Healthcare

Embedding security-by-design principles into healthcare infrastructure projects through threat and risk assessments, CPTED guidance, and standards-based frameworks that protect patients, staff, and critical clinical assets.

Vehicle-as-a-Weapon Risk Assessment Secures a New Queensland Health Car Park Design

When a new Satellite Hospital car park transitioned from multi-storey to on-grade, Agilient delivered a targeted security threat and risk assessment — including vehicle-as-a-weapon analysis — to ensure the project remained compliant with Queensland Health capital requirements. THE CHALLENGE A major construction contractor delivering the Satellite Hospital for Queensland Health encountered a design change mid-project: the originally planned multi-storey car park was revised to an on-grade configuration. This change materially altered the facility's security risk profile, introducing vehicle-as-a-weapon threats not present in the original design. Queensland Health Capital Infrastructure Requirements mandate security compliance, requiring a targeted Security Threat and Risk Assessment before the revised design could proceed. OUR APPROACH Agilient conducted a targeted STRA for the new on-grade car park design, applying AS 4485:2021, ISO 31000, and CPTED principles. The assessment incorporated a specific vehicle-as-a-weapon threat analysis, assessing attack vectors, potential consequences, and appropriate physical mitigation measures, including hostile vehicle mitigation design elements. Queensland Health Capital Infrastructure Requirements were applied as the compliance benchmark throughout. The STRA was scoped to be completed efficiently, enabling the project team to maintain construction programme momentum. THE OUTCOME Delivered a compliant STRA meeting Queensland Health Capital Infrastructure Requirements for the revised on-grade car park…

29-Clinic Security Assessment Protects Staff and Patients at South Australia’s Largest Private Radiology Group

A comprehensive security threat and risk assessment across 29 clinics — including 7 audited sites and specific analysis of lone-worker risk at 24/7 hospital locations — for a major South Australian radiology group with 800+ staff. THE CHALLENGE South Australia's largest private radiology group, operating 29 clinics and employing more than 800 staff, faced an increasingly complex security environment — including after-hours lone-worker risk at 24/7 hospital-embedded sites, inconsistent access controls and duress alarm coverage across the portfolio, and a growing need to demonstrate systematic duty-of-care governance. No enterprise-wide security risk assessment had previously been conducted, leaving leadership without a clear picture of security performance or a defensible basis for investment decisions. OUR APPROACH Agilient conducted a Security Threat and Risk Assessment (STRA) for the entire group, applying ISO 31000, HB 167, and AS 4485. Physical security audits were conducted at seven priority clinic sites, assessing access controls, CCTV systems, duress alarm placement and response, external lighting, and lone-worker arrangements at 24/7 hospital locations. Risk findings were consolidated into an executive-ready Security Review Report, supported by individual clinic-level spreadsheets capturing site-specific findings and treatment recommendations. An executive presentation was prepared to brief group leadership on priority risks and the recommended…

National Security Audit of 34 Primary Care Clinics Delivers a Network-Wide Standard

A security audit of 34 primary care clinics across Australia produced a ranked remediation programme and a reusable model security standard to govern all future clinic fit-outs. THE CHALLENGE A national primary care clinic network operating 34 clinics across Australia had no consistent security standard governing its physical security arrangements. As the network grew, ad hoc fitout decisions created an uneven security posture — with significant variation in CCTV coverage, access control, duress alarm provision, and staff safety arrangements across sites. A systematic, network-wide audit was needed to establish a risk baseline and create a reusable standard for future expansion. OUR APPROACH Agilient conducted a comprehensive security audit of all 34 clinics nationally, applying AS 3745-2010 as the governing framework. Each clinic was assessed across key security domains — access control, CCTV, duress alarms, physical barriers, and staff safety procedures — with findings consolidated into a network-wide risk register. Agilient developed a ranked remediation programme to prioritise investment across the portfolio and designed a model security standard to be applied to all future clinic fit-outs, ensuring the network's security posture improved consistently as it scaled. THE OUTCOME Delivered a network-wide risk register covering all 34 clinics, identifying and ranking security…

Dedicated Security Team Saves a Major Brisbane Hospital $22,000 a Week

By replacing an ad-hoc, multi-agency security arrangement with a dedicated Fire Safety and Security Team, Agilient eliminated a costly emergency response gap at a large Queensland tertiary public hospital. THE CHALLENGE A large tertiary public hospital in Brisbane faced an acute security resourcing crisis during the flammable cladding emergency, requiring simultaneous fire warden and security coverage that its existing ad hoc arrangement could not provide. The incumbent arrangement, relying on MSS Security and QPS officers without unified command, was operationally unsustainable and was costing approximately $22,000 per week. The hospital needed an expert review to replace the patchwork response with a structured, permanent security capability. OUR APPROACH Agilient conducted an emergency security review, assessing the existing resourcing model, command structure, operational procedures, and security environment across the facility. The review applied CPTED principles to the physical environment and drew on AS 3745 for emergency management considerations. Agilient designed and recommended a dedicated "Fire Safety and Security Team" — comprising a supervisor and a five-person team per shift — with unified command authority and a clear operational mandate. We developed standard operating procedures, position descriptions, and a training programme to support immediate implementation. THE OUTCOME Designed a dedicated Fire Safety and…

Security-by-Design for a 30,000m² Private Hospital Expansion — From 50% to Final Blueprint

Agilient reviewed a major Queensland private hospital expansion at both 50% and 100% design completion, embedding CPTED principles, access zoning, lockdown capability, and patient flow security into the final build. THE CHALLENGE A major private hospital group in Queensland undertook a significant campus expansion — adding 30,000 m² of new clinical and support space — and needed security risk expertise embedded in the design process from an early stage. Clinical environments present a uniquely complex security challenge: access must be controlled without impeding patient care, lockdown capability must be latent, and staff, patient, and visitor flows must be managed without creating vulnerability. Engaging security consultants too late in the design process risks expensive and disruptive retrospective remediation. OUR APPROACH Working collaboratively with the architect and clinical stakeholders throughout the design phase, Agilient conducted Security Risk Assessments at both 50% and 100% developed design milestones — enabling early identification of security design flaws while changes remained low-cost. The assessments applied ISO 31000, HB 167, AS 4485, and AS 3745, incorporating formal Threat, Criticality, and Vulnerability assessments. Key design considerations included access zoning across clinical areas, latent lockdown capability, after-hours security arrangements, and staff, patient, and visitor flow management. CPTED principles informed…