International Scientific Journals
of Scientific Technical Union of Mechanical Engineering "Industry 4.0"

Critical infrastructure can be exposed to disruptive events and incidents caused by external or internal impacts. Some of these events are internally system-manageable, but others must be addressed through the additional application of appropriate security measures, which can be implemented through security systems.
The development of critical infrastructure security systems requires a careful definition of overall requirements, which in general is directly related to ensuring business continuity by determining the resilience of critical infrastructure elements. This publication presents in a systematized form the author’s experience in applying resilience assessment results as inputs to the development of CI security systems.

Achieving a comprehensive approach to the issue of resilience of entities that are critical to the proper functioning of the national economy requires the creation of a comprehensive framework addressing the resilience of critical entities to all hazards, whether natural or anthropogenic, accidental or intentional. For this purpose, good practice implies the use of European and international standards and technical specifications that are relevant for both security measures and resilience measures applicable to critical infrastructure.
Precisely, the presentation of updated information on a possible approach that requires innovation in the field of security and protection of critical infrastructure is the content of this publication.

Developing a coordinated and effective response to critical infrastructure (CI) threats, current and anticipated, requires achieving a higher overall level of resilience and protection. The growing interdependence between physical and digital infrastructure creates opportunities for malicious cyberspace actions targeting critical areas to disrupt functionality or damage physical infrastructure. In this regard, through the application of specific approaches to strengthen the resilience of CIs, it is possible to improve the capabilities to counter physical and hybrid threats.
Presenting an option for an effective response agai nst CI threats through the development of security systems is the content of this publication.

The identification and protection of critical infrastructure (CI), which provides essential services for the national and European markets, especially in key sectors of the economy, requires priority measures to be taken to increase its resilience. The concept of resilience is closely related to the ability of a CI to prevent, defend against, respond to, withstand, mitigate and absorb, adapt to, or recover from risk events. Here, both the organizational measures and the technical part of the security systems, developed according to the specifics of CI, play an essential role.
In this regard, this publication presents the framework of the author’s view on the relationship between organizational resilience and CI security.

Standard operating procedures describe the precise steps required to carry out the organization’s security tasks in the operation of security systems and are important both for maintaining the level of competence of personnel performing a particular security job and for training new employees. Reducing errors in security-related activities and mission-critical processes is at the core of these procedures. Also, providing information on identified gaps, together with a survey of emerging technologies, is expected to help critical infrastructure operators seek future capabilities to create security and optimize the content of standard operating procedures.
Precisely, the presentation of a variant of standard operating procedures for the functioning of security systems is the basis of this paper.

Research and innovation is the part of an organization’s business that shapes the ability of its management and staff to acquire knowledge, design, develop and improve products, services, technologies and processes. Realizing key partnerships in collaborative research and innovation are critical to long-term success for high-tech organizations, while at the same time key to improving business skills, expanding product and service portfolios, and delivering cutting-edge applied research in interest of the country’s security. Presenting some of the benefits of building key partnerships between organizations in the development of security systems is the content of
this publication.

Business models (BMs) are business plans used by an organization to create, deliver, and acquire value. There is a strong need in different areas of business to develop a better understanding of BM’s risks. The appropriate risk framework would support the full range of risk management capabilities, namely identifying key risks, quantifying and, finally, managing those risks.
Therefore, in developing the organization’s BM, it is necessary to create a better understanding of the risks associated with the development of security systems. The proposal for a variant of the BM risk profile framework for the establishment of security systems is the content of this publication.

The growing importance of business models (BM) is primarily due to significant changes in competitive conditions for business over the past two decades. The creation of BM in the development of security systems is a structured approach that is consistent with the characteristics of security objects.
At the same time, in the international aspect, in the field of intelligent security systems, the practice of systematic application of different levels of the Technology Readiness Levels (TRL) scale is required, which allows security systems technology to develop from concept to research, development and implementation. Iterations between different levels of TRL are possible, especially during the development phase.
Namely the study of the flexible application of BM in the development of security systems and their connection with the TRL i s the purpose of
this paper.

Joint scientific and applied research occupies its place as a major innovation process in the activities of scientific, educational and business organizations. The purpose of this approach is to gain access to external sources of technology (or other assets) and their integration into products and services to build security of critical infrastructure and strategic sites of national importance.
Partnerships in the development of security systems can bring added value to partner organizations, allowing them to use a wider network of promising assets and markets and helping them gain trust and prestige in society.
The presentation of a variant of structuring key partnerships in the development of security systems is the content of this p aper.

Joint research takes its place as a major innovation process. The aim is to build relationships through which to gain access to external sources of high technology (or other assets) and their integration into the products and services of business organizations.
The establishment and operation of Competence Centers in our country, such as QUASAR, plays a leading role in planning, structuring and negotiating these relationships with universities, small high-tech companies, mid-market companies and large companies. The proper development of the business models of the Centers of Competence plays an essential role in this direction
The purpose of this study is to present the impact of business models on two dimensions of joint research: cooperation as an alternative to successful relationships and business models as an effective tool for assessing the portfolio of opportunities and risk allocation.

Standard Operating Procedures are a common guide to the organization’s activities. Their development and use are an integral part of a successful management system of an organization, as it provides staff with information on the proper per formance of a job and facilitates consistency in achieving the desired end result.
Standard Operating Procedures describe the exact steps needed to perform the organization’s security tasks and are important both for maintaining the level of competence of the staff performing a particular job and for training new employees. To reduce errors within organisation in terms of security-related activities and the mission-critical processes is the basis of this paper.

The creation of an intelligent security environment is one of the main trends in the coming years, as security technologies will be a significant part of the developed systems, incl. physical protection and system integration systems will play a key role in d ata collection to ensure critical infrastructure (CI) security. Organizations equipped with intelligent security systems provide increased operational efficiency by using system integration for data collection and allow systems to “communicate” and work in tandem to provide real-time information for emergency preparedness or execution.
In addition, data collected from advanced security technologies can be analyzed by system integrators to help senior CI management better understand how their organization works and make improvements based on the information gathered. Understanding the value of connecting different physical security systems, incl. and CI peripheral security systems, as well as ways to integrate them with other systems, is a key component in developing a smarter and more secure facility. Whether applying new CI solutions or upgrading compatibility solutions, system integration offers a variety of cost options that meet the specific needs of the business environment.
Last but not least, threat information is used to determine the security regime of the CI as a basis for developing common requirements and performance targets, as well as criteria for assessing the conformity or effectiveness of physical protection systems. Modern standardized approaches have been developed, summarizing the good international practices, for determining the goals and / or requirements for physical protection, in accordance with the specifics of CI and for preventing any level of potential impact both in the sites and for the population in the neighboring territories. The development of requirements for peripheral security systems as an element of intelligent CI security systems and their integration in the CI as early as possible is the subject of this publication.