By Andrew Robbins, Director of Security, Risk and Resilience, OCS UK & Ireland
Recent times have seen terrorism return across the European mainland, with the recent security threat to Taylor Swift’s Vienna concerts highlighting the national security threat across the European continent.
Following the devastating attack at Manchester Arena in 2017, in which 22 died and 250 injured, Martyn’s Law – led by Figen Murray the mother of one of the victims (Martyn Hett) – is designed to provide legislation and safeguarding measures to public-facing businesses and venues.
Although there are several existing pieces of legislation that already apply to public places and spaces, there is no current legislation in the UK that is aimed solely at providing counter-terrorism protective security or preparedness outcomes for publicly accessible locations.
Once enshrined into law, Martyn’s Law will have important ramifications for public safety, businesses, and the wider security industry with the Security Industry Authority (SIA) named as the regulator.
There are five ways businesses and venues can prepare for Martyn’s law.
Venues must expand on their duty of care
The proposed legislation – also known as the Protect Duty – aims to create a coherent and proportionate approach to ensuring protective security. Under the proposed law, existing duty of care responsibilities will be clarified into a single framework with the aim of preventing the repetition of past failures.
Martyn’s Law proposes two tiers of categorisation based on a public-facing business or venue’s capacity and the subsequent requirements businesses will have to comply with will depend on what tier they fall under; standard or enhanced.
Businesses and venues can, and should, be reviewing their own risk of terrorism to see where they can expand on their duty of care towards all who access their facilities and services. This will take time, especially if the business is of a size and complexity that categorises them in the ‘enhanced’ tier. It’s vital that businesses prepare immediately by beginning to extensively assess the risk of terrorism to their premises.
Adopt the basic principles of Martyn’s law today, not tomorrow
Martyn’s Law aims to enhance the protection of the UK’s publicly accessible places from terrorist attacks, ensuring that businesses and organisations are best prepared to deal with an incident, should one occur. It’s important that businesses and their security teams take the initiative to begin adopting the basic principle of Martyn’s Law now, rather than wait until the legislation is signed into law. As should the worst happen, businesses could face dire consequences of commercial and reputational damage should they not have the basic principles in place.
For example, security team leaders should be actively engaging with counter-terrorism services through freely available resources and training programmes to educate their colleagues on recognising and responding to potential threats. With Martyn’s Law calling for any publicly accessible location to have a mitigation plan in place to counter any risks, it’s vital that businesses ensure they conduct vulnerability assessments and create mitigation plans for any risks identified, such as clear search policies or the installation of surveillance technology. By adopting the basic principles of Martyn’s Law today, not tomorrow, businesses will be able to make strides in maximising their security.
Briefing colleagues must be of the same importance as investing in new tech
Complying with Martyn’s Law is as much about briefing colleagues and having sensible policies, practices and plans in place as it as about investing in expensive security technologies. Whilst technologies such as facial recognition software, video surveillance or metal detectors play an important role in mitigating against any potential threats, it’s crucial that all security personnel – both internally and externally – are fully briefed on and trained to deal with any risks.
Businesses can look to the UK government’s National Protective Security Authority(NPSA) to provide guidance on ensuring all training and briefings are thoroughly delivered. This can include guidance on identifying insider risks or how to correctly handle individuals who are considered high-risk, such as a high-profile celebrity or athlete. By placing the same emphasis on briefing colleagues as investing in new technology, businesses and venues can ensure that everyone – from management to frontline colleagues – is equipped with the correct knowledge and skills to act effectively in an emergency.
Risk assessments should not be overcomplicated
Risk assessments are an important tool in bolstering physical security defences and it’s important that businesses and venues do not regard them as static. In fact, bespoke and in-depth security risk assessments must be incorporated into a business’ overall strategy for assessing risks and threats. But it doesn’t need to be overcomplicated.
Businesses can adopt straightforward risk assessments – such as the Cabinet Office’s Risk Assessment Methodology or the National Risk Register – to ensure that colleagues can easily understand and implement necessary safety measures. By keeping the process simple and straightforward, businesses and venues can effectively foster a culture of vigilance through regularly reviewing and updating risk assessments in response to any emerging threats. Businesses should remember that the purpose of Martyn’s Law is to enhance public safety through practical, common-sense measures and this should reflect in their risk assessment protocols.
Develop and deploy effective incident response plans
Under Martyn’s Law, developing and deploying effective incident response plans is essential for venues and public-facing businesses to a deliver swift and co-ordinated response to any potential threats. Research found that in 2022, 88% of companies reported an increase in physical security threats, highlighting the need for extensive incident response plans.
Incident response plans must include designated roles and responsibilities for all colleagues, giving everyone clarity and the knowledge of what to do and who to report to during an emergency. This will reduce confusion and enable a quicker and more organised response. Additionally, businesses should conduct regular training sessions and drills to familiarise colleagues with their incident response plans, helping them remain calm and efficient under pressure during an emergency. By taking a proactive approach, businesses and venues will not just demonstrate a commitment to security, they will ensure colleagues, customers and patrons are protected.
Photo by Aditya Chinchure on Unsplash