awal membantu organisasi
secara proaktif mengurangkan kemungkinan
insiden keselamatan.

Kepercayaan yang Dipertingkatkan: Langkah

keselamatan kakitangan meningkatkan
kepercayaan antara pekerja dan organisasi,
memupuk budaya kerja yang positif.

16
•Legal Compliance: It ensures that the
organization complies with legal and
regulatory requirements related to
employee screening and data protection.
•Protection of Intellectual Property:
Personnel security helps protect sensitive
intellectual property and trade secrets from
theft or espionage

17
Pematuhan Undang-undang: Ia memastikan
bahawa organisasi mematuhi keperluan undang-
undang dan peraturan yang berkaitan dengan
pemeriksaan pekerja dan perlindungan data.

Perlindungan Harta Intelek: Keselamatan

kakitangan membantu melindungi harta intelek
yang sensitif dan rahsia perdagangan daripada
kecurian atau pengintipan.

18
 Negative Implications of Not Initiating
Personnel Security:

•Security Breaches: Failing to vet

employees properly can result in security
breaches, data leaks, or insider threats
that can have serious financial and
reputational consequences.
•Legal Consequences: Non-compliance
with legal and regulatory requirements
can lead to legal penalties and lawsuits.

19
Pelanggaran Peraturan Keselamatan: Gagal
memeriksa pekerja dengan betul boleh
mengakibatkan pelanggaran keselamatan,
kebocoran data atau ancaman orang dalam
yang boleh membawa akibat kewangan dan
reputasi yang serius.

Akibat Undang-undang: Ketidakpatuhan

terhadap keperluan undang-undang dan
peraturan boleh membawa kepada penalti
undang-undang dan tindakan undang-undang
di mahkamah.

20
•Damaged Reputation: Security incidents
can damage an organization's reputation
and erode trust among customers,
partners, and stakeholders.

•Loss of Intellectual Property: Failure to

implement personnel security measures
can result in the loss of critical intellectual
property, affecting the organization's
competitive advantage.

21
•Reputasi Tercemar/Rosak: Insiden
keselamatan boleh merosakkan
reputasi organisasi dan menghakis
kepercayaan di kalangan pelanggan,
rakan kongsi dan pihak
berkepentingan.Kehilangan

•Harta Intelek: Kegagalan untuk

melaksanakan langkah keselamatan
kakitangan boleh mengakibatkan
kehilangan harta intelek yang kritikal,
menjejaskan kelebihan daya saing
organisasi.
22
•Safety Concerns: A lack of personnel
security can pose safety risks to employees
and the workplace.
•Productivity Loss: Dealing with security
incidents and their aftermath can divert
resources and impact productivity

23
Kebimbangan Keselamatan: Kekurangan
keselamatan kakitangan boleh menimbulkan
risiko keselamatan kepada pekerja dan tempat
kerja.

Kehilangan Produktiviti: Menangani insiden

keselamatan dan akibatnya boleh
mengalihkan sumber dan memberi kesan
kepada produktiviti

24
Conclusion:

In conclusion, personnel security is a critical aspect

of organizational security that helps protect assets,
mitigate insider threats, and maintain a safe and
trusted work environment.

Properly implemented personnel security

measures contribute to an organization's success
by reducing risks and enhancing trust, while
neglecting it can lead to security breaches, legal
consequences, and reputational damage.

25
•Kesimpulannya:

• Keselamatan kakitangan ialah aspek kritikal

keselamatan organisasi yang membantu
melindungi aset, mengurangkan ancaman orang
dalam dan mengekalkan persekitaran kerja yang
selamat dan dipercayai.

•Langkah keselamatan kakitangan yang

dilaksanakan dengan betul menyumbang
kepada kejayaan organisasi dengan
mengurangkan risiko dan meningkatkan
kepercayaan, sementara mengabaikannya boleh
membawa kepada pelanggaran keselamatan,
akibat undang-undang dan kerosakan reputasi.

26
Video: Cyber Phishing

27
Document Security

•Document security is of paramount

importance in organizations for
several reasons. Its primary purpose is
to protect sensitive information,
maintain confidentiality, and ensure
the integrity and availability of
documents. Here are the significance,
methods, benefits, negative
implications, and other relevant
information regarding document
security in organizations:

28
Keselamatan Dokumen:

Adalah amat penting dalam organisasi atas

beberapa sebab. Tujuan utamanya adalah
untuk melindungi maklumat sensitif,
mengekalkan kerahsiaan, dan memastikan
integriti dan ketersediaan dokumen.

