Preparing your team for the Terrorism (Protection of Premises) Act 2025 (Martyn’s Law)
Why training is critical to building practical, role-specific protective security capability
The publication of statutory guidance by the UK Government under the Terrorism (Protection of Premises) Act 2025 (also referred to as Martyn’s Law) marks an important shift for organisations responsible for public-facing premises and events.
The guidance sets out what is required of those responsible for venues in scope of the Act to meet the legal requirements, providing clarity on expectations, responsibilities and how these should be applied in practice.
The conversation is no longer about what the legislation might require, but how to translate it into practical, role-appropriate action.
While organisations have until April 2027 to prepare, effective preparedness is not a single activity. It is ongoing and organisation-wide, spanning awareness, procedures, training and capability.
The role of training
A key theme running throughout the guidance is that training needs to be tailored to individuals’ roles and circumstances:
- Staff with specific responsibilities may require different or additional training
- Training, learning or instruction should be tailored to the premises and procedures
- Supervisors and those responsible for activating procedures may require more advanced, role-specific instruction
- Training should support effective implementation, not just awareness
At the same time, the guidance reinforces that all staff should have a baseline understanding that an attack could occur at any time, what to look out for, and how to respond to and report concerns.
This creates a clear expectation of a layered approach to learning – from baseline awareness through to applied capability.
From guidance to practice: where the CTPSaP qualification fits in
The Level 3 Award in Counter-Terrorism Protective Security and Preparedness (CTPSaP) qualification, developed by SFJ Awards in collaboration with the National Counter-Terrorism Security Office, provides structured, applied learning for those responsible for protective security and preparedness.
Whilst completion of the CTPSaP qualification alone does not ensure compliance with the Act, it supports organisations to interpret and implement its requirements effectively.
The Act establishes the role of the Responsible Person (often referred to as the Responsible Officer) – those with control of premises or settings in scope, who are therefore accountable for meeting the Act’s requirements.
The statutory guidance supports this role by clarifying key terms used throughout:
- Must – a legal requirement
- Should – strongly recommended good practice
- Could – optional or illustrative
Within this context, many of the “must” and “should” expectations align directly with the knowledge and skills developed through CTPSaP.
| Guidance expectation | Requirement type | How CTPSaP supports this |
| Ensure appropriate public protection procedures are in place, so far as reasonably practicable | Must | Unit 1: Introduction to Counter-Terrorism builds understanding of threats, attack methodologies and protecting public spaces |
| Staff are appropriately trained and understand procedures | Should | Unit 2: Positive Organisational Security Culture supports embedding awareness, engagement and consistent behaviours across teams |
| Staff are appropriately trained and understand procedures | Must / Should | Unit 3: Counter-Terrorism Protective Security covers risk identification, hostile reconnaissance and layered mitigation strategies |
| Ensure those responsible for procedures can respond effectively | Should | Unit 4: Counter-Terrorism Preparedness develops planning, response and implementation capability |
| Document risk assessments and demonstrate how measures reduce harm (Enhanced Tier) | Must | Units 5 & 6: Risk Assessment and Preparedness Planning / Written Recommendations build structured, evidence-based decision-making and reporting |
| Avoid a one-size-fits-all approach across multiple sites | Should | The qualification emphasises contextual decision-making, enabling learners to apply principles to their specific environment |
Crucially, the guidance emphasises that training should be tailored to both role and operating environment. The CTPSaP qualification builds the capability to apply these principles in practice – further enhanced through sector and organisation-specific delivery.
Beyond terrorism: why the legislation matters more broadly
Whilst the legislation is focused on terrorism, its principles extend beyond this to support wider public safety and the development of a positive security culture – reinforcing that this is not a niche concern but one relevant to all public-facing organisations.
Incidents that threaten public safety are not always formally classified as terrorism, but they often require the same level of preparedness, awareness and response capability.
