Glossary of security terms

Any illegal, forcible capture of a person or group.

A process of evaluating the levels of acceptance the organisation has among different stakeholders in the environment.

An approach to security risk management that attempts to reduce or remove threats through building relationships with local communities and relevant stakeholders in the operating area and obtaining their goodwill and/or consent for the organisation’s presence and work.

An exercise to identify and analyse the actors/stakeholders in a given environment that are key to contextual understanding and that may affect an organisation’s security.

The practice of detecting surveillance, for example to determine if staff movements or facilities are being studied with malicious intent.

The seizure and detention of an individual by a formal authority (police or military) in connection with a crime, offence or infraction.

Chemical, biological, radiological and nuclear threats/weapons.

Interaction between military forces and humanitarian organisations/civilian actors necessary to promote humanitarian principles, secure access and protect aid workers and other civilians.

A hierarchical system used to quickly disseminate information to a large group by phone, text, email or other means.

A process of understanding the environment in which an organisation operates as a first step to identify potential security threats and vulnerabilities.

A set of pre-established procedures and measures adapted to the local context that guide staff in coordinating a rapid and effective response to specific security incidents or disruptions.

A group of vehicles (or ships) travelling together in an organised manner for mutual support and protection.

An event or series of events that significantly disrupts an organisation’s normal operations and has severe consequences for individual staff or the organisation, requiring extraordinary measures and immediate action from senior management.

An event or series of events that seriously threatens the welfare of personnel, potentially resulting in death, life-threatening injury or illness. A critical incident may be too severe to be handled through standard management structures, and requires additional support and capacities.

The exchange of information between humanitarian actors and military forces to prevent attacks on relief facilities, personnel and operations by notifying parties to a conflict about the locations and movements of humanitarian staff and activities.

The holding of a person against their will by a person or group but without formal charges, a clear timeline or conditions for their release.

A security approach that involves reducing or removing threats by posing a counter-threat that will deter or influence would-be aggressors.

Measures, strategies and processes that aim to mitigate risks related to the use of digital technologies and an individual’s and/or organisation’s digital presence and behaviours.

An organisation’s obligation (moral and legal) to the safety, security and wellbeing of the individuals carrying out its work.

An organisational process of identifying and managing all risks, including but not exclusive to security risk, that could impact its objectives, operations and stakeholders.

Withdrawing staff for security reasons to a place of safety across the international borders of a country.

The use of coercion, threats or intimidation to obtain money, property or actions from the target.

Provision of immediate assistance to an ill, injured or emotionally distressed person (‘psychological first aid’) until professional help is obtained.

Continued abusive or unwanted conduct directed at a person, which causes distress or discomfort.

Written or spoken content that targets a group or individual based on their inherent characteristics, such as ethnicity, religion or gender.

Temporarily ceasing regular project activities while having staff remain at the office, home or other safe location to avoid an emerging threat, or until conditions improve.

The holding of a person or group by force in a known location, such as in a siege situation, until specific demands are met.

Personal security training designed for staff working in high-risk environments, usually involving scenario-based training.

The close observation of individuals, assets or properties with malicious intent, such as planning for an attack.

The ability of humanitarian actors to reach affected populations, and affected people’s ability to access assistance and services.

The risks to staff as a result of their personal characteristics and how these are perceived.

An adverse security event which results in, or could result in, harm to staff, disruption to programmes and activities, or loss of or damage to the organisation’s assets or reputation.

The practice of protecting information from unauthorised access, theft, disclosure, disruption, modification or destruction.

The multiple interconnected identity factors of individuals that shape their personal risk profiles.

The forcible capture of a person or group who are held against their will in an unknown location until demands for a ransom payment or other concessions are met.

Medical evacuation. The movement of a patient by road, sea or air by specialist medical transport, with care provided en route, for the purpose of obtaining medical treatment in another location.

Protocols that the organisation expects all staff to follow to ensure the safety and security of assets, personnel and information.

Misinformation is inaccurate or false information that is shared without the intent to deceive. Disinformation is information that is deliberately false or misleading. Malinformation is true information that is taken out of its original context or manipulated in a way to mislead or cause damage.

