Case studyFortune 100: 80% less compliance workRead the Story
RiskWatch
Updated May 14, 2026 · 10 platforms evaluated

Top 10 Physical Security Software for Transportation in 2026: A Buyer-First Comparison

Honest 2026 ranking of the 10 best physical security software platforms for airports, ports, rail, transit, and intermodal under TSA, ISPS, MTSA, and AAR.

By RiskWatch Editorial · Physical Security and Transportation Compliance Software Research

Verdict

TL;DR

If you run physical security for an airport authority, port, transit agency, freight rail operator, or intermodal terminal and need one tenant for TSA 49 CFR Part 1542, ISPS Code / MTSA 33 CFR Part 105, AAR RP-1001, and FTA Bus Security plans alongside multi-site TVRA scoring with crime-data overlay, RiskWatch ranks first on our weighted score. AlertEnterprise Guardian is the strongest pick when airport SIDA badging and insider-threat PIAM are the primary risk surface; Genetec Security Center remains the airport / transit VMS-plus-access default with the deepest ALPR and federation story; Milestone XProtect is the right call for ports and intermodal sites that want camera-hardware freedom; Bosch and Honeywell own the European airport and US federal-airport access-control install bases respectively; Lenel S2 OnGuard is still the federal-aviation incumbent; Avigilon Alta is the cloud-native challenger; Verkada fits smaller transit hubs and bus depots; Resolver covers transportation-incident management and investigations. Pick by the regulator you have to satisfy first, not by demo polish. Nine of the ten will not publish a price.

Pick by use case

Where each platform fits

Multi-framework TVRA at airport, port, rail, and transit scale
RiskWatch: TSA 49 CFR Part 1542 + ISPS Code / MTSA 33 CFR Part 105 + AAR RP-1001 + APTA SS-SIS + ASIS Facility Physical Security Control Standards pre-mapped in one tenant; multi-site rollup; crime-data overlay from four feeds.
Airport SIDA badging and insider-threat PIAM
AlertEnterprise Guardian: G2 Spring 2026 Grid Leader; deepest aviation PIAM with SIDA / sterile-area / AOA badge governance; Personal Risk Assessment (PRA) for crew, contractor, and concessionaire access.
Unified airport / transit VMS + access + ALPR
Genetec Security Center: Used at 40+ international airports per Genetec public references; AutoVu ALPR for parking and curbside; KiwiVision analytics; federated multi-site for transit agencies.
Open-platform VMS for ports and intermodal terminals
Milestone XProtect: Widest camera and sensor compatibility (8,000+ devices); XProtect 2026 R1 added long-term cloud storage and scheduled reporting; Canon-owned since 2014; common at ports and rail yards with mixed hardware estates.
European airport and rail unified security
Bosch Building Technologies: Bosch IP cameras + access + intrusion deployed at Frankfurt Airport and Deutsche Bahn stations; AVIOTEC fire detection for hangars; engineered for railway / aviation environmental tolerances.
US federal-airport and DoD access control
Honeywell Pro-Watch: Carrier-owned Honeywell Security Products until 2022 spin; Pro-Watch deployed at multiple FAA / TSA-screened airport perimeters; Mercury-board hardware compatibility; FIPS 201 PIV / CAC integration.
Federal aviation and large transit access control incumbent
Lenel S2 OnGuard: Carrier subsidiary; OnGuard deployed at major US airports including JFK and LAX terminals; deep video and access integration; SAFR facial recognition for aviation enrolment.
Cloud-native unified video and access for mid-size airports and transit hubs
Avigilon Alta: Motorola Solutions (NYSE: MSI); Alta launched 2023 combining Openpath access and Ava Aware video; AI-based analytics for unattended-bag and tailgating; cloud-managed for distributed transit estates.
Small-airport, bus-depot, and transit-hub cloud cameras + access
Verkada: Cloud-managed cameras, access, alarms, and intercom in one console; 1,800+ G2 reviews 4.5/5; fits regional airports, bus depots, and light-rail stations that lack on-prem server rooms.
Transportation incident management and investigations
Resolver: Kroll-owned since March 2022; G2 Best Software Awards 2025 honoree; strongest investigations workflow in the category; common in transit agencies tying incident reports to security risk register.

Physical security software for transportation is not one category. An airport authority needs TSA 49 CFR Part 1542 evidence and SIDA badging that survives an inspector visit. A port needs an ISPS Code / MTSA 33 CFR Part 105 Port Facility Security Assessment that the US Coast Guard captain of the port will sign off on. A freight rail operator wants AAR RP-1001 alignment plus tunnel and bridge perimeter coverage. A transit agency wants FTA Bus Security Program documentation and APTA SS-SIS-RP-001-10 alignment for mass-transit operations. An intermodal terminal wants the lot. The ten platforms in this ranking serve at least one of those briefs well, and none of them serves all five equally. We ranked them on a single weighted score so a transportation security director can find the right pick in under three minutes.

We considered 24 platforms across G2 Spring 2026 Grid for Physical Security, Capterra for security risk management, Gartner Peer Insights for video surveillance and physical access control, ASIS Foundation vendor directory, and the TSA-recognised aviation security technology list. We cut to ten by removing pure screening hardware (Smiths Detection, Rapiscan, Leidos), excluding services-only integrators (ICTS Europe, Allied Universal, Securitas), and dropping VMS-only platforms with no role on the assessment side or the access-control side. We added the two PIAM-led platforms airport authorities most commonly shortlist alongside VMS and TVRA tools. The result is ten platforms a real airport, port, rail, transit, or intermodal buyer might shortlist in 2026.

Pricing transparency is poor in transportation security specifically. Nine of the ten platforms here gate pricing behind a demo. Genetec publishes Security Center SaaS pricing per channel and per door. The other nine, including RiskWatch, are quote-only. Transportation deals are also longer than commercial deals because federal review (TSA, USCG, FAA, FRA, FTA) typically adds 60-120 days to procurement. We triangulated the opaque vendors from public third-party teardowns and dated each estimate. The methodology block at the bottom of this page spells out the weights, the sources, and the conflict disclosure.

At-a-glance

Comparison table

The 10 platforms scored on the methodology weights at the bottom of this page. Pricing-transparency pill is the buyer-honesty signal.

