Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
    • What we do
    • Who we work with
    • Professional standards
    • Top ten guidelines
    • Job vacancies
    • CPNI events
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
  • Research
Home > About CPNI > Top ten guidelines

Top ten guidelines

Whether you are creating, reviewing, or updating your security plans, keep these key points in mind:

  • Carry out a risk assessment to decide on the threats you might be facing and their likelihood. Identify your vulnerabilities and the potential impact of exploitation.
    Find out more about risk assessment
  • If acquiring or extending premises, consider security at the planning stage. It will be cheaper and more effective than adding measures later.
    Find out more about creating a security plan
  • Make security awareness part of your organisation's culture and ensure security is represented at a senior level.
    Find out more about security planning
  • Ensure good basic housekeeping throughout your premises. Keep public areas tidy and well-lit, remove unnecessary furniture and keep garden areas clear.
    Find out more about physical security measures
  • Keep access points to a minimum and issue staff and visitors with passes. Where possible, do not allow unauthorised vehicles close to your building.
    Find out more about physical security measures
  • Install appropriate physical measures such as locks, alarms, CCTV surveillance, complementary lighting and glazing protection.
    Find out more about physical security measures
  • Examine your mail-handling procedures
    Find out more about security of mail and deliveries
  • When recruiting staff or hiring contractors, check identities and follow up references.
    Find out more about personnel security measures
  • Consider how best to protect your information and take proper IT security precautions. Examine your methods for disposing of confidential waste.
    Find out more about electronic security measures
  • Plan and test your business continuity plans, ensuring that you can continue to function without access to your main premises and IT systems.
    Find out more about electronic security measures
11/02/2010
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |