This edition first published 2018

First Edition Published: 2007

All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, except as permitted by law. Advice on how to obtain permission to reuse material from this title is available at http://www.wiley.com/go/permissions.

The right of Brian T. Bennett to be identified as the author of this work has been asserted in accordance with law.

Registered Office

John Wiley & Sons, Inc., 111 River Street, Hoboken, NJ 07030, USA

Editorial Office

111 River Street, Hoboken, NJ 07030, USA

For details of our global editorial offices, customer services, and more information about Wiley products visit us at www.wiley.com.

Wiley also publishes its books in a variety of electronic formats and by print-on-demand. Some content that appears in standard print versions of this book may not be available in other formats.

Limit of Liability/Disclaimer of Warranty

In view of ongoing research, equipment modifications, changes in governmental regulations, and the constant flow of information relating to the use of experimental reagents, equipment, and devices, the reader is urged to review and evaluate the information provided in the package insert or instructions for each chemical, piece of equipment, reagent, or device for, among other things, any changes in the instructions or indication of usage and for added warnings and precautions. While the publisher and authors have used their best efforts in preparing this work, they make no representations or warranties with respect to the accuracy or completeness of the contents of this work and specifically disclaim all warranties, including without limitation any implied warranties of merchantability or fitness for a particular purpose. No warranty may be created or extended by sales representatives, written sales materials or promotional statements for this work. The fact that an organization, website, or product is referred to in this work as a citation and/or potential source of further information does not mean that the publisher and authors endorse the information or services the organization, website, or product may provide or recommendations it may make. This work is sold with the understanding that the publisher is not engaged in rendering professional services. The advice and strategies contained herein may not be suitable for your situation. You should consult with a specialist where appropriate. Further, readers should be aware that websites listed in this work may have changed or disappeared between when this work was written and when it is read. Neither the publisher nor authors shall be liable for any loss of profit or any other commercial damages, including but not limited to special, incidental, consequential, or other damages.

Library of Congress Cataloging-in-Publication Data

Names: Bennett, Brian T., author.

Title: Understanding, assessing, and responding to terrorism protecting critical infrastructure and personnel / by Brian T. Bennett.

Description: Second edition. | Hoboken, NJ : John Wiley & Sons, 2018. | Includes index. |

Identifiers: LCCN 2017037746 (print) | LCCN 2017045214 (ebook) | ISBN 9781119237808 (pdf) | ISBN 9781119237815 (epub) | ISBN 9781119237785 (cloth)

Subjects: LCSH: Civil defense–United States. | Terrorism–United States–Prevention.

Classification: LCC UA927 (ebook) | LCC UA927 .U48 2018 (print) | DDC 363.325/170973–dc23

LC record available at https://lccn.loc.gov/2017037746

Cover image: © jaminwell/Getty Images

Cover design by Wiley

Contents

Preface

1 The Terrorist Threat

1.1 What Is Terrorism?
1.2 The History of Terrorism
1.3 The Motivation for Terrorism
1.4 Can the Use of Terrorism be Justified?
1.5 The Role of Media in Terrorism
1.6 The Role of Social Media in Terrorism
1.7 Encryption
1.8 Civil Liberty and Terrorism
1.9 Terrorism Statistics
1.10 Purpose of Terrorism
1.11 Goals of Terrorism
1.12 Case Study: Economic Effects of a Terrorist Attack
1.13 Objectives of Terrorism
1.14 The Terrorism Challenge
1.15 The Evolution of Terrorism
1.16 Terrorist Tactics
1.17 Difference between Terrorism and Insurgency
1.18 The Difference between a Terrorist Attack, a Criminal Event, and Suspicious Activity
1.19 Case Study: Crime versus Terrorism
1.20 Common Terms in Terrorism
1.21 Types of Terrorist Organizations
1.22 International Terrorism
1.23 Examples of International Terrorist Groups
1.24 Recent International Terrorist Attacks
1.25 Domestic Terrorism
1.26 Examples of Domestic Terrorist Groups
1.27 Recent Domestic Terrorist Attacks
References
Questions
Project