RankProductBest forPricing transparencyG2Verdict
1RiskWatch
RiskWatch International
Transportation authorities running multi-modal TVRAs across airports, ports, rail, transit, and intermodal terminals against TSA, ISPS / MTSA, AAR, APTA, and FTA frameworks at the same time.Partial4.5/5
60+ reviews
TSA 49 CFR Part 1542 + ISPS Code + MTSA 33 CFR Part 105 + AAR RP-1001 + APTA...
2AlertEnterprise Guardian
AlertEnterprise, Inc.
Airport authorities running SIDA badging at scale, airlines governing crew and contractor access across multiple stations, and port authorities with TWIC / MTSA credentialing workflows.Opaque4.5/5
40+ reviews
Deepest aviation PIAM in the category; airport SIDA / AOA / sterile-area badge...
3Genetec Security Center
Genetec Inc.
Large airports, transit agencies, and port authorities that need one console for VMS, ACS, and ALPR with periodic TVRAs layered on via a separate tool.Partial4.4/5
320+ reviews
Industry standard for unified VMS plus access control plus ALPR in airports and...
4Milestone XProtect
Milestone Systems
Ports, intermodal terminals, rail yards, and airports that want maximum camera-hardware freedom and an open-platform VMS, with TSA / ISPS / AAR assessment delivered via a separate tool like RiskWatch.Opaque4.3/5
220+ reviews
Widest camera and sensor compatibility in the category (8,000+ supported devices),...
5Bosch Building Technologies
Robert Bosch GmbH (Building Technologies division)
European airports, EU and UK rail operators, and European port authorities that want a single-vendor stack engineered for industrial environments, with TVRA delivered via a separate platform.Opaque4.2/5
80+ reviews
Engineered for rail, aviation, and port environmental tolerances (temperature,...
6Honeywell Pro-Watch
Honeywell International / Carrier Global (security spin-out 2022)
US federal-aviation airports, DoD facilities, and federal-leasehold transportation properties that require FIPS 201 PIV / CAC access and that already have Honeywell or Mercury-board infrastructure.Opaque4.0/5
90+ reviews
FIPS 201 PIV / CAC card integration deployed at multiple US federal aviation airports
7Lenel S2 OnGuard
Carrier Global / LenelS2 (under Onity-LenelS2)
Major US airports, federal courthouses, and DoD facilities that already have Lenel S2 OnGuard infrastructure and that want the incumbent path with deep video and PIAM integrations.Opaque4.0/5
120+ reviews
Federal-aviation incumbent; deployed at major US airports (JFK and LAX terminals plus...
8Avigilon Alta
Motorola Solutions (NYSE: MSI)
Mid-size airports, transit hubs, light-rail stations, and intermodal terminals that want a cloud-managed unified video and access platform and that operate adjacent Motorola Solutions APX radio or CommandCentral CAD.Opaque4.3/5
250+ reviews
Cloud-native unified video + access + intrusion launched 2023; no on-prem server stack...
9Verkada
Verkada Inc.
Regional airports, bus depots, light-rail stations, transit operations centres, and small ports that want cloud-managed unified cameras and access with minimal IT lift.Opaque4.5/5
1800+ reviews
Cloud-native multi-site deployment with no on-prem server stack required; fits small...
10Resolver
Resolver, a Kroll Business
Transit agency police, airport law-enforcement and AOC teams, port authority security ops, and airline ground-operations teams that need investigations and incident management tied to a security risk register.Opaque4.3/5
200+ reviews
Strongest investigations and case-management workflow in the category; transit-agency...
Calculator

Estimate the licence cost

Drag the slider to your headcount. Estimates use each vendor's published or triangulated tiers. Opaque vendors show Contact sales.

500
11.3k2.5k3.8k5k
RiskWatch
Professional (≤ 1,000 employees)
$36,000/yr
AlertEnterprise Guardian
Guardian Express (est.) (quote-only tier)
Contact sales
Genetec Security Center
Airport / transit on-prem (est.) (quote-only tier)
Contact sales
Milestone XProtect
XProtect Corporate (est.) (quote-only tier)
Contact sales
Bosch Building Technologies
Mid-size site (est. via integrator) (quote-only tier)
Contact sales
Honeywell Pro-Watch
Mid-size facility (est. via integrator) (quote-only tier)
Contact sales
Lenel S2 OnGuard
Mid-size facility (est. via integrator) (quote-only tier)
Contact sales
Avigilon Alta
Airport / transit enterprise (est.) (quote-only tier)
Contact sales
Verkada
Transit / regional airport (est.) (quote-only tier)
Contact sales
Resolver
Mid-market (est.) (quote-only tier)
Contact sales

Estimates only. Opaque-pricing vendors do not publish list prices; bands are triangulated from public third-party sources dated 2026-05-14. Implementation services, module add-ons, and renewal escalators are extra.

Pick your own weights

Decision matrix

Default weights match the methodology at the bottom of this page. Drag the sliders to match your priorities and re-rank in real time.

20%

How quickly a non-technical control owner reaches first value

20%

Module coverage across ERM, IT, audit, TPRM, BC

20%

Price to value ratio at mid-market

15%

Quality and responsiveness of vendor support

15%

Handling 5,000+ employees, multiple entities, regions

10%

Breadth of native connectors and APIs

Weights sum: 100%
  1. 1
    RiskWatch
    Editorial rank #1
    8.82
  2. 2
    AlertEnterprise Guardian
    Editorial rank #2
    8.16
  3. 3
    Genetec Security Center
    Editorial rank #3
    8.15
  4. 4
    Avigilon Alta
    Editorial rank #8
    8.04
  5. 5
    Milestone XProtect
    Editorial rank #4
    7.99
  6. 6
    Resolver
    Editorial rank #10
    7.98
  7. 7
    Verkada
    Editorial rank #9
    7.79
  8. 8
    Bosch Building Technologies
    Editorial rank #5
    7.71
  9. 9
    Honeywell Pro-Watch
    Editorial rank #6
    7.50
  10. 10
    Lenel S2 OnGuard
    Editorial rank #7
    7.50
Switching cost

Migration matrix

Read row-to-column. Row = today's platform, column = tomorrow's. Colour reflects realistic switching effort, not vendor sales pitches.

From / To
RiskWatch
AlertEnterprise Guardian
Genetec Security Center
Milestone XProtect
Bosch Building Technologies
Honeywell Pro-Watch
Lenel S2 OnGuard
Avigilon Alta
Verkada
Resolver
RiskWatch.MMMHHHEEM
AlertEnterprise GuardianE.EEMMMEEE
Genetec Security CenterME.EEMMEEE
Milestone XProtectMME.EEEEEE
Bosch Building TechnologiesMEEE.EEEEE
Honeywell Pro-WatchMMEEE.EEEE
Lenel S2 OnGuardMMEEEE.EEE
Avigilon AltaHMMMHHH.EM
VerkadaHHHHHHHM.M
ResolverMEEEMMMEE.
Easy (E)Moderate (M)Hard (H)Source: per-vendor migration field with radar-profile fallback. Treat as a directional guide, not a quote.
Methodology

How we scored and why you should trust it

The methodology is the only thing keeping this page honest. Read it carefully and apply your own weights in the decision matrix above.

RiskWatch published this ranking. RiskWatch accepts no affiliate fees, sponsorship money, or paid placements on this page. RiskWatch is also in the ranking, at #1. Readers should weigh that disclosure against the published evidence on this page. We scored each of the ten platforms on six axes: Ease of Use including mobile and offline site walks at outdoor perimeters (20%), Feature Breadth covering TSA Part 1542 + ISPS / MTSA + AAR + APTA library depth (20%), Value including pricing transparency (20%), Customer Support (15%), Scalability across multi-site rollups for hub-and-spoke transportation estates (15%), and Integrations with VMS, PACS, ALPR, AVL, CAD, and federal credentialing systems (10%). Scores are 0-10 and calibrated within this category. Ratings reference G2 and Capterra figures pulled 2026-05-14. Pricing reflects the most-recent published or triangulated figures, also pulled 2026-05-14; where pricing is opaque we report a range based on two or more public third-party sources. We re-verify this page quarterly.

Weights used in the editorial ranking

Ease of use
20%
Feature breadth
20%
Value
20%
Customer support
15%
Scalability
15%
Integrations
10%
#1

RiskWatch

RiskWatch International · Founded 1993 · Annapolis, MD, USA

TVRA-first physical security software with TSA, ISPS / MTSA, AAR, and APTA libraries in one tenant.

