Security for Religious Venues and Places of Worship | CloseProtectionHire

Security for Religious Venues and Places of Worship

Security for religious venues starts with an honest acknowledgement of what makes them genuinely difficult to protect. The open-door principle – the conviction that a place of worship should be accessible to anyone who comes in good faith – is not a compromise or a failure of design. It is the point. And that creates a security challenge that has no clean solution.

This guide covers the current threat picture, the legal framework now in force in the UK under Martyn’s Law, the specialist community organisations available as resources, and the practical measures that faith venue managers can implement without converting a place of prayer into a security zone.

The Threat Picture

The murders at Tree of Life synagogue in Pittsburgh on 27 October 2018 killed eleven people. The attacker had posted explicit antisemitic statements online before arriving. It remains the deadliest attack on the Jewish community in US history (Anti-Defamation League, 2018).

On 15 March 2019, fifty-one people were killed at Al Noor Mosque and Linwood Islamic Centre in Christchurch, New Zealand. The attacker entered through the main public entrance. The Royal Commission of Inquiry that followed documented systemic failures in intelligence sharing and venue security assessment (Royal Commission of Inquiry into the Terrorist Attack on Christchurch Mosques, 2020).

On 29 October 2020, three people were killed at the Basilique Notre-Dame de l’Assomption in Nice. The perpetrator had entered through the public entrance moments before the attack.

These are not isolated anomalies. They are documented events that span continents, faith communities, and threat actor types. CST recorded 9,343 antisemitic incidents in the UK in 2023 – the highest annual total since records began in 1984 (CST Annual Report 2023). Tell MAMA documented 3,026 Islamophobic incidents in the same period (Tell MAMA Annual Report 2023). The threats are real, they are continuing, and they are not confined to a single faith community.

Martyn’s Law

The Terrorism (Protection of Premises) Act 2024 – known as Martyn’s Law after Martyn Hett, killed at the Manchester Arena in May 2017 – is now on the statute book and being progressively enforced.

Standard tier (200 to 799 person capacity)

The Standard duty requires that staff and volunteers who work at the venue receive basic counter-terrorism awareness training. Action Counters Terrorism (ACT) awareness training is freely available via NPSA ProtectUK and is the government’s recommended delivery mechanism. Standard-tier venues are not required to produce written security procedures, though doing so is advisable for governance and insurance purposes.

Enhanced tier (800-plus person capacity)

The Enhanced duty is more demanding. A nominated security lead must be identified. Written terrorism protection procedures must be produced, covering evacuation, invacuation (lockdown), and communications protocols during an incident. Those procedures must be tested through exercises. Records of training and exercises must be retained. The Home Office designates an inspection body. Non-compliant venues face civil sanctions.

Capacity for the purposes of the Act is calculated on the maximum number of persons who could lawfully be present, not on typical attendance. A cathedral that seats 1,200 for a Christmas service falls within the Enhanced tier whether or not the nave is full on a routine Sunday morning.

Most large cathedrals, central mosques, and major synagogues will fall within the Enhanced tier. Most mid-size suburban churches, mosques, and community synagogues will fall within the Standard tier. For venues uncertain about which tier applies, the NPSA ProtectUK site provides guidance.

CTPHQ SeCTor

The Security of Crowded Places Training for Officers and Religious leaders programme is run by the Counter Terrorism Police Head Quarters and delivered free of charge to places of worship across the UK. A Counter Terrorism Security Adviser (CTSA) visits the venue, conducts a basic physical security assessment, briefs the leadership team on current threat methodologies, and recommends practical mitigations appropriate to the venue’s size and profile.

The visit is free. It does not generate any commercial obligation. It is, in the experience of most venues that use it, the most useful single hour a security-conscious faith leader can spend. Contact your local Counter Terrorism Police unit or use the NPSA ProtectUK platform to request a visit.

Community Security Organisations

Community Security Trust

CST has protected the British Jewish community since 1994. Its operational footprint is substantial: over 4,000 trained volunteer guards deployed at synagogues, Jewish schools, and communal events; dedicated incident reporting lines with direct links to the Metropolitan Police and CTPHQ; and a team of professional security advisers who have worked with hundreds of Jewish communal buildings across the UK.

The CST model is instructive for any faith community. The volunteer guard programme combines visible deterrence with culturally embedded community members who understand the social environment and the people using the venue. Guards receive counter-terrorism awareness training, conflict management training, and first aid. The model functions because the community owns it.

Muslim Safety Forum

The Muslim Safety Forum works with the Metropolitan Police and other agencies to support mosque and Islamic institution security, primarily in London. MSF provides guidance on physical security, incident reporting, and community liaison with police. Outside London, local authority hate crime coordinators and regional CTSA teams are the equivalent resource.

Faith Associates

Faith Associates provides security consultancy, training, and governance support to faith communities across the UK, with particular experience in mosque and gurdwara security. Its teams combine formal security sector credentials with an understanding of community governance structures that most commercial security firms cannot replicate.

