Threat Assessment & Mitigation

Bearstone’s threat, incident, alerts and reporting solutions are offered on a daily / weekly / monthly / quarterly basis, and are designed to provide continuous real-time updates of analysed information including:

Security incidents

Political and social events with risk factors

Early warning of emerging threats

Movement and presence restrictions

Relocation and evacuation notifications

Periodic threat and incident summaries

Post incident advice

The information is gathered through various sources, analysed to include the relevance, timeframe, likelihood, impact, and recommendations; and distributed to the recipients through internet or SMS communication channels. All the collected raw information is analysed by risk consultants and prepared in a tailored notification “Alert Notice”. Alert Notices include the highest possible concentration of relevant information within a short, digestible briefing document focused solely on actionable information. Alert Notices are sent with Time / Location / Threat Level metadata subject line, and the body text of the actual threat.

Case Study

Bearstone was tasked by a large European bank, with operations in several countries deemed as high-risk zones, to provide a 24/7 real-time threat alert system. The client was worried that the volatile political and security situation in the country would pose a threat to its staff and operations. Hence it required a rapid response intelligence system that would enable their in-house personal security details to react in time, in case a threat was deemed imminent.

Bearstone deployed an intelligence centre that provided 24/7 monitoring and reporting on predefined emergent factors. The base of our monitoring and analysis methodology includes the following key elements:

      • Monitoring Station – each station was equipped with sophisticated recording, clipping and processing capability allowing monitoring consultants to address, preserve, process, and translate the targeted information. Each monitoring station was linked to the database station and each piece of recorded information was stored with specific metadata assigned to it, as well as being translated into English.

      • Database Station – operating 24/7 and recording all inputs from the information outlets that were subject to the monitoring process. The database station was capable of monitoring and recording up to 50 different sources and had the capacity to store records for up to 12 months. After this period, the raw information was backed up and stored while the metadata remains available for up to 5 years for crosscheck and retrieval if required.

      • Analysis Station – staffed by an analyst. The analysis station received alerts when new records were posted in the database station. The analyst reviewed the information, prepared summaries and reports in a predefined format, and delivered them to the client.

  • The sources used in the collection phase included both OSINT and HUMINT. At the client’s request we used multiple communication channels for delivery of the threat alerts, analysis and reports: SMS, emails, and VoIP messaging.

    No serious threats, requiring exfiltration or evacuation of the client’s staff, occurred during the assignment. However, Bearstone’s client was provided with superior situational awareness of potential risks in real time. The client’s dedicated security team was primed to deploy on short notice, ensuring the highest possible level of safety for key client personnel.