This CPD explains how construction professionals can better integrate physical security measures from the outset of a project. By Richard Ellis.
What you will learn in this CPD
- The legislative context of physical security in construction projects
- The risks of late-stage planning
- Practical guidance for embedding security into the early design stage
Physical security refers to the use of integrated, built-in measures to protect people, assets and infrastructure from hostile threats such as forced entry, terrorism or the use of vehicles as weapons.
Examples include crash-rated bollards, hostile vehicle mitigation (HVM) systems, perimeter fencing, reinforced access points and controlled entry zones. These elements are designed not just to deter and delay attacks, but to protect the public and reduce harm in the event of an incident.
Physical security has become a critical component in the design and delivery of public infrastructure, particularly in light of emerging legislative duties and an evolving threat landscape that includes terrorism and the increasing use of vehicles as weapons.
Yet in many construction projects, security is often treated as a relatively small procurement package within the overall project scope. As a result, it may not receive the level of early consideration it truly requires.
This late-stage approach can increase costs and risks, introduce technical complications and reduce overall integration quality, potentially undermining stakeholder confidence and the long-term effectiveness of security measures.
The implications of late-stage security integration
Physical security, such as HVM, perimeter barriers and street-level protective measures, is frequently addressed toward the final stages of project delivery. Typically procured alongside landscaping or street furniture, these packages are sometimes viewed as non-critical and, as a result, deprioritised in procurement and planning schedules.
However, effective physical security is far more complex than the installation of bollards or fences. It requires early coordination across multiple disciplines, including structural and civil engineering, utilities planning, architectural design and procurement.
Delaying this coordination can introduce a range of costly, technical, and reputational risks, such as:
- Increased cost: late-stage design changes can eliminate value engineering opportunities and result in costly rework. Ill-considered substitutions may also compromise performance or aesthetics.
- Programme risk: many certified HVM products have long lead times due to bespoke design and manufacture. Without adequate planning and a clear lead-in period, late procurement can disrupt the construction programme.
- Engineering and substructure constraints: below-ground services, bridge decks, suspended slabs, movement joints and site-specific loading restrictions must all be assessed early. Accurate topographical surveys and validated utility data, ideally supported by trial holes, are essential to inform safe and buildable solutions.
- Compromised public realm: security measures added late may clash with architectural intent, clutter public spaces or create visual disruption.
- Over or misspecification: without an early-stage Vehicle Dynamics Assessment (VDA), there’s a risk of selecting products with unnecessarily high impact ratings, leading to increased costs and deeper foundations than are needed, or conversely, choosing insufficiently rated systems that compromise safety.
- Poor value engineering decisions: choosing the cheapest option without understanding performance implications can undermine security certification, durability or site suitability. Best value means selecting products that are appropriate, effective and aligned with long-term operational needs, not simply the lowest upfront cost.
- Installation and compliance risks: HVM systems must be installed strictly following the manufacturer’s design, specification, and installation method statement (MS). Competent installation is critical to ensuring certified performance.
- Lack of training and technical knowledge: early engagement with a reputable HVM supplier provides access to product training, education and bespoke design support, helping the project team select the right solution for site constraints, threat levels and visual goals.
- System suitability and foundation considerations: not all sites can accommodate deep-mounted or automatic systems. Shallow-mount or surface-fixed options may be more appropriate where ground conditions, services or slab depths are limiting.
These challenges are especially pronounced on retrofit or refurbishment projects, where existing site conditions are often less predictable and difficult to verify in advance. Early engagement, proper data collection and proactive supplier collaboration are essential to minimising risk, delivering best value and ensuring security measures perform as intended.
Coordinating security into project planning
For physical security to be effectively integrated, it must be addressed from RIBA Stage 1 onwards. Early engagement allows construction professionals to coordinate with security engineers, architects, civil contractors and manufacturers to design solutions that are:
- Appropriate for purpose, based on defined threat levels
- Structurally feasible, with loadings and installation depths coordinated with foundation works
- Visually consistent with the public realm design intent
- Compatible with surrounding infrastructure, access routes and street furniture
- Pedestrian-friendly, maintaining permeability and movement through spaces while avoiding excessive clutter or pinch points
- Inclusive by design, ensuring compliance with the Equality Act 2010 requirements and providing safe, unobstructed access for all users, including those with mobility impairments.
On retrofit projects, early-stage site surveys and trial hole digs are essential to identify the topography of the area and constraints such as underground services, utility covers, suspended slabs and adjacent structures.
This information informs appropriate product selection and avoids unnecessary rework. On new-build schemes, the opportunity exists to incorporate security measures into civils and substructure works, simplifying delivery and reducing long-term risk.
The evolving threat landscape
Physical security planning is shaped by an evolving threat landscape. Vehicle-as-a-weapon attacks remain a concern for public infrastructure, transport hubs and pedestrianised zones.
While such events may be infrequent, the impact of a single hostile incident can be catastrophic. A prolonged absence of high-profile attacks may lead to complacency, but risk assessments must continue to account for evolving threats and emerging attack methodologies.
Design and construction professionals have a duty to ensure that protective measures are proportionate, contextually appropriate and integrated with the intended use of the site. In the built environment, this means balancing functionality, aesthetics and public safety with legal and operational requirements.
