Looking to decide between ASIS PSP prep and NIC’s facility security audit course this spring; I’m responsible for protocol development and want something that directly improves our threat modeling and post orders. If you’ve taken either, did it change how you structure risk matrices or conduct after-action reviews (e.g., during a 3-hour perimeter breach tabletop)?
But > you structure risk matrices or conduct after-action reviews (e.g., during a 3-hour perimeter breach NIC’s audit course had the most immediate impact: we added a “detection-to-action” time column to the matrix and ran a timestamped decision-owner log during tabletops, which tightened AARs and triggered two post order updates; PSP gave me broader framework language but it’s less corrections-specific — are you aiming for quick post-order fixes or the credential?
And nIC’s audit course moved the needle for us: we rebuilt the risk matrix with a “staffing/shift” factor and a single‑point‑of‑failure tag per control, so in breach tabletops we flag when the plan hinges on one gate operator, one radio, or one camera — felt like swapping binoculars for night‑vision. PSP helped me later with design‑basis threat and perimeter tech tradeoffs, but it wasn’t as immediately corrections‑specific. @lporter22 did you also add a quick “handoff clarity” check to AARs, or are you mainly deciding between the two tracks?
PSP gave me the framework to overhaul threat modeling (we shifted to a bow-tie view and layered detect-delay-respond), while NIC changed our after-actions the fastest — it felt like switching from 2D to 3D glasses. Concrete tweak either way: add a ‘control maturity (0–5) + failure mode’ column to your matrix and force a ‘what failed silently’ call-out at each inject. Caveat: if you want a recognized credential and broader frameworks, PSP pays off; if you need immediate procedure changes this quarter, NIC is quicker, @jameson_garcia72.