Verify contracts, licensing, labor compliance, and insurance before closing on any manned guarding or patrol business.
Acquiring a security services company in the $1M–$5M revenue range requires disciplined due diligence across five high-risk domains: contract quality, regulatory licensing, workforce stability, insurance adequacy, and technology infrastructure. The industry's labor-intensive model and multi-jurisdictional compliance requirements create hidden liabilities that can erode post-close returns quickly. This checklist is designed for PE sponsors, strategic acquirers, and SBA-financed entrepreneurial buyers evaluating lower middle market security operators.
Evaluate the durability, assignability, and concentration of the client contract base driving recurring revenue.
Request all active client contracts and document term lengths, renewal clauses, and expiration dates.
Multi-year contracts with auto-renewal provisions are the primary value driver in security services acquisitions.
Red flag: More than 30% of contracts are month-to-month with no committed renewal language.
Calculate revenue concentration by client and flag any single client exceeding 20% of total revenue.
Over-concentration in one account creates catastrophic revenue risk if that client defects post-close.
Red flag: One commercial or government client represents more than 25% of annual contract revenue.
Confirm all contracts include assignability clauses permitting transfer to a new ownership entity.
Non-assignable contracts can collapse post-close if clients refuse to consent to the ownership transfer.
Red flag: Key contracts contain change-of-control termination rights exercisable by the client without penalty.
Review historical contract renewal rates and document any lost accounts over the past 36 months.
Renewal rates above 85% indicate a sticky client base and reliable forward revenue visibility.
Red flag: Two or more anchor accounts were lost in the prior 24 months without documented replacement revenue.
Verify that all state and local guard agency licenses are current, clean, and transferable to a new owner.
Confirm the company holds active guard agency licenses in every jurisdiction where it currently operates.
Operating without a valid agency license exposes the buyer to fines, forced service suspension, and contract loss.
Red flag: Any jurisdiction shows a lapsed, suspended, or conditionally reinstated agency license in the past three years.
Audit all armed guard certifications and verify compliance with state firearms qualification renewal schedules.
Armed personnel operating with expired qualifications create direct liability and regulatory enforcement risk.
Red flag: More than 10% of armed officers have firearms certifications that are expired or overdue for renewal.
Review the last three years of OSHA filings, incident reports, and any regulatory enforcement actions.
A pattern of OSHA violations or unresolved citations signals systemic safety management failures.
Red flag: Any open OSHA citation, use-of-force investigation, or regulatory consent order remains unresolved at close.
Verify that entity-level licenses are transferable or reissuable to the acquiring entity post-close.
Some states require a new license application for a change of ownership, creating a post-close operational gap.
Red flag: Seller's legal counsel cannot confirm a clear path to license transfer within 60 days of closing.
Assess turnover rates, wage structures, overtime exposure, and employee classification practices across the guard workforce.
Obtain trailing 12-month turnover data segmented by armed, unarmed, and supervisory officer classifications.
Annual turnover above 100% signals recruiting dysfunction and inflates post-close labor and training costs.
Red flag: Annualized turnover exceeds 120% with no documented retention program or structured onboarding process.
Review payroll records for the past 24 months to identify overtime patterns and FLSA compliance.
Security officers working irregular shift coverage accumulate overtime quickly, compressing already thin margins.
Red flag: Systematic overtime averaging more than 15% of total payroll with no scheduling controls in place.
Audit worker classification practices to confirm all officers are properly classified as W-2 employees.
Misclassified contractors in security create back-tax liability, benefit exposure, and state labor board penalties.
Red flag: Any active guard personnel are paid as 1099 contractors rather than W-2 hourly employees.
Document all wage rates by role and geography and compare against applicable minimum wage schedules.
Minimum wage increases in key markets can compress margins significantly within 12–24 months post-acquisition.
Red flag: Current wage rates in any operating jurisdiction are within $0.50 of the next scheduled minimum wage increase.
