Why You Need a Security Needs Assessment

Security can be a complex balance between the identification of risks and vulnerabilities considered in the context of applicable threats.

If you are a developer, architect or building manager, planning a large-scale development or pursuing BREEAM certification, a Security Needs Assessment (SNA) is not simply helpful. It is often a requirement and a way of acquiring those all-important points towards your targeted BREEAM rating.

An SNA is a structured process used to identify and evaluate the security requirements of a building, site, or development project. In the context of BREEAM, it plays a key role in ensuring that security measures are proportionate, effective, and integrated into the design from an early stage. This not only helps achieve standards such as BREEAM HEA 08, but also prevents costly design changes later in the process.

At Cornerstone, we deliver SNAs across critical infrastructure, commercial, and public sector developments throughout the UK and internationally. As independent security consultants, our advice is unbiased and based on holistic, integrated thinking. If you want security that is seamlessly encapsulated within the built environment, CornerStone has the knowhow, the experience and the imagination to deliver.

Key takeaways

• A Security Needs Assessment (SNA) is required for HEA 08 compliance under BREEAM.
• Early-stage assessments save costs and reduce redesign risks by aligning with planning, design, and construction timelines.
• Independent consultants like Cornerstone provide conflict-free, expert-led evaluations that avoid vendor bias.
• Holistic risk thinking links physical, human, cyber, and technical vulnerabilities, not just controls and sensors.

To understand exactly how we help clients achieve HEA 08 compliance, take a look at our detailed Security Needs Assessment service page.

What is a Security Needs Assessment?

A Security Needs Assessment (SNA) is a formal review of the security risks and threats relevant to a specific building or site. It considers crime data, local context, architectural layout, control points, surveillance, lighting, user behaviour, and resilience, both current and foreseeable.

In BREEAM assessments, the SNA is typically required under HEA 08 to ensure that security-by-design principles are incorporated into the planning and design stages. It is conducted by a qualified security consultant who is independent of the design and supply chain.

Is an SNA mandatory?

For many developments, yes. If you are aiming for BREEAM certification, HEA 08 stipulates that a suitably qualified security specialist must be appointed during RIBA Stage 1 or 2 to carry out an SNA.

Planning authorities and insurers are also increasingly requesting SNAs for developments considered high-profile, high-risk, or publicly accessible. Waiting until construction begins risks costly redesigns or delays if security has not been adequately addressed.

If you're unsure whether your project requires a Security Needs Assessment, we can quickly advise based on your development type, planning conditions and certification goals — simply get in touch with our team, we’ll be delighted to help.

What does an SNA involve?

A comprehensive SNA typically includes:

• A local crime and risk profile for the project
• A review of proposed layouts and design features
• Recommendations for access control, lighting, surveillance and operational security
• Guidance for integrating physical security within architectural designs
• Documentation to support BREEAM or planning requirements

CornerStone delivers SNAs grounded in a 360-degree view of risk. We consider not just physical threats but also cyber, human, technical and procedural vulnerabilities.

Why use a consultant? Can’t my design team handle it?

Designers often don’t have the specialist training or security accreditations to perform an SNA, especially to the standards required for HEA 08.

Using an independent consultant and in particular a Suitably Qualified Security Specialist:

• Ensures your strategy meets planning and certification benchmarks
• Avoids vendor bias, ensuring solutions are need-driven, not product-driven
• Brings proven, cross-sector experience from similar developments
• Connects physical security with broader risk contexts, from cyber to operational procedures

Our clients include local and central government, construction firms, developers and architects as well as a diverse array of end-clients, all of whom rely on our trusted, expert advice.

What happens if I skip this step?

Omitting a Security Needs Assessment can result in:

• Missing your target BREEAM rating
• Failed certification
• Planning delays or rejections
• Expensive retrofit costs
• Increased security vulnerabilities
  

An SNA is an investment in your project's viability and operational safety. It delivers certainty and improves levels of resilience.

Make security a cornerstone of your project

Security Needs Assessments are not red tape. They are strategic tools that shape better environments for us all to enjoy. Whether you are designing a mixed-use development, a data centre or a civic space, a professional SNA ensures risks are understood and mitigation opportunities identified.