2 Critical Infrastructure

2.1 Introduction
2.2 Evolution of the Definition of Critical Infrastructure
2.3 Current Definition of Critical Infrastructure
2.4 Definition of Key Resources
2.5 Definition of Key Assets
2.6 Discussion of Critical Infrastructure
2.7 Soft Targets
2.8 Hard Targets
2.9 Cascading Effects from Interdependencies of Critical Infrastructures
2.10 Coordination of Critical Infrastructure Protection
2.11 Selection of Critical Infrastructure, Key Resources, and Key Assets
2.12 Identification and Selection of Soft Targets by a Jurisdiction
2.13 Target Attractiveness
2.14 Inventorying and Prioritizing Critical Infrastructure/Key Resources/Key Assets/ Soft Targets
References
Questions
Project
Appendix 2.1 Executive Order 13010 by President William J. Clinton
Executive Order 13010 of July 15, 1996
Appendix 2.2 Presidential Decision Directive 63 by President William J. Clinton
Presidential Decision Directive/NSC-63
Annex A: Structure and Organization
Lead Agencies
Annex B: Additional Taskings
Studies
Appendix 2.3 Executive Order 13228 by President George W. Bush
Executive Order 13228 of October 8, 2001
Appendix 2.4 Executive Order 13231 by President George W. Bush
Executive Order 13231 of October 16, 2001
Appendix 2.5 Homeland Security Presidential Directive 7 by President George W. Bush
Critical Infrastructure Identification, Prioritization, and Protection Purpose
Appendix 2.6 Presidential Policy Directive 21 by President Barack Obama
Critical Infrastructure Security and Resilience

3 Types of Terrorist Attacks

3.1 Introduction
3.2 Types of Destructive Events
3.3 Who Can Execute an Attack?
3.4 Ways in Which a Critical Asset May Be Attacked
3.5 Target Selection
3.6 Identifying Lucrative Targets
3.7 Characteristics of a Terrorist Attack
3.8 Results of a Successful Terrorist Attack
3.9 Terrorist Tactics
3.10 Case Study of a Terrorist Attack
3.11 The Interrupted Terrorist Plots
References
Questions
Project
Appendix 3.1 Executive Order 13636 by President Barack Obama Executive Order 13636 of February 12, 2013
Improving Critical Infrastructure Cybersecurity
Appendix 3.2 Presidential Policy Directive 21 by President Barack Obama
Critical Infrastructure Security and Resilience
Appendix 3.3 Presidential Policy Directive 41 by Barack Obama
United States Cyber Incident Coordination

4 Weapons of Mass Destruction

4.1 Introduction
4.2 History of Weapons of Mass Destruction
4.3 Why Use a Weapon of Mass Destruction?
4.4 Limitations of the Use of Weapon of Mass Destruction Materials
4.5 Indicators of a Possible Weapon of Mass Destruction Attack
4.6 Results of a Weapon of Mass Destruction Attack
4.7 How a Chemical, Biological, or Radiological Agent Can Enter the Body
4.8 Effectiveness of a Chemical, Biological, or Radiological Attack
4.9 Obtaining a Weapon of Mass Destruction
4.10 Questions about Weapons of Mass Destruction
4.11 Types of Weapons of Mass Destruction
4.12 Other Weapons Used by Terrorists
4.13 Weaponization of Chemical and Biological Agents
References
Questions
Project

5 The Terrorist's Preparation for an Attack

5.1 General
5.2 Target Considerations
5.3 The Terrorist's Investment
5.4 Example of Terrorist Financing
5.5 Eight Indicators of Terrorism
5.6 Raising Suspicion
5.7 Summary of Attack Process
References
Questions
Project

6 Risk and Threat Assessment

6.1 Introduction
6.2 Definitions
6.3 The Risk of Attack
6.4 Risk
6.5 Risk Management
6.6 Risk Assessment and Management Approach
6.7 Probability of Attack Occurrence
6.8 Consequences of a Successful Attack
6.9 The CARVER Assessment Tool
6.10 Threat and Hazard Identification and Risk Assessment Guide (THIRA)
References
Questions
Project
Appendix 6.1 Presidential Policy Directive 8 by President Barack Obama

