Top ten guidelines

Whether you are creating, reviewing, or updating your security plans, keep these key points in mind:

• Carry out a risk assessment to decide on the threats you might be facing and their likelihood. Identify your vulnerabilities and the potential impact of exploitation.
  Find out more about risk assessment
  
• If acquiring or extending premises, consider security at the planning stage. It will be cheaper and more effective than adding measures later.
  Find out more about creating a security plan
  
• Make security awareness part of your organisation's culture and ensure security is represented at a senior level.
  Find out more about security planning
  
• Ensure good basic housekeeping throughout your premises. Keep public areas tidy and well-lit, remove unnecessary furniture and keep garden areas clear.
  Find out more about physical security measures
  
• Keep access points to a minimum and issue staff and visitors with passes. Where possible, do not allow unauthorised vehicles close to your building.
  Find out more about physical security measures
• Install appropriate physical measures such as locks, alarms, CCTV surveillance, complementary lighting and glazing protection.
  Find out more about physical security measures
• Examine your mail-handling procedures
  Find out more about security of mail and deliveries
  
• When recruiting staff or hiring contractors, check identities and follow up references.
  Find out more about personnel security measures
  
• Consider how best to protect your information and take proper IT security precautions. Examine your methods for disposing of confidential waste.
  Find out more about electronic security measures
  
• Plan and test your business continuity plans, ensuring that you can continue to function without access to your main premises and IT systems.
  Find out more about electronic security measures