The Open-Access Problem

A ticketed commercial venue can mandate a search on entry. A church cannot do this without fundamentally changing the character of the institution. This is not a failure of security planning – it is the defining constraint, and it requires a specific response.

Practical measures that do not require entry screening:

Congregation marshals and volunteer stewards. Trained community members positioned at entry points during services provide a welcoming presence and a first line of observation. Their function is to notice, not to confront. A marshal who identifies concerning behaviour can notify a designated security lead without any visible intervention. This is a skills gap that ACT training addresses directly.

CCTV at entry points. External cameras covering approach routes, the car park, and the main entrance create deterrence and provide a forensic record. Under UK GDPR, data retention policies must be documented and signage displayed. CST and the CTPHQ SeCTor team can both advise on appropriate specifications.

Bag checks for high-risk occasions. A proportionate search protocol for specific high-threat events – major holy days, nationally significant services, events with high-profile attendees – is defensible and accepted within most faith communities when explained in advance and applied consistently. A blanket search policy for every routine service is disproportionate.

Hostile vehicle mitigation. Where a venue fronts directly onto a public pavement with no natural standoff, vehicle-as-weapon risk should be assessed. NPSA provides guidance on HVM options for venues without the budget for permanent infrastructure. Temporary bollards and vehicle-width restrictions are available for high-attendance events.

Surveillance detection. A trained individual observing the approach to the venue during high-attendance services can identify patterns consistent with hostile reconnaissance. This is not a visible uniformed role – it is an observation function. It requires training in what to look for and a clear reporting chain. For the methodology, see our guide to hostile reconnaissance detection.

High-Profile Services and Events

The risk profile for a standard weekly service differs materially from a nationally televised memorial service, a diplomatic funeral, a high-profile interfaith summit, or a major holy day service attended by several hundred people. High-profile occasions require a distinct security plan, not a scaled-up version of the weekly routine.

That plan should include: an advance assessment of the venue and its approach routes, early liaison with local police (weeks before the event, not on the day), a named security lead with clear authority for the day, pre-briefed congregation stewards, a designated medical responder, and tested evacuation and invacuation procedures.

For events where close protection is required for specific attendees, the CPO team must adapt to the open-access environment. The operational constraints of a major cathedral – public entries, large crowded congregation, social expectations of accessibility – differ fundamentally from a hotel conference room. Advance work is the primary mitigation. For the full framework for commissioning event security for high-profile occasions, see our guide to event security planning.

Physical Security Baseline

A CTPHQ SeCTor visit or CST assessment will cover most of the following. For venues without immediate access to those resources, this is the baseline assessment framework:

Perimeter and access. How many entry points are in active use during services? Can secondary access points be controlled during high-risk periods without disrupting routine attendance? Are exterior lighting levels adequate at all approaches?

CCTV. Are primary entry points, car parks, and street frontages covered? Is footage stored remotely or on a local recorder that could be destroyed or stolen during an incident? Is the retention period and deletion schedule documented and GDPR-compliant?

Access control to non-public areas. What access does the public have to offices, vestries, storage rooms, and infrastructure areas? Can sensitive spaces be secured without being immediately accessible during services?

Internal communications. Is there a clear procedure for escalating a concern during a service? Do all stewards know who to notify and how? Is there a direct-line contact for the local Counter Terrorism Police on the security lead’s phone?

First aid. Is a trained first aider present during services? Is a defibrillator on site and known to all volunteers? In the first minutes of an incident, before emergency services arrive, casualty care is a life-safety function – not a security function, but inseparable from the overall response.

The Security Lead Role

Every faith venue benefits from identifying one person whose responsibilities include security. This does not have to be a paid position. It can be a head warden, a trustee, or a senior volunteer who receives training and owns the relationship with local police and specialist community organisations.

The security lead should maintain an annual relationship with the CTSA, deliver or coordinate ACT training for new stewards, review the physical security baseline annually, plan for high-risk services and events, and maintain an incident log. Several specialist faith sector insurers – including Ecclesiastical Insurance, the largest insurer of UK churches – ask about security governance as part of their underwriting process. A documented security lead and written procedures demonstrably reduce premium risk.

Overseas and P1 City Context

For communities with a global footprint, the risk picture extends beyond the UK. In Lagos, Christian worship communities have faced documented attacks by Boko Haram affiliates and armed raiding groups. In Karachi, sectarian violence targeting Shia mosques and shrines is recorded regularly by the Pakistan Institute for Conflict and Security Studies. In Nairobi, Al-Shabaab has targeted churches and Christian gatherings since the Westgate attack in 2013.

For diaspora communities operating security programmes for international partner institutions, country-specific risk assessment is the starting point. Local security provision must be appropriately licensed and culturally calibrated to the community it is protecting.