7 The Security Vulnerability Analysis

7.1 Introduction
7.2 What is a Security Vulnerability Analysis?
7.3 The Purpose of a Security Vulnerability Analysis
7.4 Preparing to Conduct a Security Vulnerability Analysis
7.5 The Security Vulnerability Analysis Process
7.6 Administrative Functions in the Security Vulnerability Analysis Process
7.7 Risk Assessment
7.8 Preparing to Conduct a Threat and Risk Analysis
7.9 The Buffer Zone Protection Plan
7.10 The CARVER Target Analysis Tool
Reference
Questions
Project

8 Principles of Protective Security

8.1 Introduction
8.2 Prevention
8.3 Information Collection
8.4 Information Sharing
8.5 Risk Mitigation
8.6 Cost–Benefit Analysis
8.7 Situational Awareness
8.8 Security
8.9 Suspicious Activity
8.10 What Can Be Done to Protect People and Facilities
8.11 Conclusion
References
Questions
Project

9 Effective Security Countermeasures

9.1 Introduction
9.2 Counterterrorism Policy: National Security Strategy
9.3 Hardening and Strengthening
9.4 What Are Security Countermeasures?
9.5 Management of Change
9.6 Risk Management
9.7 Critical Asset Resiliency
9.8 Critical Infrastructure Protection
9.9 Protecting Building Environments from Airborne Chemical, Biological, or Radiological Attacks
9.10 All Hazards Protection
9.11 Cost–Benefit Analysis
9.12 Information Sharing and Analysis Centers
9.13 Private Sector's Responsibility
9.14 Protecting Critical Infrastructure, Key Resources, and Key Assets
9.15 Standoff Distance
9.16 Response to an Active Shooter
9.17 Preparing for Attacks on Transportation
9.18 Administrative Security Enhancements
9.19 Recommendations for Enhanced Security Through Various ISACs
References
Questions
Project
Appendix 9.1 Directive on National Continuity Policy, NSPD 51/HSPD 20, by President George W. Bush
National Continuity Policy
Appendix 9.2 Homeland Security Presidential Directive 8 by President George W. Bush
National Preparedness

10 General Emergency Response Considerations

10.1 Introduction
10.2 Definition of First Responder
10.3 Emergency Response Plans
10.4 Pre-incident Planning
10.5 Drills and Exercises
10.6 Emergency Response Priorities
10.7 Operational Risk Management
10.8 Situational Awareness
10.9 Homeland Security Presidential Directive 5
10.10 The Incident Command System
10.11 Determining Potential Outcomes
10.12 Approving the Level of Personal Protective Equipment
10.13 Developing a Plan of Action
10.14 Components of the Incident Command System
10.15 Media Relations
10.16 Evaluating Progress of the Plan of Action
10.17 Terminating the Incident
10.18 Critical Incident Stress
10.19 Family Preparedness
References
Questions
Project
Appendix 10.1 Homeland Security Presidential Directive 5 by President George W. Bush
Management of Domestic Incidents
Appendix 10.2 Incident Command System Form 208

11 Emergency Response to a Weapon of Mass Destruction Attack

11.1 Introduction
11.2 Use of a Weapon of Mass Destruction
11.3 The Emergency Scene as a Crime Scene
11.4 Size Up
11.5 The Secondary Device
11.6 Evacuation of Personnel in a Weapon of Mass Destruction Attack
11.7 Protecting Building Environments from Airborne Agents
11.8 Emergency Response Actions at the Scene of a Weapon of Mass Destruction Incident
References
Questions
Project

