Top Ten Security Tips

Top Ten security guidelines

The following protective security points summarise the guidance provided in this CPNI booklet.

1.  Conduct a risk assessment to decide on the threats the organisation might face and their likelihood. Identify existing and potential vulnerabilities and the impact of any breaches of security. See pages 11-12

2. If acquiring or extending premises, consider security requirements right from the planning stage. It will be cheaper and more effective than adding measures later. See pages 13-26

3. Make security awareness a part of the organisation’s culture. Ensure staff are kept regularly informed and that security standards are fully supported at a senior level. See pages 37-44

4. Ensure good basic housekeeping throughout the premises. Keep public areas tidy and well-lit, remove unnecessary furniture and keep garden areas clear. See page 17

5. Keep access points to a minimum and issue staff and visitors with passes. Where possible, do not allow unauthorised vehicles close to the building. See page 16

6. Install appropriate physical measures such as locks, alarms, CCTV surveillance, complementary lighting and glazing protection. See pages 17-18

7. Maintain appropriate mail-handling procedures, consider establishing the mailroom away
 from the main premises. See page 18

8. When recruiting staff or contractors, check identities and follow up references. See pages 23-26

9. Consider how best to protect information and take proper IT security precautions. Ensure there are appropriate provisions for disposing of confidential waste. See pages 19-22

10. Plan and rehearse business continuity and incident response plans, make sure that key business functions can continue during disruptions. See pages 27-36