Partial pricingG2 4.5 · Capterra 4.6 · 60+ reviews

Summary

RiskWatch ships a physical security risk assessment platform built around pre-mapped libraries for 40+ standards including TSA 49 CFR Part 1542 (airport security programs), Part 1544 (aircraft operator), Part 1546 (foreign air carrier), IMO ISPS Code and 33 CFR Part 105 / 106 (US MTSA port facility security), AAR Recommended Practice RP-1001 (rail), APTA SS-SIS-RP-001-10 (transit), FTA Bus Security, ASIS Facility Physical Security Control Standards, NERC CIP-014, NIST 800-53 PE, FEMA 426 and 452, ISC RMP, and C-TPAT. Likelihood pulls from four crime-data feeds (Cap Index CRIMECAST, Security Gauge, GlobalIncidentMap, World Aware). Customers include multiple US transit authorities, an East Coast port authority, and aviation customers. The product has been in the field since 1993.

Strengths
  • TSA 49 CFR Part 1542 + ISPS Code + MTSA 33 CFR Part 105 + AAR RP-1001 + APTA SS-SIS-RP-001-10 + FTA Bus Security all pre-mapped on day one in one tenant
  • Crime-data overlay from four independent feeds (Cap Index CRIMECAST, Security Gauge, GlobalIncidentMap, World Aware), every likelihood score traces back to its source and last-updated date
  • Browser-based mobile TVRA that works offline at perimeter fence walks, rail tunnels, and port jetties; syncs when cellular returns, no findings lost
  • Site Risk Cycle with ISO 31000 and NIST 800-30 semi-quantitative scoring, findings convert to tracked tasks with owners and proof-of-close
  • Single-tenant deployment option with US-only data residency for FAA, TSA, and USCG sensitive security information (SSI) handling
  • 30-day free trial with no credit card and full platform access, the only TVRA-first vendor on this list offering it
  • Multi-site rollup across hub-and-spoke transportation estates (one HQ plus 5-200 stations, terminals, or facilities) with year-over-year trend reporting
Weaknesses
  • Public pricing is opaque, quote-based and scaled by framework count and site count; marked partial because typical contract bands are published in the pricing calculator on this page
  • Not a VMS, access control, or ALPR system; integrates with Genetec, Lenel S2, Avigilon Alta, Bosch, Honeywell Pro-Watch, and Milestone via APIs and bulk imports rather than deep native connectors
  • Less aviation PIAM depth than AlertEnterprise Guardian, no native SIDA badge governance workflow; teams running AOA / sterile-area badge issuance combine RiskWatch with AlertEnterprise or Lenel S2
  • Brand recognition in transportation security specifically is lower than Genetec or Lenel S2 in airports, total G2 + Capterra review volume sits below 100
  • UI shows its operational heritage in some assessment-builder screens; competing newer entrants like Verkada have a more polished first-run experience for non-specialist users
Best for

Transportation authorities running multi-modal TVRAs across airports, ports, rail, transit, and intermodal terminals against TSA, ISPS / MTSA, AAR, APTA, and FTA frameworks at the same time.

Worst for

Single-terminal buyers who only need cameras and badge readers, no separate TVRA program; Verkada, Genetec, or Avigilon Alta is the better fit there.

Key features

  • Pre-built libraries for TSA 49 CFR Part 1542 / 1544 / 1546, ISPS Code, 33 CFR Part 105 / 106 (MTSA), AAR RP-1001, APTA SS-SIS-RP-001-10, FTA Bus Security, ASIS, NERC CIP-014, NIST 800-53 PE, FEMA 426 and 452, ISC RMP, C-TPAT
  • Crime-data overlay from Cap Index CRIMECAST, Security Gauge, GlobalIncidentMap, World Aware
  • Browser-based mobile site walks that work offline at remote perimeters and sync on reconnect
  • Site Risk Cycle with per-site cadence, recommendation register, and proof-of-close
  • Multi-site rollup dashboards at site, region, and authority level with year-over-year trends
  • Board-ready and regulator-ready report templates that pass a TSA, USCG, FAA, or FRA review
  • Single-tenant deployment with customer-owned data residency option (SSI handling)
  • 30-day free trial, no credit card, full platform access

Integrations

25+ native. Notable: Microsoft Entra ID (SAML SSO), Okta, Microsoft 365 / SharePoint, Cap Index CRIMECAST, Genetec, Lenel S2, Avigilon, Bosch, Honeywell Pro-Watch, Milestone (API + bulk import), Jira, Custom REST API.

Target size

100 to 25,000 employees · US · Canada · EU · UK · AU

#2

AlertEnterprise Guardian

AlertEnterprise, Inc. · Founded 2007 · Fremont, CA, USA

Physical Identity and Access Management for airport SIDA, port credentials, and crew governance.

Opaque pricingG2 4.5 · Capterra 4.4 · 40+ reviews

Summary

AlertEnterprise Guardian is the category leader in Physical Identity and Access Management (PIAM) and was named a Leader in the G2 Spring 2026 Grid Report for Physical Security. In transportation specifically, Guardian sits between airline HR systems, Active Directory, and airport PACS (Lenel S2, Genetec, Software House CCURE, Honeywell), enforcing SIDA / AOA / sterile-area badge policies and running Personal Risk Assessment (PRA) checks on crew, contractor, and concessionaire access. AlertEnterprise carries multiple major-airport reference customers in the US and EMEA. Strength is identity-driven aviation insider-threat governance; weakness is that the centre of gravity is access governance, not facility-level TVRA against TSA Part 1542 or ISPS Code.

Strengths
  • Deepest aviation PIAM in the category; airport SIDA / AOA / sterile-area badge lifecycle governance is native, not bolted on
  • G2 Spring 2026 Grid Leader for Physical Security category
  • Strong integration with airport PACS estate (Lenel S2 OnGuard, Genetec Synergis, Software House CCURE, Honeywell Pro-Watch)
  • Personal Risk Assessment (PRA) workflow with automated policy enforcement, badge expiration alerts, and insider-threat indicators
  • GenAI-powered identity reconciliation across airline HR, airport HR, contractor onboarding, and concessionaire records
Weaknesses
  • Centre of gravity is identity and access governance, not facility TVRA; TSA Part 1542 site assessments are not the primary workflow
  • Pricing is enterprise-tier and opaque; no published list, typical aviation deals are six-figure annual contracts
  • Implementation is consultant-heavy; airport PACS integration scope typically pushes deployment to 90-180 days
  • Less suitable for ports under ISPS Code or rail under AAR RP-1001 where the primary risk is perimeter and asset, not badge governance
  • Smaller G2 review volume than the largest GRC platforms; reference-customer pool is concentrated in aviation and Fortune 500 facilities
Best for

Airport authorities running SIDA badging at scale, airlines governing crew and contractor access across multiple stations, and port authorities with TWIC / MTSA credentialing workflows.

Worst for

Small regional airports, single-line transit agencies, or freight rail operators that do not have an existing PACS estate to govern; the platform is overspecified for that brief.