12 Homeland Security Laws, Regulations, and Standards

12.1 What Is Homeland Security?
12.2 2002 National Strategy for Homeland Security
12.3 The 2007 National Strategy for Homeland Security
12.4 Office of Homeland Security
12.5 The Department of Homeland Security
12.6 The Transportation Security Administration
12.7 The Chemical Facility Anti-Terrorism Standards
12.8 The Chemical Facility Anti-Terrorism Standards of 2014
12.9 Chemical Terrorism Vulnerability Information
12.10 CVI Authorized User Training
12.11 Protected Critical Infrastructure Information Program
12.12 Chemical Security Assessment Tool
12.13 CFATS Top Screen
12.14 Enhanced CFATS Tiering Methodology
12.15 Security Vulnerability Assessment
12.16 Site Security Plan/Alternative Security Plan
12.17 CFATS Facility Inspections
12.18 CFATS Ongoing Compliance
12.19 Regional Resiliency Assessment Program
12.20 Maritime Transportation Security Act
12.21 US Coast Guard Maritime Security Levels
12.22 Transportation Worker Identification Credential
References
Questions
Project
Appendix 12.1 Authorizing Statute for the Chemical Facility Anti-terrorism Standards Regulations (6 CFR Part 27)
Appendix 12.2 CFATS Appendix A, List of COI, and STQ
Appendix 12.3 CFATS Act of 2014
Appendix 12.4 US Coast Guard Facility Vulnerability and Security Measures Summary

Index

EULA

List of Tables

Chapter 1

Table 1.1
Table 1.2
Table 1.3
Table 1.4
Table 1.5

Chapter 2

Table 2.1
Form 2.1
Table 2.2
Form 2.2
Table 2.3
Table 2.4

Chapter 3

Table 3.1
Table 3.2
Table 3.3

Chapter 4

Table 4.1
Table 4.2
Table 4.3
Table 4.4
Table 4.5
Table 4.6
Table 4.7
Table 4.8
Table 4.9
Table 4.10
Table 4.11
Table 4.12
Table 4.13
Table 4.14

Chapter 6

Table 6.1
Table 6.2
Table 6.3
Table 6.4
Table 6.5

Chapter 7

Table 7.1
Table 7.2
Table 7.3

Chapter 9

Table 9.1
Table 9.2

Chapter 11

Table 11.1

Chapter 12

Table 12.1
Table 12.2
Table 12.3
Table 12.4

List of Illustrations

Chapter 2

Photo 2.1 This petroleum refinery is a piece of critical infrastructure.
Photo 2.2 Cruise ships are a key resource in that they play an important role in the global economy. In 2016, the cruise lines carried just under 23 million passengers, and in 2015, had worldwide revenues of $119.9 billion while employing approximately 939,000 full-time equivalent employees.
Photo 2.3 The Statue of Liberty is a key asset as it is a national monument.
Figure 2.1 Number of farms in the United States in 2012.
Photo 2.4 This fast food restaurant is an example of a soft target.
Photo 2.5 The Presidential limousine is an example of a hardened target. The car is made of steel, aluminum, titanium, and ceramic. A steel plate runs underneath the car to protect the occupants from explosives. The cabin is completely sealed, and there is an oxygen supply, in case of a biochemical attack. The tires are reinforced with Kevlar to make them puncture proof and have steel rims. The passenger doors are armored and 8 inches thick. The bulletproof windows are 5 inches thick (photo from www.leftlanenews.com).
Photo 2.6 There are over 5100 container ships in the world that carry an average of 3500 twenty-foot container equivalent units (TEUs). With approximately 30,000 seagoing containers being unloaded at US ports daily, the possibility exists that a terrorist organization could try to smuggle a WMD into the country through this pathway.

Chapter 3

Photo 3.1 A concern exists that an adversary may hijack a truck carrying hazardous materials, such as this one carrying flammable hydrogen gas, and use it as a weapon against a critical asset.

Chapter 4

Photo 4.1 Many commercial and industrial facilities have inadequate security systems in place to prevent theft of hazardous materials. For example, this facility, which handles large quantities of poisonous and flammable compressed gases, would not pose much of a challenge to an adversary attempting to acquire those types of gases for a nefarious purpose.

Chapter 6

Figure 6.1 The cycle of identification and protection of critical infrastructure, key resources, and key assets.
Figure 6.2 The THIRA process.
Figure 6.3 Components of the National Preparedness System.
Figure 6.4 Step 1 of the THIRA process.
Figure 6.5 Step 2 of the THIRA process.
Figure 6.6 Step 3 of the THIRA process.
Figure 6.7 Step 4 of the THIRA process.

