Protect the Flock: How to Create a Security Program for Your Church

Churches face unprecedented risks in modern America. Medical emergencies, property crimes, cyber threats, disruptive individuals, trespassers, sexual misconduct, lawsuits, and violent attacks are common challenges for ministries of all sizes. While it’s impossible to eliminate every threat, churches can significantly reduce their exposure and improve readiness by creating a security program. Developing a new program can seem daunting, but utilizing the structured approach below will enable your church to lay a security foundation that not only provides protection for your flock, but also supports your church’s primary mission of loving people by spreading the gospel.

Step 1: Appoint a Security Manager

Every successful security program starts with ownership. Even the most carefully designed plan will fail if no one implements it. Churches should appoint a staff member or volunteer whose role explicitly includes managing church security. After all, if no one is consistently thinking about security, the church isn’t secure.

The security manager does not need extensive security expertise, but the manager should be process-oriented, decisive, and able to grasp safety and risk-mitigating principles while collaborating with church leaders. If volunteers are part of the plan, the manager must also lead the team effectively. Early actions should include learning best practices for church security and implementing basic measures while building the broader program.

Note: In some jurisdictions, only licensed individuals may be compensated for security services such as patrolling or personal protection. If hiring a manager, exclude “security services” from the job description unless licensing requirements are met.

Step 2: Conduct a Security Assessment

Next, the security manager should conduct a comprehensive security assessment. Tools from FEMA, CISA, and other government agencies are useful starting points, but they may overlook ministry-specific realities like congregant dynamics and volunteer responsibilities.

A thorough assessment identifies vulnerabilities, operational weaknesses, and other areas needing improvement. Prioritize the most significant vulnerabilities first and address secondary concerns as resources allow. Building a healthy security program is gradual and will take time to develop, so don't attempt to fix every possible security issue all at once. Doing so may result in a failure to properly address your largest vulnerabilities.

Step 3: Convene a Strategy Meeting

Next, the security manager should meet with church leadership and staff to review the most significant vulnerabilities identified during the assessment and establish a high-level direction for the security program. This discussion is strategic and should focus on what type of program the church should implement rather than specific security practices.

Key topics to cover include primary threats and security priorities (for example, active shooter scenarios and protecting the general congregation), budget, personnel options (volunteer teams, third-party contractors, or law enforcement support), alignment with the church’s broader spiritual mission, rough timelines, and other elements of the program’s framework that directly affect church operations.

Step 4: Draft a Security Policy

Using the agreed-upon strategy, the security manager drafts a security policy that serves as the program’s governing document. This policy should state its purpose and scope, define roles and responsibilities, outline key standard operating procedures, and reference other church documents as appropriate (e.g., the children’s ministry policy). The manager should work with church leadership while drafting the policy to ensure that the operational measures contained within are consistent with the ministry’s mission. This document will provide guidance for implementing the security program, serve as a training guideline for your security team, and mitigate liability by enforcing sound security practices.

While the policy should ultimately address all areas of security, it is often practical to begin with the most critical components and expand over time. For example, a church with limited resources may choose to focus first on physical security before developing guidance for cybersecurity or volunteer-specific procedures.

Step 5: Implement Policy-Driven Measures

Turn policy into practice by prioritizing quick, high-impact changes first (such as fixing broken locks, posting clear signage, and establishing access control procedures for critical areas). Track implementation weekly and note friction points: are people propping doors open, ignoring signage, or resisting new procedures? If so, address the culture and communication as part of the implementation.

Since it often takes time for a church body to accept new security practices, focus on achieving small, visible wins early. These early successes help build confidence, reinforce the value of the changes, and encourage long-term compliance.

Step 6: Build the Team or Source Third-Party Support

With foundational measures in place, expand operational capacity through volunteers or third-party security (professional contractors or local law enforcement). Make sure you have insurance that protects against the actions of your security volunteers or staff and that they are all familiar with your security policy.

If staffing is limited, other volunteers, such as ushers or parking attendants, can temporarily serve in security roles. If funds are limited, the church should prioritize hiring a local law enforcement officer to park a cruiser at the main entrance during services. This visible presence acts as a deterrent, provides immediate on-site response, and enables rapid communication with nearby law enforcement or EMS.

Note: Choosing between a volunteer security team and professional support largely depends on budget, staffing, and the church’s priorities regarding control versus liability mitigation. Each option has its pros and cons, so it’s up to the church to decide what best fits its security program and ministerial goals.

Step 7: Train!

Training is the most critical step. Staff, volunteers, and even the congregation need practice responding to security incidents ranging from fire drills to active shooters. This also includes corrective action when staff or volunteers neglect physical security practices. As the saying goes, people don’t rise to the occasion, they fall to their level of training.

Start with fundamentals such as basic medical skills, observation and communication, key roles and positions, and physical security protocols. Progress to advanced skills that are required during a complex incident response. Begin with individual-level proficiency before advancing to coordinated team training and especially church-wide exercises.

Ideally, training would culminate each year with a comprehensive exercise to test the church’s ability to handle complex scenarios. Including staff, the congregation, law enforcement, and EMS is highly beneficial. At a minimum, conduct table-top exercises with key staff and volunteers to prepare for high-risk incidents.

Step 8: Continuously Assess and Improve

Complacency is one of the greatest threats to any security program. Schedule recurring policy reviews, after-action reports, and periodic vulnerability assessments. Track proficiency, compliance, and emerging threats. Adjust the program as the church grows, changes facilities, or adopts new ministries. Use training events throughout the year to evaluate your church’s ability to respond to incidents and address areas of weakness in addition to praising proficiency. Ask for feedback from congregants, staff, and volunteers and work to rectify critical issues. Focus on aspects of the security program that were not previously addressed in leadership meetings in order to fine-tune your efforts.

Concluding Thoughts

Protecting your flock requires more than merely staffing a team, installing cameras, or drafting a policy. It takes a systematic approach to identify risks, reduce exposure, and strengthen readiness, all while preserving a welcoming ministry environment. Whether your church is just beginning its safety journey or formalizing existing efforts, a comprehensive security program ensures you are prepared to protect what matters most.

If you’re ready to safeguard your congregation, Flock Tactical can help. We guide ministries through every stage of building mission-centered security programs, from assessments and policy development to team training, volunteer support, and security product selection. Whether you are starting from scratch or enhancing an existing program, Flock Tactical offers the expertise, structure, and faith-aligned perspective your church needs to protect its people and fulfill its calling.