Key features

  • Physical Identity and Access Management (PIAM) for airport SIDA / AOA / sterile-area badging
  • Personal Risk Assessment (PRA) workflow with policy enforcement
  • Blended threat detection across IT, PACS, and Industrial Control Systems
  • Visitor, contractor, and concessionaire management
  • GenAI identity reconciliation across HR, AD, and aviation directories
  • Compliance reporting for TSA 49 CFR Part 1542 access provisions, NERC CIP physical-access controls
  • Real-time policy enforcement with automated provisioning and de-provisioning when badge expires
  • Audit-ready access certification workflow for TSA / USCG inspections

Integrations

35+ native. Notable: Lenel S2 OnGuard, Genetec Security Center, Software House CCURE, Honeywell Pro-Watch, Microsoft Active Directory, Workday, SAP SuccessFactors.

Target size

2,000 to 1,00,000 employees · US · Canada · UK · EU · APAC

#3

Genetec Security Center

Genetec Inc. · Founded 1997 · Montreal, Quebec, Canada

Unified VMS, access, ALPR, and intrusion deployed at 40+ international airports.

Partial pricingG2 4.4 · Capterra 4.6 · 320+ reviews

Summary

Genetec Security Center is the industry standard for unified physical security platforms in transportation. Genetec public references include over 40 international airports plus major transit agencies in North America and Europe; the platform ties video surveillance (Omnicast), access control (Synergis), automatic licence plate recognition (AutoVu) for airport parking and curbside, and intrusion into one console. The product is the right pick when the buyer's primary brief is unified real-time operations across cameras, doors, and ALPR; it is the wrong pick when the brief is a periodic TVRA against TSA Part 1542 or ISPS Code. Genetec is one of only two platforms in this ranking with public per-channel pricing for the SaaS tier.

Strengths
  • Industry standard for unified VMS plus access control plus ALPR in airports and transit; 40+ international airports per Genetec public references
  • AutoVu ALPR designed for airport curbside, parking, and toll-road environments; strong analytics across video, badge, and licence-plate data
  • Mature integration ecosystem with hundreds of camera and access control hardware manufacturers used in aviation and transit
  • Security Center SaaS publishes per-channel and per-door pricing, a partial-transparency advantage in a category dominated by quote-only
  • Federated multi-site architecture suited to hub-and-spoke airport-and-station estates
Weaknesses
  • Not a TVRA or assessment platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS question libraries
  • Hardware and licensing complexity scales with channel and door counts; G2 and Capterra reviewers consistently flag cost growth
  • Learning curve for new operators; multi-site administration in large airport estates becomes complex without dedicated administrator
  • Plug-in interfacing has reliability gaps per G2 reviewer commentary, especially with legacy aviation systems
  • Enterprise on-prem deployments at airport scale remain quote-only with long procurement cycles
Best for

Large airports, transit agencies, and port authorities that need one console for VMS, ACS, and ALPR with periodic TVRAs layered on via a separate tool.

Worst for

Transportation buyers whose primary brief is a TSA Part 1542 or ISPS Code assessment library; Genetec is a unified operations platform, not a TVRA platform.

Key features

  • Unified video management (Omnicast)
  • Access control (Synergis)
  • Automatic Licence Plate Recognition (AutoVu) for airport curbside and parking
  • Intrusion detection
  • KiwiVision analytics across video and LPR data
  • Mobile operator app for guard force and supervisors
  • Federated multi-site architecture suited to hub-and-spoke estates
  • Hardware-agnostic integration framework

Integrations

200+ native. Notable: Axis Communications, Bosch, HID Global, Mercury Security, AlertEnterprise Guardian, Microsoft Entra ID, ServiceNow.

Target size

500 to 2,50,000 employees · Global

#4

Milestone XProtect

Milestone Systems · Founded 1998 · Brondby, Denmark

Open-platform VMS for ports, intermodal, and rail with widest camera compatibility.

Opaque pricingG2 4.3 · Capterra 4.4 · 220+ reviews

Summary

Milestone Systems was founded in 1998 in Denmark and acquired by Canon in 2014. XProtect is the open-platform VMS standard, supporting the widest range of cameras and sensors in the industry. The 2026 R1 release added long-term cloud video storage, customizable scheduled reporting, a WebSocket-based PTZ API, and a redesigned LogServer interface. In transportation, XProtect is the right pick for ports and intermodal terminals with mixed-brand camera estates, freight rail yards with thermal and PTZ perimeter cameras, and any operator who wants camera-hardware freedom rather than a tightly coupled access-control suite. It does not ship a TVRA workflow.

Strengths
  • Widest camera and sensor compatibility in the category (8,000+ supported devices), hardware-agnostic by design and suited to mixed port and rail estates
  • XProtect 2026 R1 added long-term cloud video storage and customizable scheduled system reporting, useful for ISPS Code records retention
  • Open developer ecosystem with hundreds of third-party plug-ins including ALPR, thermal, and rail-perimeter analytics
  • Canon ownership provides stability; no PE renewal-pressure dynamic
  • Strong multi-site federated architecture with central log visibility for port-rail intermodal hand-offs
Weaknesses
  • Not a TVRA platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS assessment libraries
  • Assessment workflows require third-party plugins or external platforms like RiskWatch
  • Hardware-agnostic design means complexity scales with sensor mix; not turnkey like Verkada or Avigilon Alta
  • Quote-only pricing for enterprise tiers; no public list price at port or airport scale
  • Access control is integration-led, not native, unlike Genetec Synergis or Lenel S2 OnGuard
Best for

Ports, intermodal terminals, rail yards, and airports that want maximum camera-hardware freedom and an open-platform VMS, with TSA / ISPS / AAR assessment delivered via a separate tool like RiskWatch.

Worst for

TVRA-first transportation programs needing pre-built TSA Part 1542 or ISPS Code libraries; Milestone is a VMS, not an assessment platform.

Key features

  • Open-platform VMS supporting 8,000+ cameras and devices
  • Long-term cloud video storage (XProtect 2026 R1)
  • Customizable scheduled system reporting (XProtect 2026 R1)
  • WebSocket-based PTZ API for perimeter cameras
  • Multi-site federated architecture
  • Mobile alert thumbnails for iOS
  • Centralized log visibility (new LogServer)
  • Open developer ecosystem and plug-in marketplace

Integrations

500+ native. Notable: Axis Communications, Bosch, Hanwha Vision, Sony, Canon, Lenel S2, Genetec (via plug-in).

Target size

50 to 2,50,000 employees · Global

#5

Bosch Building Technologies

Robert Bosch GmbH (Building Technologies division) · Founded 1886 · Stuttgart, Germany

European airport and rail unified video, access, intrusion, and fire detection.

Opaque pricingG2 4.2 · Capterra 4.4 · 80+ reviews

Summary

Bosch Building Technologies is the security division of Robert Bosch GmbH. The portfolio combines Bosch IP cameras, access control (BIS / AMS), intrusion (B Series, G Series), and fire detection (AVIOTEC video-based smoke detection in hangars). Public references include Frankfurt Airport, several Deutsche Bahn stations, and European port facilities. The product is the right pick for European airports, rail, and ports that prefer a single-vendor stack engineered for industrial-temperature and rail-vibration environments. The platform is heavier on hardware than on assessment workflow; TVRA is handled via integration with a separate tool.