Berikut ialah kepentingan, kaedah, faedah,

implikasi negatif dan maklumat lain yang
berkaitan berkenaan keselamatan dokumen
dalam organisasi:

29
Significance and Purpose of Document Security:

•Protection of Sensitive Information:

Document security safeguards
sensitive and confidential information,
such as trade secrets, financial data,
customer records, and proprietary
documents, from unauthorized access
or disclosure.
•Compliance: It helps organizations
comply with legal and regulatory
requirements related to data
protection, privacy, and information
security.
30
•Protection of Sensitive Information:
Document security safeguards sensitive and
confidential information, such as trade
secrets, financial data, customer records,
and proprietary documents, from
unauthorized access or disclosure.
•Compliance: It helps organizations comply
with legal and regulatory requirements
related to data protection, privacy, and
information security.

31
•Perlindungan Maklumat Sensitif:
Keselamatan dokumen melindungi
maklumat sensitif dan sulit, seperti rahsia
perdagangan, data kewangan, rekod
pelanggan dan dokumen proprietari,
daripada akses atau pendedahan yang tidak
dibenarkan.

•Pematuhan: Ia membantu organisasi

mematuhi keperluan undang-undang dan
peraturan yang berkaitan dengan
perlindungan data, privasi dan keselamatan
maklumat.

32
• Prevention of Data Breaches: Document
security measures mitigate the risk of data
breaches, which can result in financial losses,
legal consequences, and reputational damage.
• Preservation of Intellectual Property: By
protecting documents containing intellectual
property, organizations safeguard their
competitive advantage and innovations.
• Maintaining Trust: Document security helps
maintain the trust of clients, customers,
partners, and stakeholders who expect their
sensitive information to be handled responsibly.
33
Pencegahan Perosakan Data: Langkah keselamatan
dokumen mengurangkan risiko perosakan data,
yang boleh mengakibatkan kerugian kewangan,
akibat undang-undang dan kerosakan reputasi.

Pemeliharaan Harta Intelek: Dengan melindungi

dokumen yang mengandungi harta intelek,
organisasi melindungi kelebihan daya saing dan
inovasi mereka.

Mengekalkan Amanah: Keselamatan dokumen

membantu mengekalkan kepercayaan pelanggan,
pelanggan, rakan kongsi dan pihak berkepentingan
yang mengharapkan maklumat sensitif mereka
dikendalikan dengan penuh tanggungjawab. 34
Methods for Ensuring Information
and Document Security:
•Access Control: Implement access
controls, including user authentication
and authorization, to ensure that only
authorized individuals can access
sensitive documents.
•Encryption: Encrypt sensitive
documents both in storage and during
transmission to protect them from
unauthorized access.
•Regular Backups: Regularly back up
critical documents to prevent data loss in
case of accidental deletion, corruption,
or cyberattacks.
35
•Kawalan Akses: Laksanakan kawalan
akses, termasuk pengesahan dan
kebenaran pengguna, untuk memastikan
bahawa hanya individu yang diberi kuasa
boleh mengakses dokumen sensitif.

•Penyulitan: Sulitkan dokumen sensitif

dalam storan dan semasa penghantaran
untuk melindunginya daripada akses yang
tidak dibenarkan.

•Sandaran Biasa: Sentiasa sandarkan

dokumen kritikal untuk mengelakkan
kehilangan data sekiranya berlaku
pemadaman tidak sengaja, rasuah atau
serangan siber.
36
•Document Classification: Categorize
documents based on their sensitivity and
apply appropriate security measures
accordingly.
•Document Tracking: Use document
tracking and audit trails to monitor who
accesses, modifies, or shares documents.
•Password Protection: Secure documents
with strong passwords or passphrases, and
educate employees on the importance of
password security.

37
Klasifikasi Dokumen: Kategorikan dokumen
berdasarkan sensitivitinya dan gunakan langkah
keselamatan yang sesuai dengan
sewajarnya.Penjejakan Dokumen: Gunakan
penjejakan dokumen dan jejak audit untuk
memantau orang yang mengakses, mengubah suai
atau berkongsi dokumen.

Perlindungan Kata Laluan: Lindungi dokumen

dengan kata laluan atau frasa laluan yang kukuh,
dan mendidik pekerja tentang kepentingan
keselamatan kata laluan

38
•Data Loss Prevention (DLP) Tools:
Employ DLP tools to monitor and
prevent the unauthorized sharing of
sensitive information.
•Secure Printing: Implement secure
printing solutions to ensure that
confidential documents are not left
unattended at printers.
•Employee Training: Train employees
on best practices for document
security, including phishing awareness
and safe document handling.