Any formalised working relationship between two or more organisations to meet agreed objectives, as in the implementation of an aid programme.

A security risk management approach that places individuals at the core of security risk management activities and considers their personal risk profiles. It recognises the profile-specific risks that individuals face due to their intersectional identity, their behaviour, their role and organisation and the context in which they are working.

The unique set of risks an individual faces based on their intersectional identity, which is shaped in part by how their personal characteristics are perceived by others.

A private entity providing remunerated security services to individuals or organisations.

A measure of how much people’s lives or freedom from extreme suffering rely on the aid activity continuing.

A security approach that seeks to reduce staff exposure to certain threats through protective mechanisms and procedures.

An approach that integrates both psychological and social aspects of wellbeing, addressing the impact of relationships, environment and community on mental health.

Money, goods or services demanded or paid in exchange for the safe release of abducted individuals.

Withdrawing staff and assets from insecure locations to safer areas within the country, until the situation stabilises.

The level of risk remaining after all appropriate risk mitigation measures are taken.

The likelihood of something harmful happening, and the extent of that harm if it does.

A shared understanding of the amount and type of risk that an organisation is prepared to accept to meet its goals.

A multi-step analytical process through which organisations identify risks to their staff, assets, programmes and reputation, and evaluate them according to their likelihood and impact to determine their severity.

Evaluated risks, classified by their degree of severity in terms of likelihood and impact.

Actions to reduce risks by reducing the likelihood and the potential impact of harm.

Sharing responsibility equitably between organisational partners for the risks that affect them both.

The limit of acceptable risk, beyond which the organisation, or an individual, is unwilling to go.

The intentional or unintentional creation, transformation or shifting of risks from one actor to another.

Freedom from risk or harm as a result of unintentional acts (accidents, natural phenomena or illness).

A framework for security collaboration between the UN Security Management System (UNSMS), international NGOs and other international organisations globally, and in shared humanitarian response settings.

Freedom from risk or harm resulting from violence or other intentional acts.

An internal or external evidence-based review which assesses the effectiveness of the organisation’s security risk management and whether it is meeting its duty of care responsibilities to staff.

Organisations acting together to address common concerns regarding security and access, share information on incidents and risks and strengthen their collective risk management capacities.

Shared assumptions, values and beliefs that shape behaviour around security in organisations. Can be positive or negative.

The process of collecting and using information related to safety and security incidents to monitor trends and inform decision-making.

A system used to categorise and communicate the level of risk to staff in a specific context or location and to guide security risk management decisions, actions and measures in response to increasing insecurity (also referred to as security phases).

A location-specific document, or set of documents, outlining the measures and procedures in place to manage security, and the responsibilities and resources required to implement them.

A governance document that states the organisation’s approach to security and safety risks, the key principles underpinning this approach, and the roles and responsibilities all staff members have in managing risks.

An organisational system for assessing and mitigating risks and responding to incidents.

A set of policies, protocols, plans, mechanisms and responsibilities that supports the reduction of security risks to staff.

A staff member with responsibility for safety and security within their scope of work.

An organisation’s approach to managing security depending on the operating environment and the risks in that location, influenced by the organisation’s principles and values.

Any sexual act that is forced, coerced or happens without consent.

A set of step-by-step instructions to assist staff in undertaking routine operations or responding to specific situations in a way that maximises safety and security.

An emotional, cognitive, physical or behavioural reaction to pressures and challenging situations.

A focus on prioritising the needs, rights and safety of individuals affected by traumatic events. It emphasises respect, confidentiality, and autonomy, allowing survivors to make informed decisions while recognising their potential need for support through the recovery process.

Any event, action or entity with the potential to cause harm to personnel, programmes or assets, or hinder the achievement of aid objectives.

A process of identifying and analysing potential sources of harm in an operating environment.

A distressing or disturbing experience that overwhelms an individual’s ability to cope and has lasting adverse effects on their functioning and wellbeing.

A process of analysing the degree to which an organisation’s staff, properties and assets are exposed to threats.