Section 7 - Security Training and T

Section 7 - Security Training and Threat Awareness
Summary :
C-TPAT Program: Security Training and Threat Awareness Requirements
________________________________________
Audience: Merchandise Vendors

Overview
This section lists requirements to meet Target’s C-TPAT program at the facility level, specifically regarding security training and threat awareness. A threat awareness program should be established and maintained by security personnel to recognize and foster awareness of the threat posed by terrorists at each point in the supply chain.

The content in this section is organized by question number from the C-TPAT Security Checklist for ease of use.

Question 7.01.00: Does the facility have a documented threat awareness program for training workers in security issues relevant to their positions?

Requirements
A threat awareness program should be documented, trained, and logged by security personnel to recognize and foster awareness of security threats posed at each point in the supply chain. Security Training and Threat Awareness Program Procedures should include but not be limited to the following:
• Access Control
o Checking of all employees, visitors, vendors, truck/container driver’s identification or badges upon entering and exiting the facility.
o Seal verification on all containers entering and exiting the facility.
• Physical Security
o Periodic checks of the perimeter fencing to insure integrity
o All lights are working and coverage is adequate enough to eliminate shadows
o CCTV cameras are working and coverage is adequate on all access points and high value areas
o All alarms are in working order, all communication devices, e.g. radios, telephones, etc, are in working order.
• Personnel Security
o Ensure employees possess and display a valid identification badge
o Visitors and vendors must be properly signed in and out of the facility, and are properly escorted when in the facility.
o Background checks must be conducted on employees, in accordance to local, State and Federal laws, prior to hiring.
• Shipping and Receiving
o Ensure that the proper process of signing in and out of containers is being implemented and followed
o All front gate security personnel must be aware of:
 What is an acceptable seal
 How to respond/report all discrepancies and suspicious activity
 Know how to identify and respond to shipping document discrepancies that are not correct, and
 Recognize and challenge unauthorized individuals.
All employees must be trained on the policy/procedures that the company has in place to address an incident and how to report it, including the notification to Target through our Consolidator Incident reporting process.

Validation Criteria
• Written procedure to train all employees on the company’s security & threat awareness program.
• Documented employee training on the policy/procedures that the facility has in place to address an incident and how to report it, including the notification to Target.
• Training logs to ensure all employees are trained on the company’s security threat awareness program.
Question 7.01.01: Are key employees such as shipping and finished good storage and handling personnel made aware of procedures the company has in place to address a situation and how to report it?

Requirements
Factories should have a written procedure to address and report any shipping issues or illegal/suspicious activities to management and the importer/overseas consolidator. Additional
training should be provided to these team members. It should include but not be limited to:
• How to receive and open incoming mail and packages
• How to recognize tampered seals, cartons and documentation, identifying suspicious packages.
Written procedure should include an internal report containing but is not limited to the following:
• Who reported the incident?
• Where and when was this identified?
• Who reported the issue to Target’s overseas consolidator
• How was the incident resolved

Validation Criteria
• Written procedure
• Documented training
(7.01.02) Is periodic training being conducted at least annually?

Requirements
A written procedure should also be in place to ensure training is completed on an annual basis and logs are kept to all trainings.
Validation Criteria:
• Training logs to validate that training is taking place on an annual basis at a minimum
Questions 7.02.00-7.02.03: Does the security awareness program cover security issues including but not limited to: security procedures; challenging and removing unidentified persons to security or management personnel; security incident reporting?

Requirements
A written procedure should be in place to ensure all employees are trained on the company’s security and threat awareness program. Training should include but not be limited to:
• Security procedures should be put in place to conduct periodic checks of:
o Perimeter fencing to ensure integrity
o All lights are working and coverage is adequate enough to eliminate shadows
o CCTV cameras are working and coverage is adequate on all access points and high value areas
o All alarms are in working order, all communication devices, e.g. radios telephones, etc., are in working order.
• Procedures and training should be put in place to challenge and remove all unidentified persons. This should include but not be limited to:
o All employees of the facility are responsible for challenging unauthorized individuals
o Subject should be questioned about their presence within the facility
o Subject should be removed from the facility by security escort
o Threatening subjects should only be handled by security
• An incident report should be completed after the incident has taken place. The log book must be utilized to record all incidents and should include, but is not limited to:
o Date/time of incident
o Where incident took place
o Name of suspect
o How was the incident resolved
All employees must be trained on the policy/procedures that the company has in place to address an incident and how to report it, including the notification to Target through our incident reporting process.

Validation Criteria
• Written procedure on company’s security awareness program
• Documented training
• Training logs to ensure that employees are trained on this process