Relatively few sites are ever chosen or developed with their intended user’s inherent security needs in mind. Nevertheless, considerable improvements may be possible at many sites retrospectively, or as part of phased alterations, and the information provided in this document is intended to guide those who have a responsibility for a site’s protection and to help achieve cost effective security improvements.