Chapter 8

Figure 8.1 Situational awareness graphic.
Figure 8.2 Steps to ensure operational security.
Figure 8.3 The OPSEC process.
Figure 8.4 If You See Something, Say Something™ logo.
Figure 8.5 Types of suspicious activity. Source: FEMA course IS-906: Workplace Security Awareness, October 31, 2013 [7].
Figure 8.6 Rings of protection.

Chapter 9

Photo 9.1 Protective bollards are aligned to protect this building against a vehicle parking too close to it or crashing into it.
Photo 9.2 The deployment of armed US Coast Guard boats to escort merchant and cruise ships into and out of port is an example of Operational Security Countermeasures.
Figure 9.1 Perception of effectiveness of burglary deterents according to burglars: Percent of sample identifying factors that would cause them to avoid a target (N = 360). Source: Data from Blevins, 2012 [3].
Figure 9.2 Securing the outdoor air intakes is a critical line of defense in limiting an external CBR attack on a building. Source: CDC NIOSH [10].
Figure 9.3 The color-coded HSAS was replaced by the NTAS in 2011. (For a color version of this figure, please see the digital version of this book or visit https://en.wikipedia.org/wiki/Homeland_Security_Advisory_System).
Figure 9.4 The NTAS replaced the color-coded HSAS in 2011.
Figure 9.5 Example of an NTAS Bulletin.
Photo 9.3 In this photo of the White House, the lawn provides separation (standoff distance) between the street (where the threat might be) and the building (which is the critical asset to be protected).
Figure 9.6 A summary pocket active shooter card (courtesy of the US Department of Homeland Security).
Figure 9.7 The “Stop the Bleed” program involves three simple steps bystanders can take to keep an injured person alive until appropriate medical care is available. Most shooting victims die from blood loss.
Figure 9.8 The mission of the First Observer Plus is to provide transportation professionals with the knowledge needed to recognize suspicious activity possibly related to terrorism, guidance in assessing what they see, and a method for reporting those observations.

Chapter 10

Figure 10.1 Work zones.
Figure 10.2 The Incident Command System.

Chapter 11

Photo 11.1 The BioCheck® Powder Screen Kit, which can detect bacteria and toxins, is an example of a General Biological Indicator Field Test Kit.
Photo 11.2 The RAID™ is an example of a hand-held multiagent immunoassay that can detect bacteria, toxins, and viruses. Source: Courtesy of Alexeter Technologies, LLC.
Photo 11.3 The CDV 700 Geiger counter detects beta and gamma radiation, and some have been modified to detect alpha radiation.
Photo 11.4 M8 Paper can detect G, H, and V agents.
Photo 11.5 M9 Paper is adhesive backed tape that can be placed directly on PPE or other objects.
Photo 11.6 The M256 kit requires a sample to be mixed with various reactants which results in a color change to indicate the presence of chemical agents.
Photo 11.7 The MSA Altair is an example of chemical specific meter which can have sensors installed to detect specific gases such as chlorine or ammonia.
Photo 11.8 An example of colorimetric tubes with a hand pump which draws a pre-determined volume of air through the tube.
Photo 11.9 The Chemical Agent Monitor is a hand-held, automated device for monitoring chemical agent contamination on personnel and equipment. It can detect and discriminate between vapors of nerve and blister agents.
Figure 11.1 Sample bomb threat checklist. Source: Bureau of Alcohol, Tobacco, and Firearms.
Figure 11.3 Minimum protective distances for various explosive devices. Source: US Department of Homeland Security.
Figure 11.2 Establishing search zones for suspicious packages ensures all areas are checked. Source: From Bomb Threats and Physical Security Planning, Bureau of Alcohol, Tobacco, and Firearms, 1987.