Strengths
  • Engineered for rail, aviation, and port environmental tolerances (temperature, vibration, dust); FCC Class A and IEC 61373 rolling-stock compatibility on rail-rated devices
  • AVIOTEC video-based smoke detection designed for aircraft hangars and rail-shed environments where conventional smoke detectors fail
  • Deutsche Bahn and Frankfurt Airport are public reference customers; deep European airport and rail install base
  • BIS (Building Integration System) provides unified video, access, and intrusion under one operator console
  • Robert Bosch GmbH ownership (private foundation-owned) provides long-term stability; no PE renewal-pressure dynamic
Weaknesses
  • Not a TVRA platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS assessment libraries
  • US install base in aviation and transit is smaller than Genetec, Lenel S2, or Honeywell Pro-Watch; reference customers are EU-weighted
  • BIS configuration is technician-led and learning curve is steep for new operators per G2 / Capterra reviewer comments on Bosch portfolio
  • Quote-only pricing through Bosch-certified integrators; no public list price
  • Closed-stack tendency; cross-vendor camera compatibility weaker than open platforms like Milestone or Genetec
Best for

European airports, EU and UK rail operators, and European port authorities that want a single-vendor stack engineered for industrial environments, with TVRA delivered via a separate platform.

Worst for

US transit agencies and small airports that need cross-vendor camera flexibility and a turnkey first-run experience; Genetec, Milestone, or Verkada is the better fit.

Key features

  • Bosch IP cameras (FLEXIDOME, AUTODOME, MIC IP) with industrial environmental ratings
  • Access Management System (AMS) and Building Integration System (BIS)
  • Intrusion detection (B Series, G Series)
  • AVIOTEC video-based smoke detection for aircraft hangars and rail sheds
  • Rail-rated devices to IEC 61373 (rolling stock vibration / shock)
  • Centralised operator console (BIS) for video, access, intrusion, fire
  • AI analytics on cameras (Camera Trainer custom analytics)
  • Integration to Milestone, Genetec, Lenel S2 via OPC and ONVIF

Integrations

60+ native. Notable: Milestone XProtect (ONVIF), Genetec Security Center (ONVIF + SDK), Lenel S2 OnGuard, Software House CCURE, Siemens building systems, ABB.

Target size

500 to 1,00,000 employees · EU · UK · Global

#6

Honeywell Pro-Watch

Honeywell International / Carrier Global (security spin-out 2022) · Founded 1906 · Charlotte, NC, USA

Federal aviation and DoD access control with FIPS 201 PIV / CAC integration.

Opaque pricingG2 4.0 · Capterra 4.2 · 90+ reviews

Summary

Honeywell Pro-Watch is a long-standing access control platform deployed at multiple US federal-aviation airport perimeters and DoD facilities. Pro-Watch supports FIPS 201 PIV / CAC card integration, Mercury-board hardware (cross-compatible with Lenel S2), and integrates with Honeywell's MAXPRO VMS and intrusion detection. The platform is the right pick for US airports and federal facilities that require PIV / CAC credentialing and a long-tenured incumbent access-control vendor. It is the wrong pick for transit agencies and ports that want cloud-managed or open-platform deployment.

Strengths
  • FIPS 201 PIV / CAC card integration deployed at multiple US federal aviation airports
  • Mercury-board hardware compatibility (interchangeable with Lenel S2 controllers in many deployments)
  • Long-tenured incumbent at US airport access perimeters; pre-existing wiring and reader install base reduces switching cost
  • Integration to Honeywell MAXPRO VMS, Notifier fire detection, and Honeywell intrusion
  • Honeywell parent (NYSE: HON) provides corporate stability and federal procurement vehicles (GSA Schedule presence)
Weaknesses
  • Not a TVRA platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS assessment libraries
  • UI shows its on-prem operational heritage; mobile and cloud experience lags Avigilon Alta, Verkada, or Genetec SaaS
  • Quote-only pricing through Honeywell-certified integrators; no public list
  • Resideo / Carrier security-portfolio spin and Honeywell Building Technologies repositioning since 2018-2022 created roadmap uncertainty for buyers tracking long-term ownership
  • Configuration is technician-led; airport-scale deployments typically 12-18 month rollout
Best for

US federal-aviation airports, DoD facilities, and federal-leasehold transportation properties that require FIPS 201 PIV / CAC access and that already have Honeywell or Mercury-board infrastructure.

Worst for

Transit agencies, small regional airports, and ports that prefer cloud-managed deployment without on-prem servers; Avigilon Alta, Verkada, or Genetec SaaS is the better fit.

Key features

  • Access control with FIPS 201 PIV / CAC integration
  • Mercury-board controller hardware compatibility
  • Integration to Honeywell MAXPRO VMS
  • Notifier fire detection integration
  • Honeywell intrusion (Vista, MAXPRO Intrusion) integration
  • Photo badging and credential management
  • Multi-site federated architecture
  • GSA Schedule procurement support

Integrations

80+ native. Notable: Honeywell MAXPRO VMS, Mercury Security controllers, Notifier fire detection, Microsoft Entra ID, Genetec (via plug-in), Milestone (via plug-in).

Target size

500 to 2,50,000 employees · US · Canada · Global

#7

Lenel S2 OnGuard

Carrier Global / LenelS2 (under Onity-LenelS2) · Founded 1991 · Pittsford, NY, USA

Federal aviation access-control incumbent with deep VMS and PACS integrations.

Opaque pricingG2 4.0 · Capterra 4.2 · 120+ reviews

Summary

Lenel was founded in 1991 and was later combined with S2 Security under UTC and then under Carrier Global. OnGuard is a long-standing access control platform deployed at major US airports including JFK terminals and LAX terminals, plus federal courthouses and DoD facilities. The platform supports deep integration with Genetec, Milestone, and Avigilon video, and embedded SAFR facial-recognition for aviation enrolment. Strength is the federal-aviation install base and Mercury-board hardware ecosystem; weakness is corporate-ownership churn (UTC -> Carrier -> Onity) and on-prem-heavy deployment model.

Strengths
  • Federal-aviation incumbent; deployed at major US airports (JFK and LAX terminals plus many others)
  • Mercury-board hardware ecosystem (interchangeable with Honeywell Pro-Watch controllers) reduces switching cost on retrofit
  • Deep video integration to Genetec Omnicast, Milestone XProtect, and Avigilon Control Center
  • Embedded SAFR facial-recognition module for aviation enrolment and crew verification
  • Carrier Global (NYSE: CARR) public parent provides procurement vehicles and federal-contract presence
Weaknesses
  • Not a TVRA platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS assessment libraries
  • Corporate-ownership churn (UTC then Carrier then Onity sub-business) created roadmap uncertainty for federal buyers tracking long-term vendor stability
  • On-prem-heavy deployment model; cloud / hosted offering lags Avigilon Alta and Genetec Security Center SaaS
  • UI shows its operational heritage; first-run experience is technician-oriented rather than end-user-friendly
  • Quote-only pricing through Lenel S2-certified integrators (Convergint, ADT Commercial, others); no public list
Best for

Major US airports, federal courthouses, and DoD facilities that already have Lenel S2 OnGuard infrastructure and that want the incumbent path with deep video and PIAM integrations.

Worst for

Mid-size transit agencies, regional airports, and ports that want cloud-managed access without on-prem servers; Avigilon Alta, Verkada, or Genetec SaaS is the better fit.