Confirm that general liability, workers' compensation, and professional liability coverage are adequate and claims-free.
Obtain current certificates of insurance for general liability, workers' comp, and professional liability policies.
Gaps or lapses in coverage leave the acquirer exposed to incidents occurring during the seller's ownership period.
Red flag: Any policy has lapsed, been cancelled, or carries coverage limits below industry standard minimums.
Review the five-year claims history for workers' compensation including frequency, severity, and open reserves.
High-frequency workers' comp claims inflate experience modification rates and future insurance premiums significantly.
Red flag: Experience modification rate exceeds 1.25 or any catastrophic single claim remains open and unresolved.
Request litigation history and any pending claims alleging guard misconduct, negligent hiring, or failure to protect.
Use-of-force lawsuits and negligent hiring claims can produce seven-figure judgments not covered by base policies.
Red flag: Any active lawsuit alleging guard misconduct, wrongful death, or negligent security remains unresolved at close.
Verify that professional liability coverage includes errors and omissions protection for monitoring service failures.
Remote monitoring and dispatch errors that result in client losses create professional liability exposure beyond GL.
Red flag: Professional liability policy excludes technology-enabled monitoring services the company actively provides to clients.
Evaluate dispatch systems, monitoring platforms, reporting tools, and documented operational procedures.
Inventory all technology systems including dispatch software, GPS tracking, access control, and client portals.
Proprietary or integrated tech platforms increase switching costs and justify higher valuation multiples.
Red flag: No formal dispatch or workforce management system exists; scheduling is managed via spreadsheets or text messages.
Request and review the company's standard operating procedures for scheduling, dispatch, and incident response.
Documented SOPs reduce key-man dependency and support operational continuity through an ownership transition.
Red flag: No written SOPs exist and all operational knowledge resides exclusively with the owner or one key employee.
Assess any proprietary monitoring capabilities, alarm response contracts, or remote video surveillance services.
Technology-enabled recurring revenue from monitoring contracts commands higher multiples than manned guarding alone.
Red flag: Monitoring contracts are owned by a third-party vendor with no direct client relationship held by the target company.
Evaluate the owner's role in daily operations and document which client relationships are owner-dependent.
Owner-dependent client relationships are the single largest post-close revenue risk in security services acquisitions.
Red flag: Three or more top-ten clients have no relationship with any manager other than the selling owner.
Find Security Services Businesses For Sale
Vetted targets with diligence packages — skip the cold search.
Well-run security services businesses with recurring multi-year contracts and diversified client bases typically trade at 3.5x to 6x EBITDA. Companies with technology-enabled monitoring revenue, government contracts, or armed guard specializations command the higher end of that range. Businesses with high customer concentration, month-to-month contracts, or unresolved compliance issues are discounted significantly below 4x.
Review every active contract for an assignability clause or change-of-control provision before closing. Contracts lacking explicit assignability language require the client's written consent to transfer. Your attorney should conduct this review as part of legal due diligence and, where consent is needed, the seller should facilitate written client confirmations prior to close rather than relying on post-close goodwill.
Security companies must hold a state-level guard agency license in every jurisdiction they operate, and armed service providers require additional firearms-related approvals. License transferability varies by state — some states allow a name change on an existing license while others require a new application by the acquiring entity. Engage a compliance attorney with multi-state security licensing experience early in due diligence to map the transfer process and timeline for each active jurisdiction.
Request trailing 12-month payroll and termination data to calculate annualized turnover by classification. Industry average turnover in manned guarding exceeds 100% annually, so anything above 120% signals a structural recruiting or retention problem. Assess whether the company has a dedicated HR function, a recruiting pipeline, and a structured onboarding program. High turnover post-close will directly increase labor costs, reduce service quality, and create contract retention risk with your most important clients.
More Security Services Guides
More Due Diligence Checklists
Stop cold-searching. Find signal-scored Security Services targets with seller motivation already identified.
Create your free accountNo credit card required
For Buyers
For Sellers