Chapter 12

Figure 12.1 The original Office of Homeland Security seal.
Figure 12.2 The Department of Homeland Security (DHS) has a vital mission: to secure the Nation from the many threats we face.
Figure 12.3 Today, DHS will…
Figure 12.4 The TSA is part of the Department of Homeland Security and charged with protecting the nation's transportation systems.
Figure 12.5 TSA Pre✓® lets eligible, low-risk travelers enjoy expedited security screening. The program is available at participating US airport locations and for most international itineraries. TSA Pre✓® passengers can proceed through security checkpoints without removing their shoes, belts, and light outerwear and do not have to remove liquids, gels, and laptops from their carry-on bags.
Figure 12.6 This cover sheet must be inserted in front of and in back of all Chemical-Terrorism Vulnerability Information.
Figure 12.7 MARSEC security levels.
Figure 12.8 Sample TWIC card.

Preface

This book could serve as an introductory text for the student new to homeland security, as well as a valuable reference for the experienced security professional.

September 11, 2001 was a watershed moment in our nation's history. The attacks that occurred that day were our first taste of a significant international terrorist attack occurring in our homeland. Much like previous generations that can instantly recall where they were and what they were doing when Pearl Harbor was attacked or President John F. Kennedy was assassinated, many Americans have the same vivid recollections with regard to the September 11 attacks. The images of the World Trade Center Towers first being struck and then collapsing, the Pentagon in flames, and the crater in the Pennsylvania countryside resulting from the crash of United Flight 93 were forever seared in our memories thanks to real-time media reporting. Our way of life was forever changed on that fall morning. From that day forward, security issues now reign paramount in our daily activities. As an example, the most involved reorganization of our government, which led to the creation of the Department of Homeland Security, was a direct result of the September 11 attacks and an indication of the newfound importance of homeland security. Although international terrorism may be a new concept to some in America, terrorism has existed for thousands of years as illustrated in the many examples through this book. As our techniques for protecting the homeland evolve, so do the terrorists. As protective measures are developed and implemented, adversaries continue to come up with new ways to cause harm. For this reason, the field of homeland security will continue to be an important part of the activities the government, private sector, and individual citizens perform every day.

This book was written to assist organizations, both private and public, in identifying what is critical to them and worth protecting from hazards. All organizations must take appropriate actions to reduce risk and protect their critical assets. Although each organization will deem what is important to them, it should be remembered that when they are grouped together with other critical assets in an organization, a municipality, a region, or the nation, they may not maintain that same level of criticality or importance that warrants an expenditure of time, effort, and money to protect.

As this book may be used as a text for academic study, the end of each chapter contains questions and a project. The questions are designed to provoke thought about a particular topic, and can be used as the basis for discussion in a group setting. The project is designed to build on each previous chapter, culminating in a package of customized material that can be used as the basis of a protective program for specific critical assets.

Chapter 1, The Terrorist Threat, reviews the history of terrorism including international and domestic terrorist organizations, along with a selection of attacks that have been perpetrated over the past 50 years. By studying what has happened in the past, we can develop preventative measures against future attacks. Chapter 1 also includes some issues at the forefront today, such as the role of media in terrorism and the protection of citizen's civil liberties in the fight against terror.

Chapter 2, Critical Infrastructure, provides suggestions on how to identify critical infrastructure, key resources, and key assets. The principles and examples in this book apply equally regardless of organization or jurisdiction. Each organization or jurisdiction has a responsibility to identify their critical assets, assess the threat posed against them, and evaluate the risk that those critical assets may be degraded or destroyed. A new section in the second edition discusses how to ascertain how attractive a critical asset may be to a terrorist planning an attack.

In keeping with the all hazards theme of this book, Chapter 3, Types of Terrorist Attacks, introduces the reader to the three types of destruction events and how a critical asset may be adversely affected. However, emphasis is placed on the intentional destructive event that could be perpetrated by an adversary, including their tactics, whether they are an insider, outsider, or one working in collusion with an insider. The target selection processes, including basic screening methodologies that can be used to determine a critical asset's attractiveness as a target, are also provided. The second edition includes an expanded section on cyber terrorism, and the weaponization of the internet, which is rapidly becoming a significant issue that must be addressed.