Key features

  • Access control with Mercury-board controller ecosystem
  • Deep video integration (Genetec Omnicast, Milestone XProtect, Avigilon Control Center)
  • Embedded SAFR facial-recognition module for aviation enrolment
  • PIAM via AlertEnterprise Guardian integration
  • Photo badging and credential management
  • Multi-terminal / multi-airport federation
  • Visitor management
  • GSA Schedule procurement support

Integrations

100+ native. Notable: Genetec Omnicast, Milestone XProtect, Avigilon Control Center, AlertEnterprise Guardian, Microsoft Entra ID, Mercury Security controllers.

Target size

1,000 to 2,50,000 employees · US · Canada · Global

#8

Avigilon Alta

Motorola Solutions (NYSE: MSI) · Founded 2004 · Chicago, IL, USA (Motorola Solutions HQ); Avigilon HQ Vancouver, BC

Cloud-native unified video and access for mid-size airports and transit hubs.

Opaque pricingG2 4.3 · Capterra 4.4 · 250+ reviews

Summary

Motorola Solutions acquired Avigilon in 2018 and Openpath in 2021, combining the assets into Avigilon Alta launched in 2023 (along with Ava Aware video). Alta is cloud-managed and ties video, access, intrusion, and AI analytics (unattended bag, tailgating, people-counting) in one console. The product is the right pick for mid-size airports, transit hubs, and intermodal facilities that want cloud-managed deployment without on-prem servers and that benefit from Motorola Solutions' adjacent public-safety radio and CAD relationships. It is not a TVRA platform.

Strengths
  • Cloud-native unified video + access + intrusion launched 2023; no on-prem server stack required
  • AI analytics for unattended-bag detection, tailgating, and people-counting are aviation- and transit-relevant out of the box
  • Motorola Solutions parent (NYSE: MSI) gives the platform adjacency to APX P25 land-mobile radio and CommandCentral CAD that many transit agencies and airports already operate
  • Openpath-heritage mobile credentials and Bluetooth / NFC access are friendly for transit-worker and crew badging
  • Integrates with Avigilon Control Center for on-prem-heavy customers who run hybrid
Weaknesses
  • Not a TVRA platform; no pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS assessment libraries
  • Quote-only pricing through Motorola-certified integrators; no public list
  • Roadmap consolidation across Avigilon Control Center (on-prem), Ava Aware (cloud), and Openpath (access) since the 2023 Alta launch has been ongoing; some legacy customers face migration decisions
  • Less aviation-specific federal install-base depth than Lenel S2 OnGuard or Honeywell Pro-Watch on the access-control side
  • G2 + Capterra review volume for the unified Alta brand is still building post-2023 launch
Best for

Mid-size airports, transit hubs, light-rail stations, and intermodal terminals that want a cloud-managed unified video and access platform and that operate adjacent Motorola Solutions APX radio or CommandCentral CAD.

Worst for

Major US airports with deep Lenel S2 OnGuard, Honeywell Pro-Watch, or Genetec on-prem incumbencies; the migration cost outweighs the cloud-management benefit.

Key features

  • Cloud-managed unified video (Ava Aware-heritage)
  • Cloud-managed access (Openpath-heritage) with mobile / Bluetooth / NFC credentials
  • AI analytics: unattended-bag, tailgating, people-counting, weapon detection
  • Avigilon Control Center on-prem option for hybrid deployments
  • Integration to Motorola APX P25 and CommandCentral CAD
  • Mobile operator app
  • Multi-site federated cloud dashboard
  • Open API for SIEM / ITSM

Integrations

40+ native. Notable: Motorola APX P25 land-mobile radio, Motorola CommandCentral CAD, Microsoft Entra ID, Okta, ServiceNow, AlertEnterprise Guardian.

Target size

200 to 50,000 employees · US · Canada · UK · EU · AU

#9

Verkada

Verkada Inc. · Founded 2016 · San Mateo, CA, USA

Cloud-native cameras, access, alarms, and intercom for smaller airports and transit hubs.

Opaque pricingG2 4.5 · Capterra 4.5 · 1800+ reviews

Summary

Verkada was founded in 2016 in San Mateo by former Cisco Meraki engineers and built a cloud-native platform spanning cameras, access control, alarms, environmental sensors, intercom, and guest management. The product carries a 4.5/5 G2 rating across 1,800+ reviews. In transportation, Verkada fits regional airports, bus depots, light-rail stations, and transit operations centres that lack on-prem server rooms or technician staffing. Strengths are ease of deployment and AI-powered video analytics; weaknesses are licence cost, the 2021 hack incident memory, software-update access issues per recent G2 reviewers, and the near-absence of TVRA workflow.

Strengths
  • Cloud-native multi-site deployment with no on-prem server stack required; fits small transit facilities and regional airports
  • 4.5/5 G2 rating across 1,800+ reviews, one of the largest review volumes in this category
  • AI-powered video analytics including tailgating detection, people-counting, and licence-plate recognition
  • Unified suite across cameras, access, alarms, intercom, sensors, and guest in one console
  • 24/7 customer support praised in reviews; mobile-first operator app fits distributed transit workforce
Weaknesses
  • 2021 hack incident exposed 150,000+ camera feeds including some at transit facilities; some federal transportation buyers still flag this in procurement
  • Licence costs and ongoing subscription fees flagged as expensive by multiple G2 reviewers
  • Software-update access issues and lack of IP filtering for mobile access cited in 2026 reviews
  • Connectivity issues including bandwidth strain and camera downtime reported by reviewers, a meaningful concern for transit hubs with constrained backhaul
  • Weakest TVRA workflow on this list; no pre-built TSA Part 1542, ISPS Code, or AAR libraries
Best for

Regional airports, bus depots, light-rail stations, transit operations centres, and small ports that want cloud-managed unified cameras and access with minimal IT lift.

Worst for

Major airports under TSA Part 1542 and federal aviation oversight where the 2021 incident still affects procurement; Lenel S2 OnGuard or Honeywell Pro-Watch is the safer pick.

Key features

  • Cloud-native unified VMS
  • Access control with badge, mobile, and Bluetooth credentials
  • Alarms and environmental sensors
  • Intercom and guest management
  • AI-powered video analytics including tailgating and licence-plate recognition
  • Multi-site federated dashboards
  • Mobile operator app
  • Open API for SIEM and ITSM integration

Integrations

30+ native. Notable: Microsoft Entra ID, Okta, Google Workspace, Splunk, ServiceNow, Slack.

Target size

100 to 50,000 employees · US · Canada · UK · EU · AU

#10

Resolver

Resolver, a Kroll Business · Founded 2000 · Toronto, Ontario, Canada

Transit incident management and investigations tied to security risk register.

Opaque pricingG2 4.3 · Capterra 4.3 · 200+ reviews

Summary

Resolver was founded in 2000 in Toronto and acquired by Kroll in March 2022. In transportation, Resolver fits transit agencies, ports, and airline ground operations that need an integrated platform for incident reporting (slips, trips, assaults on operators, fare disputes), investigations, and a security risk register aligned to ISO 31000 and ASIS ESRM. The platform was named to G2's 2025 Best Software Awards in GRC and carries a 4.3/5 rating across 180+ reviews. Strength is the investigations-and-incident workflow; weakness is the heavy implementation and the absence of pre-built transportation-specific TVRA libraries.