39
Alat Pencegahan Kehilangan Data : Gunakan
alat tersebut untuk memantau dan menghalang
perkongsian maklumat sensitif tanpa
kebenaran.

Pencetakan Selamat: Laksanakan penyelesaian

percetakan selamat untuk memastikan
dokumen sulit tidak ditinggalkan tanpa
pengawasan di pencetak.

Latihan Pekerja: Latih pekerja tentang amalan

terbaik untuk keselamatan dokumen, termasuk
kesedaran pancingan data dan pengendalian
dokumen yang selamat.

40
Benefits of Initiating Information and Document Security:

•Data Protection: Ensuring document security

protects sensitive data from breaches and
cyberattacks.
•Legal Compliance: It helps organizations comply
with data protection laws, reducing the risk of legal
consequences.
•Trust and Reputation: Document security measures
build trust with clients and stakeholders and
safeguard the organization's reputation.
•Competitive Advantage: Protecting intellectual
property and proprietary documents maintains a
competitive edge.
41
•Perlindungan Data: Memastikan keselamatan
dokumen melindungi data sensitif daripada
pelanggaran dan serangan siber.

•Pematuhan Undang-undang: Ia membantu

organisasi mematuhi undang-undang
perlindungan data, mengurangkan risiko akibat
undang-undang.

•Kepercayaan dan Reputasi: Dokumen langkah

keselamatan membina kepercayaan dengan
pelanggan dan pihak berkepentingan serta
menjaga reputasi organisasi.

•Kelebihan Daya Saing: Melindungi harta intelek

dan dokumen proprietari mengekalkan kelebihan
daya saing.
42
Negative Implications of Not Initiating Information
and Document Security:

•Data Breaches: Failure to secure

documents can lead to data breaches,
exposing sensitive information and
damaging the organization's reputation.
•Legal Consequences: Non-compliance
with data protection laws can result in
hefty fines, legal actions, and regulatory
penalties.
•Loss of Trust: Document security
incidents erode trust among clients,
customers, and partners.

43
Kerosakan Data: Kegagalan untuk menjaga
dokumen boleh menyebabkan kerosakan
data, mendedahkan maklumat sensitif dan
merosakkan reputasi organisasi.

Akibat Undang-undang: Ketidakpatuhan

terhadap undang-undang perlindungan
data boleh mengakibatkan denda yang
besar, tindakan undang-undang dan
penalti kawal selia.

Kehilangan Kepercayaan: Insiden

keselamatan dokumen menghakis
kepercayaan di kalangan pelanggan,
pelanggan dan rakan kongsi.
44
•Financial Loss: Data breaches can result
in financial losses due to litigation costs,
fines, and loss of business.
•Reputational Damage: Security incidents
can have long-lasting reputational
damage that affects an organization's
bottom line.
•Loss of Intellectual Property: Failure to
secure intellectual property can lead to
theft or unauthorized use by competitors.

45
•Kerugian Kewangan: Kerosakan data
boleh mengakibatkan kerugian
kewangan akibat kos litigasi, denda dan
kerugian perniagaan.

•Kerosakan Reputasi: Insiden

keselamatan boleh menyebabkan
kerosakan reputasi berpanjangan yang
menjejaskan keuntungan organisasi.

•Kehilangan Harta Intelek: Kegagalan

untuk mendapatkan harta intelek
boleh menyebabkan kecurian atau
penggunaan tanpa kebenaran oleh
pesaing.

46
Conclusion

•In conclusion, document security is

crucial for protecting sensitive
information, complying with regulations,
maintaining trust, and safeguarding an
organization's reputation. Properly
implemented document security
measures reduce the risk of data
breaches and their associated negative
consequences, while neglecting them
can lead to significant financial, legal,
and reputational challenges.

47
Kesimpulan
Kesimpulannya, keselamatan dokumen adalah
penting untuk melindungi maklumat sensitif,
mematuhi peraturan, mengekalkan
kepercayaan dan menjaga reputasi organisasi.
Langkah keselamatan dokumen yang
dilaksanakan dengan betul mengurangkan
risiko pelanggaran data dan akibat negatif yang
berkaitan, sementara pengabaian mereka
boleh membawa kepada cabaran kewangan,
undang-undang dan reputasi yang ketara.

48
End of Session

49
4
9