The premise of this book is that critical assets should be protected from all hazards and all risks, not just terrorism. The principles covered are designed for all threats from minor criminal activity through the use of a weapon of mass destruction by a terrorist. Many of the basic principles that are applied to assessing and protecting a critical asset from being bombed by a terrorist can also be applied to reduce the likelihood of theft. The principles covered in a comprehensive emergency preparedness and response plan that address how to mitigate and recover from a terrorist attack can likewise be used to recover from the damage caused by a hurricane. There are various scenarios and case studies presented to assist in the implementation of an assessment and countermeasure process.

The most horrific attack a terrorist could initiate would involve a weapon of mass destruction, which is covered in Chapter 4, Weapons of Mass Destruction. These weapons, which would involve the use of a biological, chemical, or nuclear/radiological agent, or an incendiary or explosive device, would be truly devastating if executed properly. Therefore, an entire chapter is devoted to describing these weapons, and how a terrorist may go about turning an apparently innocuous or commonly available material into a weapon. Having this understanding will greatly assist in performing the vulnerability and risk assessment processes as well as developing appropriate security countermeasures. Weapons used by terrorists are limited only by the imagination. Commercial products used in our everyday lives can be used as unconventional weapons. The second edition includes a new section on some of these potential weapons.

Chapter 5, The Terrorists Preparation for an Attack, addresses the various pre-attack preparations an adversary may undertake before executing an attack. Included are eight potential indicators of terrorism; these indicators are the core of a training program for personnel to help them recognize that a plot may be afoot. The next logical step after conducting a vulnerability analysis will be to evaluate the risk of adverse consequences, and implement the appropriate level of security countermeasures.

Chapter 6, Risk and Threat Assessment, presents several examples of worksheets that can be used to assess asset criticality, asset value, threat analysis, and consequences of a successful attack. Risk and threat assessment and analysis techniques are also discussed, including examples of both qualitative and quantitative risk analysis.

Chapter 7, The Security Vulnerability Analysis, has been reformatted and expanded in the second edition to present a critical asset screening methodology and the process of conducting a security vulnerability assessment for all types of potential loss. Several examples and sample worksheets are provided.

Just as all organizations and jurisdictions have an obligation to assess their vulnerabilities and risks, they have an obligation to implement effective security countermeasures. These countermeasures can take many forms, and will certainly vary from organization to organization and jurisdiction to jurisdiction based on the threat and risk assessment.

Chapter 8, Principles of Protective Security, details the principles of protective security and introduces the concept of rings of protection. Rings of protection involve the use of several overlapping and complementary security measures that can be implemented to reduce vulnerabilities and hence risk.

Chapter 9, Effective Security Countermeasures, provides some basic guidance, examples, and templates for various security countermeasures that can be customized to fit specific applications. New sections in the second edition have been added to cover active shooter incidents and attacks on transportation systems.

Chapter 10, General Emergency Response Considerations, provides some basic principles of emergency response, including an introduction to the Incident Command System (ICS) and the National Incident Management System (NIMS). These basic principles are valid for any type of emergency situation.

Chapter 11, Emergency Response to a Weapon of Mass Destruction Attack, provides some basic guidance on how to respond to an incident involving the use of a weapon of mass destruction.

A new Chapter 12 has been added to the second edition, Homeland Security Laws, Regulations, and Standards. Information includes an overview of the Chemical Facility Anti-Terrorism Standards and the Maritime Transportation Security Act.

This second edition is prepared with the latest information concerning the threat and security countermeasures. Homeland security is a very dynamic field, with changes occurring on almost a daily basis. As such, we must never let our guard down, and must constantly maintain situational awareness of the world around us. It is only through the steadfast dedication and commitment of homeland security professionals that major attacks by international terrorist organizations have been thwarted.

There were many who have supported and encouraged me in this endeavor. To these behind-the-scene family and friends whose names do not appear in print, I extend my sincere appreciation and gratitude for their support.

To the practitioners in the field of homeland security, this work is submitted in the hope it will be a useful tool in strengthening our critical infrastructure and in helping to prevent casualties and loss in the future.

Woodbridge, NJ Brian T. Bennett

Understanding, Assessing, and Responding to Terrorism

Protecting Critical Infrastructure and Personnel

Dedication

Preface