It is easy to assume that such incidents are unlikely or that “it won’t happen to us.” However, the evidence tells a different story.
Information from the Home Office impact assessment highlights that public venues have been targeted by terrorists in the UK and globally for many years. Since March 2017, the UK has experienced 15 terrorist attacks and disrupted a further 39 plots, demonstrating that a wide range of public locations remain potential targets.
This is reflected in the UK’s National Risk Register, where attacks on public places are categorised as among the highest likelihood risks facing the country.
The financial impact alone is significant. The Home Office estimated the direct cost of attacks in the UK in 2017 at £196.4 million (2021 prices) – equivalent to approximately £246.4 million in 2026. While this figure relates to a specific set of incidents rather than an average, it highlights a consistent reality: terrorist attacks carry substantial financial consequences.
But financial cost only tells part of the story. There are, of course, the impacts that cannot be quantified – the profound and lasting effects on victims, survivors, witnesses, and the wider communities affected.
Altogether, this reinforces a critical point: preparedness is not only about compliance with legislation. It is about ensuring organisations are ready to respond effectively to a range of incidents that threaten public safety, whether or not they are formally classified as terrorism.
The statutory guidance, and the evidence underpinning it, challenges the assumption that these risks apply primarily to other organisations or environments, and instead points towards the need for practical, proportionate and role-appropriate preparedness across all public-facing settings.
A differentiated approach: role and environment matter
A key implication of the statutory guidance is not just whether organisations train staff, but how that training is delivered in practice. The guidance is explicit: it should be appropriate to role and tailored to environment.
This is where Skills for Justice Training’s approach is distinct. People 1st’s collaboration with Skills for Justice Training supports delivery of the qualification in line with the guidance’s recognition that, in some cases, sector-specific training, learning or instruction may be required.
Combining protective security expertise with deep workforce insight across hospitality, retail, tourism, transport and other public-facing sectors, the Level 3 Award in Counter-Terrorism Protective Security and Preparedness can be tailored to reflect:
- Sector-specific environments (retail, transport, tourism, hospitality, health, justice, and protective services)
- Role-specific responsibilities (frontline, supervisory and strategic roles)
- Organisation-specific procedures and operating contexts
This means delivery reflects both sector context and organisational roles, supporting consistent, real-world capability across teams responsible for safety, security and operational response.
For group or organisational training, delivery can be structured to reflect your operating environment, workforce roles and existing procedures, supporting consistent understanding across teams responsible for safety, security and incident response.
From awareness to capability: an end-to-end approach
The guidance points clearly towards a layered model of preparedness:
- Baseline awareness for all staff
- Role-specific instruction for those with responsibilities
- Applied capability for those leading or implementing procedures
The CTPSaP qualification plays a key role in that third layer, supporting organisations to build the capability needed to move beyond awareness and into confident application.
Alongside this, Threat Awareness eLearning and bespoke training can support organisations in building consistent baseline knowledge and tailoring learning to their specific context.
Acting now: a practical next step
With the statutory guidance now published, organisations have greater clarity, but also increased responsibility.
April 2027 may feel distant, but building capability across teams, embedding procedures and ensuring training is appropriate to role and environment takes time.
The most effective organisations will not wait. They will start by asking:
- What level of awareness do all staff need?
- Which roles require more advanced capability?
- How do our procedures translate into real-world action?
From there, the focus shifts from compliance to capability – and from theory to preparedness.
Final thought
The legislation is not about expecting organisations to eliminate risk. It is about ensuring they are ready to respond when it matters most. The Level 3 Award in Counter-Terrorism Protective Security and Preparedness is not a compliance tool, but it is a powerful way to build the knowledge, skills and practical capability needed to meet that expectation.
Related News
Utility disruption hit 1 in 5 UK adults in the past year, exposing risks for the visitor economy
UK Resilience Academy to Expand National Occupational Standards for Resilience and Emergencies
Building workforce planning capability at McKeever Hotels with Six Steps
