Due Diligence Guide: Acquiring a Security Services Company

A structured framework for evaluating contract quality, licensing compliance, workforce stability, and operational risk in lower middle market security services acquisitions.

Find Security Services Acquisition Targets

Security services businesses offer recurring contract revenue and essential-service positioning, but acquisitions carry real risk from labor volatility, licensing complexity, and client concentration. This guide helps buyers systematically evaluate a target across financial, operational, and compliance dimensions before closing.

Security Services Due Diligence Phases

Phase 1: Financial & Contract Quality Review

Validate revenue quality, EBITDA sustainability, and contract durability before advancing to deeper diligence.

Normalize EBITDA for owner compensation and one-time expensescritical

Recalculate trailing 3-year EBITDA removing above-market owner salary, personal expenses, and non-recurring costs to establish true earnings power.

Analyze client contract terms and concentration riskcritical

Review all active contracts for length, renewal clauses, assignability provisions, and whether any single client exceeds 20% of revenue.

Verify billing rates and wage spread by contractimportant

Confirm each contract's bill rate covers fully-loaded labor costs including wages, overtime, taxes, and workers' comp, ensuring positive margin per site.

Phase 2: Licensing, Compliance & Insurance

Confirm the business operates legally across all jurisdictions and that coverage transfers cleanly to a new owner.

Audit all state and local guard agency licensescritical

Verify the company entity license, individual officer licenses, and armed guard permits are current, in good standing, and transferable upon ownership change.

Review insurance policies for adequacy and transferabilitycritical

Confirm general liability, workers' compensation, and professional liability coverage limits are appropriate and whether policies follow the business or require reissuance post-close.

Check for OSHA violations, litigation, and use-of-force incidentsimportant

Pull OSHA records, active litigation, and incident reports. Unresolved use-of-force or negligent-hiring claims represent significant post-close liability exposure.

Phase 3: Workforce, Operations & Technology

Assess workforce stability, operational infrastructure, and technology capabilities that determine post-acquisition performance.

Calculate annual employee turnover rate and overtime dependencycritical

Turnover above 100% annually signals systemic HR problems. High overtime reliance artificially inflates labor costs and signals chronic understaffing requiring immediate capital.

Evaluate dispatch systems, scheduling software, and client reporting toolsimportant

Identify all technology platforms used for shift scheduling, incident reporting, and client portals. Assess licensing ownership, integration capability, and upgrade requirements.

Assess owner dependency and middle management depthcritical

Determine whether operations, client relationships, and scheduling can function without the seller. Absence of supervisory staff creates serious transition and retention risk.

Security Services-Specific Due Diligence Items

Confirm all armed guard certifications, firearm permits, and state-specific training hour requirements are documented for every officer carrying a weapon on duty.
Verify government and institutional contracts for assignment restrictions, background check requirements, and agency approval processes that could delay or block ownership transfer.
Assess proprietary monitoring capabilities, access control integrations, or specialized niches such as executive protection or event security that command premium billing rates.
Review payroll records to identify any security officers misclassified as independent contractors, which creates IRS liability and violates most state guard licensing statutes.
Evaluate geographic licensing footprint relative to where guards are physically deployed to catch any unlicensed operations in adjacent counties or states.

Frequently Asked Questions

What EBITDA multiple should I expect to pay for a security services company?

Lower middle market security firms typically trade at 3.5x to 6x EBITDA. Higher multiples reflect diversified long-term contracts, armed or specialized services, and strong management teams operating independently of the owner.

Can I use an SBA loan to acquire a security services company?

Yes. Security services businesses are SBA 7(a) eligible. Expect to inject 10–20% equity, with sellers often carrying a 10–20% note on standby. Licensing transferability and clean financials are critical for SBA lender approval.

What is the biggest deal-killer in security services acquisitions?

Customer concentration is the top risk. A single client representing 30–40% of revenue that holds a month-to-month contract can collapse deal value overnight if lost during or after transition.

How long should the seller stay involved after closing?

A 6–12 month transition consulting agreement is standard. Client relationships, licensing continuity, and workforce stability all benefit from a structured handoff, especially when the owner holds key government or institutional relationships.

More Security Services Guides

Buy a Security Services Business →Due Diligence Checklist →Common Mistakes →Valuation Guide →SBA Loan Guide →Integration Guide →

Find Security Services businesses ready for acquisition

DealFlow OS surfaces targets with seller signals and motivation scores — so you know before you start diligence. Free to join.

Start finding deals — free

No credit card required