Importantly, best value does not mean choosing the cheapest option; it means selecting solutions that offer proven performance, long-term durability and compatibility with the site’s overall design and risk profile.
Failure to apply this level of professional judgement can compromise public safety and expose clients and duty holders to significant legal, financial and reputational consequences.
Relevant legislation and technical standards
Security-related responsibilities in construction are governed by a range of standards, best practice guidance and legislation. These frameworks should be consulted during the early design and planning stages to ensure both compliance and suitability.
Core standards and frameworks for physical security
- BSI PAS 68, IWA 14-1 & ISO 22343-1: the international standards for impact-tested vehicle security barriers. The ISO 22343 standard is the most recent; products will be tested to this standard going forward (from 2023 onwards). These standards set out performance classifications for barrier systems subjected to vehicle impact.
- BSI PAS 69, IWA 14-2 & ISO 22343-2: guidance on the design, layout and deployment of vehicle security barriers. Still commonly referenced for urban design coordination and barrier positioning.
- Vehicle Dynamic Assessments (VDAs): site-specific analysis used to assess likely impact threats, vehicle approach speeds and required standoff distances. VDA assessment should be undertaken by an RSES security advisor and/or appropriately qualified consultant.
- ISO 31000 & SABRE Risk Management Frameworks: used to guide threat-based decision-making, relevant for the early stages of HVM planning and selection, as well as guiding the implementation of schemes.
Compliance and procurement references
- Secured by Design: UK Police guidance promoting crime prevention through environmental design. Frequently referenced in public realm and infrastructure projects.
- NPSA (formerly CPNI) Catalogue: government-maintained register of tested and approved security products.
- PSSA membership and RSES certification: indicators of competence for security consultants, specifiers, manufacturers, installers and contractors working with protective measures.
Legislative and regulatory drivers
- Protect Duty (Martyn’s Law): proposed legislation (standard and enhanced) requiring publicly accessible locations (PALs) to assess and mitigate terrorism threats. While not yet in force, it is already shaping procurement decisions for event venues, public spaces and transport hubs.
- Building Safety Act 2022: introduces the requirement for a digital ‘golden thread’ of safety-related decisions and documentation from RIBA Stage 1. Physical security measures, particularly those affecting public interface and structural safety, should be documented accordingly.
- Construction (Design and Management) Regulations 2015 (CDM): dutyholders must ensure that the installation of security products does not introduce health and safety risks, especially where temporary works, excavation or service diversions are involved.
- Equality Act 2010: physical security measures installed in the public realm must not create physical barriers or exclude users with disabilities. Designers must ensure inclusive access is maintained.
- Manual for Streets/Local authority public realm guidance: where bollards, barriers or furniture are placed in shared or pedestrianised spaces, they must comply with local streetscape and accessibility guidance to avoid obstruction, clutter or design inconsistency.
Key takeaways for construction professionals
Successfully integrating physical security into public infrastructure requires early and informed involvement from construction professionals. Where multiple stakeholders are involved, a clear decision-making structure must be established to prevent procurement and project delivery delays.
Security measures, particularly HVM systems, must not be treated as off-the-shelf components added late in the process. Early collaboration with accredited security manufacturers and consultants is essential to ensure the right solutions are selected, correctly specified and properly installed.
Look for indicators of competence such as compliance with internationally recognised impact test certification, which help distinguish organisations with the necessary expertise, product performance and compliance.
Not all suppliers offer products that meet the required threat level or provide advice grounded in real-world operational needs, making third-party validation even more important.
By engaging qualified partners from the outset, asking informed questions around threats, certification and competence, and ensuring coordination across disciplines, construction professionals can support security strategies that are technically robust, cost-effective and sensitive to the architectural and operational context.
Case study: Paddington Station
ATG Access was engaged from the earliest design stages of Paddington Station’s major refurbishment to develop HMV and protection against accidental vehicular impact.
The project team worked closely across disciplines to integrate protective measures with the station’s complex structural and architectural requirements. The overall design followed a fixed rectangular grid scheme, which guided the placement and geometry of street-level elements, including protective infrastructure.
To align with these constraints, ATG Access developed custom-designed rectangular bollards and impact-tested them to meet the required standards. Shallow foundations were used to avoid clashes with below-ground services, simplifying installation and minimising disruption. These measures were integrated into key zones throughout the public realm to provide effective security without compromising the site’s aesthetics.
Vehicle constraint cells
As part of the redesign, the former main entrance road was removed and replaced by an open atrium-style space. This created a new risk as vehicles transacting through this space were at risk of falling into the open lower levels of the lower station. To mitigate this, ATG Access was able to develop and embed vehicle constraint cells into the substructure of benches positioned around the space. These solutions absorb impact energy while preserving the visual openness of the design.
Within the station itself, a number of structural columns were identified as vulnerable to accidental vehicle impact. These columns were complicated by the fact that they included drainage elements, requiring tailored protection without disrupting their function. Energy-absorbing column guards with shallow foundations were developed and installed to address this risk without compromising aesthetics or space.
The Paddington scheme demonstrates how early-stage engagement enables tailored engineering solutions to be aligned with both structural and architectural constraints. In this case, engaging physical security specialists from the concept stage allowed the team to meet multiple assurance and programme requirements without incurring delays or costly redesigns.
Richard Ellis FCIOB is the managing director of HVM and physical security solutions company ATG Access.
