About NPSA
About NPSA

The UK Government’s National Technical Authority for Physical and Personnel Protective Security.
- Who We Work With
  
  NPSA works with partners in government, police, industry and academia to reduce the vulnerability of the national infrastructure.
- Frequently Asked Questions
  
  Frequently asked questions about NPSA.
- Threat Information
  
  Understanding the threats facing your business or organisation will ensure protective security measures are proportionate, effective and responsive
- NPSA Blog
  
  The NPSA blog provides thought leadership, latest news and updates on protective security.
Protective Security
Protective Security

Implementing effective protective security measures will help to protect your organisation from threats.
Advice & Guidance
Advice & Guidance

Our advice & guidance outlines the steps to take when implementing protective security measures.
- Physical Security
- Personnel & People Security
- Incident Management
- Personal Safety and Security for High-Risk Individuals
  
  This content is designed for individuals that have heightened risk affecting their personal safety and security
Learning & Resources
Learning & Resources

We provide information and resources to support the promotion of security awareness across your organisation.
- Security Campaigns
  
  NPSA has developed a series of security awareness campaigns, designed to provide organisations with a complete range of materials they need.
- Digital Learning
  
  Online learning modules relating to Protective Security.
- Think Before You Link
  
  'Think Before You Link' will help you to protect yourself, your colleagues, and your organisation from the harmful impact of online malicious profiles.
- Catalogue of Security Equipment
  
  The Catalogue of Security Equipment (CSE) is available to help security practitioners to identify appropriate physical security equipment. The CSE provides a range of products that have been evaluated against specific NPSA security standards and the performance rating achieved.

Role Based Security Risk Assessment

Understanding what security risks your organisation faces is essential for developing appropriate and proportionate security mitigation measures within the insider risk programme. A role based risk assessment, conducted by the Insider Risk Working Group, should:

Identify the critical assets in your organisation;
Identify the threat (based on intent and capability);
Assess the likelihood of that threat happening in your organisation;
Assess the impact to your business if the threat occurred;
Review the adequacy of existing countermeasures;
Propose new proportionate measures where required to reduce insider risks.

It is only the above activity that can effectively inform and shape the subsequent steps.

Existing Products

Beginners

10 Steps to Risk Assessment

Video - 'Risky Business

10 Steps to Cyber Security

Security Professionals

HoMER - Holistic Management of Employee Risk

Insider Risk Assessment guidance (NPSA)

Supply Chain Security Guidance

Personnel Security and Contractors

Common Cyber Attacks - reducing the impact (NCSC)

Risk Management Guidance Collection (NCSC)

Protective Security Risk Management

Asset Identification Guide

Did you find this page useful? Yes No