Strengths
  • Strongest investigations and case-management workflow in the category; transit-agency police forces and airport law-enforcement teams use it for case packs
  • Kroll ownership unlocks intelligence-led risk feeds and global investigations support
  • G2 Best Software Awards 2025 honoree in GRC; 4.3/5 across 180+ reviews
  • Mature multi-site security risk module aligned to ISO 31000 and ASIS ESRM
  • Strong incident-reporting mobile app for transit operators (bus, light-rail) and ramp / gate staff
Weaknesses
  • Pricing is opaque, no public tier and no self-serve trial; SelectHub and SmartSuite teardowns place mid-market deals in the $45-90K range
  • Setup and configuration is heavy; G2 reviewers consistently flag implementation effort as the most-cited downside
  • UX has not had a generational rewrite; competitors with newer cloud interfaces feel more modern
  • No pre-built TSA Part 1542, ISPS Code, AAR RP-1001, or APTA SS-SIS libraries; transportation-specific frameworks require custom configuration
  • Pulled toward investigations and incident management; less natural fit for facilities-led TVRA against TSA or USCG inspectors
Best for

Transit agency police, airport law-enforcement and AOC teams, port authority security ops, and airline ground-operations teams that need investigations and incident management tied to a security risk register.

Worst for

Smaller transportation security teams that want a pre-built TSA Part 1542 or ISPS Code library and a 30-day trial; Resolver is overkill and the price reflects it.

Key features

  • Security risk register aligned to ISO 31000 and ASIS ESRM
  • Incident reporting and case management
  • Investigations workflow with chain-of-custody for transit-agency and airport law-enforcement teams
  • Brand-protection and threat-assessment feeds (Kroll-powered)
  • Business continuity and operational resilience module
  • Configurable dashboards and multi-site rollup reports
  • Mobile incident reporting for transit operators, ramp staff, and ground crew
  • Vendor and contractor risk module

Integrations

40+ native. Notable: Microsoft Entra ID, Okta, ServiceNow, Splunk, Genetec, Lenel S2, Kroll intelligence feeds.

Target size

1,000 to 1,00,000 employees · US · Canada · UK · EU · AU

Step by step

Buying guide

Walk these steps in order. The shortlist falls out of step 1, the negotiation moves come together in step 6, and step 8 closes the deal.

  1. 1

    Name the regulator you have to satisfy first

    Before you shortlist, write down the one regulator whose inspection drives your security spend. Airport authority: TSA 49 CFR Part 1542. Port authority: ISPS Code / 33 CFR Part 105 (US MTSA). Freight rail: AAR RP-1001 plus 49 CFR Part 1580 (rail security-sensitive material). Transit agency: APTA SS-SIS plus FTA Bus Security. Intermodal: the whole stack. The shortlist falls out of the answer.

  2. 2

    Match shortlist to estate shape and budget band

    Filter the ten platforms here by facility count, budget, and federal-review tolerance. A single regional airport with a $40K budget rules out everything except Verkada, Avigilon Alta, RiskWatch Starter, and a Milestone XProtect Corporate hybrid. A major airport authority with a $250K+ budget filters back in AlertEnterprise Guardian, Lenel S2 OnGuard, Genetec Security Center enterprise, and RiskWatch Enterprise. Resolver fits when transit-police investigations or airport law-enforcement case packs are the primary brief.

  3. 3

    Verify pre-built transportation frameworks before the demo

    If your program runs against TSA 49 CFR Part 1542, ISPS Code, MTSA 33 CFR Part 105, AAR RP-1001, or APTA SS-SIS-RP-001-10, ask each vendor to show you the library on screen during the demo. Pre-built means pre-mapped controls and pre-scored question banks. Vendors who promise to build it for you after signing are charging you for a configuration project that should already be done. RiskWatch is the only vendor on this list that ships all five frameworks pre-mapped.

  4. 4

    Pressure-test the badge-governance and PIAM story for aviation

    Airport authorities and airlines are required to govern SIDA, AOA, sterile-area, and crew-cabin badge access against TSA Part 1542 and Part 1544. Ask each vendor: can your platform run the badge-issuance workflow with a Security Threat Assessment trigger, expire credentials on contractor end-date, and detect insider-threat indicators? AlertEnterprise Guardian is the deepest answer here; Lenel S2 and Genetec Synergis cover the access-control side but lean on Guardian for governance.

  5. 5

    Pressure-test the camera-and-perimeter story for ports, rail, and intermodal

    Ports under ISPS Code and rail under AAR RP-1001 live with mixed-brand camera estates, thermal perimeter cameras, ALPR at gates, and rail-vibration-rated hardware. Ask each vendor: how many camera makes do you support, do you ship long-term cloud storage for incident records, do you support IEC 61373 rolling-stock hardware? Milestone XProtect leads on hardware-agnostic depth; Bosch leads on rail-vibration-rated hardware; Genetec leads on AutoVu ALPR; Avigilon Alta leads on cloud-managed deployment.

  6. 6

    Insist on a working pilot at one terminal, station, or facility

    Demos are choreographed. Working pilots are not. Ask each finalist for a 30-60 day pilot at one terminal or station: your real estate, one framework, one mobile site walk at the perimeter, one auditor-export. The platform that handles your data without three weeks of professional services is the one that will scale post-deal. RiskWatch publishes a 30-day no-card trial; other vendors require a structured POC.

  7. 7

    Pressure-test the data residency and SSI handling clause

    Transportation security data includes SSI-marked records (TSA), CUI (DoD-leased airport properties), and crew biographic data. Ask each vendor: where does my data live, who can access it, is your SOC 2 Type II current, and how do you handle SSI markings? RiskWatch supports single-tenant deployment with US-only data residency for federal-aviation and TWIC customers. Most SaaS-first vendors are multi-tenant; that is fine if the SOC 2 report and the federal-NDA annex hold up.

  8. 8

    Run the decision matrix with your own weights

    The default methodology weights on this page (20% Ease, 20% Features, 20% Value, 15% Support, 15% Scalability, 10% Integrations) reflect a generic transportation security buyer. Your weights may differ. An airport authority will weight badge governance and SIDA depth higher; a port will weight ALPR and gate operations higher; a freight rail operator will weight perimeter hardware and tunnel cameras higher. Use the decision-matrix slider on this page to re-rank with your weights before you book the demos.

Frequently asked

Buyer questions, answered

The eight questions our pre-sales team hears the most often when buyers compare this category.

