For UK employers in security-sensitive industries, proper BS7858 screening is essential. This British Standard ensures that employees working in secure environments are thoroughly vetted for identity, employment history, and character. However, many organisations make avoidable errors during the screening process, which can compromise compliance, increase risk, and delay onboarding.
In this guide, we highlight the most common mistakes businesses make with bs7858 security screening and explain how to avoid them.
1. Incomplete Employment History Verification
One of the most frequent errors in bs7858 screening is failing to verify a candidate’s full employment history.
Why it matters:
BS7858 requires a minimum of five years’ employment history to be confirmed. Gaps in employment must be explained and documented. Overlooking this step can lead to non-compliance and audit issues.
How to avoid it:
Request detailed CVs and references covering at least the last five years.
Investigate any gaps in employment with supporting documentation.
Keep accurate records of all verification attempts.
2. Using Informal or Inadequate References
Many employers rely on informal references or fail to check references thoroughly.
Why it matters:
BS7858 security screening mandates that references are authentic, independent, and provide a full account of the candidate’s suitability for a security role. Weak or unverified references compromise the integrity of the screening process.
How to avoid it:
Use structured reference request templates.
Verify the authenticity of referees.
Record all correspondence for compliance purposes.
3. Neglecting Identity Verification
Failing to confirm a candidate’s identity through proper documentation is a common bs7858 screening error.
Why it matters:
Without validated identity checks, there is a risk of fraud or misrepresentation. BS7858 requires verification using official documents such as passports, driving licences, or biometric ID.
How to avoid it:
Implement an ID gateway or digital verification system.
Check multiple forms of identification.
Keep copies securely for audit purposes.
4. Overlooking Criminal and DBS Checks
Some employers underestimate the importance of criminal background checks in bs7858 security screening.
Why it matters:
Certain roles may involve access to sensitive information, assets, or vulnerable individuals. Failure to conduct DBS checks or equivalent criminal screening increases business risk.
How to avoid it:
Conduct DBS checks as required by the role.
Record outcomes and integrate them with your BS7858 documentation.
Reassess periodically for long-term employees.
5. Poor Documentation and Record-Keeping
Even when all checks are completed, improper documentation can result in compliance issues.
Why it matters:
Auditors and regulators require clear records of bs7858 screening processes, including identity checks, references, and employment history. Missing records can invalidate your compliance efforts.
How to avoid it:
Maintain digital records in a secure system.
Keep audit trails for all screening activities.
Regularly review files to ensure completeness.
6. Misunderstanding BS7858 Requirements
Some businesses assume that BS7858 is identical to general background checks, which is incorrect.
Why it matters:
BS7858 has specific requirements, including detailed five-year employment verification, documented references, identity checks, and adherence to security standards. Treating it like a standard HR background check may result in partial compliance.
How to avoid it:
Familiarise yourself with the full BS7858 standard.
Consider training HR teams on BS7858 requirements.
Use specialist vetting providers if necessary.
7. Failing to Update Screening Policies
Businesses often perform bs7858 security screening at hiring but neglect ongoing compliance.
Why it matters:
Changes in employee roles, access levels, or regulatory updates can affect compliance. Without continuous monitoring, organisations risk falling out of alignment with BS7858 standards.
How to avoid it:
Implement periodic re-screening where applicable.
Update policies and procedures regularly.
Ensure all new and transferred staff undergo relevant checks.
8. Ignoring Digital Vetting Tools
Relying solely on manual processes can slow down onboarding and introduce human error.
Why it matters:
Manual tracking of documents, references, and approvals increases the risk of missed steps in bs7858 screening.
How to avoid it:
Adopt digital vetting platforms that integrate ID gateway and compliance workflows.
Automate reminders and verification steps.
Maintain a centralised dashboard for audit readiness.
9. Not Training Staff on Compliance
Even with robust processes, if HR and security teams are unaware of BS7858 requirements, errors are inevitable.
Why it matters:
Non-compliance often stems from human error rather than system failures. Staff who understand the standard are less likely to make mistakes.
How to avoid it:
Provide BS7858 training to relevant employees.
Conduct refresher courses regularly.
Encourage a culture of accountability and accuracy.
10. Underestimating the Importance of BS7858 Screening
Finally, some businesses treat bs7858 screening as a bureaucratic task rather than a critical risk management tool.
Why it matters:
Screening is essential to protect sensitive assets, maintain client trust, and meet contractual obligations. Underestimating its importance can lead to serious operational and reputational risks.
How to avoid it:
Treat BS7858 as a core compliance requirement.
Integrate screening into standard HR and onboarding workflows.
Monitor and review your processes regularly.
Final Thoughts
BS7858 screening is not just a formality; it is a vital component of risk management for businesses in security-sensitive sectors. By avoiding common mistakes — such as incomplete employment verification, poor documentation, and inadequate identity checks — employers can ensure compliance, protect assets, and maintain a safe working environment.
Investing in proper training, digital vetting platforms, and structured policies will help organisations streamline their bs7858 security screening process, reduce errors, and demonstrate best practice to clients and regulators.