What is physical security software for transportation?
Physical security software for transportation is the category of platforms that help airport authorities, ports, transit agencies, freight rail operators, and intermodal terminals identify, score, and treat physical risk under TSA, ISPS / MTSA, AAR, APTA, and FTA frameworks. The category overlaps with TVRA assessment software, video management systems (VMS), physical access control systems (PACS), and Physical Identity and Access Management (PIAM). The ten platforms in this ranking each serve at least one of those needs well; pure-screening hardware (Smiths Detection, Rapiscan) and integrator services (ICTS Europe, Allied Universal) are excluded.
Which platform covers TSA 49 CFR Part 1542 for airport security programs?
RiskWatch ships TSA 49 CFR Part 1542 (airport security programs), Part 1544 (aircraft operator), and Part 1546 (foreign air carrier) as pre-built libraries and is used to run multi-airport TVRA programs against the framework, including the inspector-defensible evidence trail. Resolver can support Part 1542 with custom configuration. AlertEnterprise Guardian covers the access-provisioning side under Part 1542 (SIDA / AOA / sterile-area badge governance). Genetec, Milestone, Bosch, Honeywell Pro-Watch, Lenel S2, Avigilon Alta, and Verkada are operations platforms, not assessment platforms; they integrate with RiskWatch via API and bulk import for evidence ingestion.
Which platform is best for ports under ISPS Code and 33 CFR Part 105 (MTSA)?
RiskWatch ships the IMO ISPS Code and 33 CFR Part 105 / 106 (US MTSA) Port Facility Security Assessment as pre-mapped libraries and runs multi-terminal TVRAs that the US Coast Guard captain of the port will accept. For the operational layer, Milestone XProtect fits ports with mixed-brand camera estates, Genetec Security Center fits ports that want AutoVu ALPR for gate operations, and Lenel S2 OnGuard fits federal-leasehold marine terminals with PIV / TWIC integration. Most ports run a two-vendor stack: an assessment platform (RiskWatch) plus a VMS / access platform (Milestone, Genetec, Lenel S2, or Bosch).
Which platform is best for freight rail under AAR RP-1001 and transit under APTA SS-SIS?
RiskWatch ships AAR Recommended Practice RP-1001 (rail security) and APTA SS-SIS-RP-001-10 (transit security) as pre-built libraries. For the operational layer, Bosch Building Technologies has the deepest rail-vibration-rated hardware (IEC 61373) and is deployed at Deutsche Bahn stations; Milestone XProtect is the open-platform VMS for mixed-brand camera estates at rail yards; Genetec Security Center fits transit agencies that want federated multi-site video plus ALPR for parking enforcement; Resolver covers transit-police investigations and incident management. Verkada and Avigilon Alta are credible cloud alternatives for smaller transit hubs.
How much should I budget for transportation physical security software in 2026?
Entry pricing ranges from $0/yr (Milestone XProtect Essential+ free tier, 8-camera cap) and ~$480/channel/yr (Genetec Security Center SaaS) to $40K-$60K+/yr for mid-size facility deployments and six-figure annual contracts for major airports, ports, and transit agencies. For a mid-market multi-site TVRA program (10-25 terminals or stations, 2-4 frameworks) expect $25K-$60K/yr on licence plus 15-25% implementation costs. For airport-authority programs with PIAM (AlertEnterprise) plus VMS (Genetec) plus access (Lenel S2) plus assessment (RiskWatch) expect $200K-$500K/yr combined. Federal review (TSA, USCG, FAA) typically adds 60-120 days to procurement. Always model 3-year TCO and ask for the renewal-escalator cap in writing.
Does RiskWatch replace my Genetec, Lenel S2, Avigilon, or Bosch system?
No. RiskWatch is the assessment, scoring, reporting, and audit-trail layer that sits above the transportation security operation. Genetec Security Center, Lenel S2 OnGuard, Avigilon Alta, Bosch Building Technologies, Honeywell Pro-Watch, Milestone XProtect, and Verkada handle real-time video and access control; RiskWatch tells you which controls are present, which are weak, which have been remediated, and how the portfolio rolls up to the board and the regulator year over year. RiskWatch integrates with these VMS and PACS systems via API and bulk import for evidence ingestion.
How often is this ranking re-verified?
We re-verify the ratings, pricing triangulations, and material vendor news on this page every quarter. The current pull is dated 2026-05-14. Pricing for opaque vendors is triangulated from two or more public third-party sources (SmartSuite, SelectHub, Vendr, vendor public marketing pages, G2 + Capterra). If a number on this page is stale when you read it, please file the correction at sales@riskwatch.com.
Does RiskWatch accept any money from the other vendors on this page?
No. RiskWatch accepts no affiliate fees, sponsorship money, or paid placements on this page. RiskWatch is also on the page, at #1. That conflict is disclosed inline on the RiskWatch product card and in the methodology block. Readers should weigh that disclosure against the published evidence on this page.
Definitions

Glossary

Definitions for the acronyms and jargon used on this page. Useful for sharing with non-specialist stakeholders on the buying committee.

TSA 49 CFR Part 1542
Title 49 of the Code of Federal Regulations Part 1542 is the Transportation Security Administration rule covering airport security programs, including secured area, AOA, sterile area, and SIDA controls. Audited by TSA inspectors. Companion Parts 1544 (aircraft operator) and 1546 (foreign air carrier) cover the airline-side controls.
ISPS Code / MTSA
The IMO International Ship and Port Facility Security Code (ISPS Code), implemented in the US as the Maritime Transportation Security Act of 2002 and codified at 33 CFR Parts 101-106. Requires every regulated port facility to conduct a Port Facility Security Assessment (PFSA) and maintain a Port Facility Security Plan (PFSP) approved by the US Coast Guard captain of the port.
AAR RP-1001
Association of American Railroads Recommended Practice RP-1001, the freight rail industry security standard covering perimeter, tunnel, bridge, yard, and chemical-transport risk. Used by Class I and Class II railroads.
APTA SS-SIS-RP-001-10
American Public Transportation Association Standards Security Infrastructure Recommended Practice SS-SIS-RP-001-10, covering transit security infrastructure including CCTV, access control, and intrusion detection at stations and transit operations centres.
SIDA
Security Identification Display Area, the secured zone at a commercial airport under TSA 49 CFR Part 1542 where access is restricted to badged workers who have passed a Security Threat Assessment. SIDA badging is the workflow most commonly governed by AlertEnterprise Guardian or Lenel S2 OnGuard.
PIAM
Physical Identity and Access Management. The category that governs who can badge into which facility, integrating HR, Active Directory, and PACS. AlertEnterprise Guardian is the category leader in this ranking for transportation specifically (aviation SIDA, port TWIC, transit credential).
Crime data overlay
A likelihood-scoring layer that pulls third-party crime data (Cap Index CRIMECAST, Security Gauge, GlobalIncidentMap, World Aware) into the assessment so likelihood scores are defensible to the TSA, USCG, FRA, FTA, and insurers. RiskWatch is the only platform in this ranking that ships four feeds.
Final word

So which one should you pick?

If you read this page top to bottom and one platform stood out, that is your answer. The methodology is on this page so you can disagree with the rank and arrive at a different first pick honestly. We did not move our own product down the page to look unbiased; we did not move it up the page to sell the brief. The position reflects our weights and the public evidence on TSA, ISPS / MTSA, AAR, APTA, and FTA framework depth, crime-data overlay, multi-site rollup, and pricing transparency.

The one thing every transportation security buyer should do, regardless of which vendor wins your bake-off, is to insist on a 30-60 day working pilot at one terminal or station with your real data, a renewal-escalator cap in writing, and a documented exit clause that covers SSI-marked site diagrams, findings registers, and badge records. The airport and port authorities we see lose three-year deals always lose them on those three terms, not on feature coverage.

If you would like the RiskWatch demo or a 30-day no-card trial, sign up at riskwatch.com/start-free-trial. If you would like a no-strings second opinion on one of the other nine, email sales@riskwatch.com with the vendor name in the subject line and we will share what we know. If you prefer the broader transportation risk view rather than the physical-security cut, see /risk-management-software-for-transportation/.

Request a Demo