Most healthcare security relationships don’t fail in a single dramatic incident — they erode. A missed shift here, a thin report there, an officer who doesn’t know your codes, and one day you realize the coverage you’re paying for isn’t the coverage you have. Recognizing healthcare security vendor problems early lets you fix them before they become a safety or compliance failure. Below are nine signs your provider is underdelivering, and what each one should prompt you to do. If several look familiar, it may be time to act. For a benchmark of what strong coverage looks like, see our healthcare security services.

The nine warning signs

1. Chronic unfilled shifts and no-shows

An empty post is the most dangerous failure of all, and it’s the one facilities normalize fastest. If you’re regularly covering gaps yourself or hearing “we’re short tonight,” the provider’s staffing model is broken.

2. A revolving door of unfamiliar officers

High turnover means officers never learn your building, your codes, or your clinical teams. If you’re re-orienting someone new every few weeks, you’re carrying the cost of their turnover. Continuity is a safety feature in a hospital: an officer who recognizes a frequent patient, a volatile family situation, or the quickest route to a ward responds better than a stranger ever can.

3. Incident reports that are late, thin, or missing

Reporting is your record and your risk-assessment fuel. Vague, delayed, or absent reports leave you exposed if an incident is ever reviewed — and signal officers who aren’t documenting properly. In a hospital, the report is often the only durable trace of what happened, so a weak one is a real liability.

4. Officers without healthcare-specific training

A hospital isn’t a warehouse. If officers can’t de-escalate a behavioural emergency or don’t understand their PHIPA obligations, they’re trained for the wrong environment.

5. Supervision you never see

Good providers run site supervision, spot checks, and quality assurance. If you’ve never met a supervisor and no one audits the posts, standards drift with no one watching. Unsupervised officers aren’t necessarily bad officers — but even good ones slip without accountability, and you shouldn’t be the one discovering it.

6. Compliance and licensing you have to chase

You should never be the one confirming officers are licensed. If verifying PSISA compliance or insurance falls to you, the provider isn’t managing its core obligations — and every unverified officer is a gap in your own defensibility.

7. Slow or fumbled response to codes and escalations

When an officer hesitates on a Code White or doesn’t know the escalation path, training and drilling have failed. In a hospital, seconds matter.

8. No data, no KPIs, no reporting rhythm

If you can’t see response times, fill rates, and incident trends, you can’t manage the service — and the provider may be avoiding measurement because the numbers aren’t good. A confident provider volunteers its performance data; a struggling one hopes you won’t ask.

9. Communication that goes quiet between invoices

A partner checks in, reviews performance, and raises issues before you do. A vendor that only surfaces to bill you has stopped treating the relationship as a partnership — and small problems it never mentions are usually growing while you’re not looking.

What to do when the signs add up

One sign might be a bad week. Several, repeating, is a pattern — and patterns don’t fix themselves. Before you act, do three things:

  • Document it. Keep dated records of gaps, late reports, and incidents. Facts, not frustration, drive a productive conversation or a defensible exit.
  • Raise it formally. Give the provider a clear, written account of the shortfalls and a reasonable window to correct them. Sometimes a wake-up call works.
  • Check your agreement. Know your performance terms, notice period, and exit provisions before you decide anything — our service agreement guide walks through what to look for.

Not sure whether your current coverage measures up? Book a consultation and we’ll help you assess it objectively.

When it’s time to move on

If you’ve documented the problems, given a genuine chance to improve, and nothing changed, switching is the responsible call — patient and staff safety outweigh the inconvenience of a transition. Staying out of loyalty or inertia only transfers the risk to the people your security is supposed to protect. The key is doing it without creating a coverage gap, which is exactly what our risk-managed vendor transition guide is for. And when you evaluate replacements, run them through a rigorous healthcare security RFP so you don’t trade one set of problems for another.

Frequently Asked Questions

1. How do I know if it’s a bad vendor or just a bad month?
Look for patterns, not one-offs. A single missed shift is an incident; repeated gaps, thin reporting, and unanswered concerns over weeks are a pattern that won’t self-correct.

2. Should I give my vendor a chance to fix the problems first?
Usually yes. Raise the shortfalls in writing with a reasonable window to improve — but set a clear limit, because patient and staff safety can’t wait indefinitely.

3. What’s the single biggest red flag?
Unfilled shifts. An empty post is a direct safety failure, and a provider that can’t reliably staff your site has a broken model, not a temporary glitch.

4. How should I document performance problems?
Keep dated, factual records of gaps, late or missing reports, incidents, and your communications about them. This supports both a corrective conversation and, if needed, a defensible exit.

5. Can poor security reporting create compliance risk?
Yes. Weak documentation undermines your risk assessments and your position if an incident is reviewed by an inspector, insurer, or the courts.

6. Is high turnover really the vendor’s problem or just the industry?
Turnover exists industry-wide, but a good provider manages it with pay, supervision, and scheduling so you get continuity. Constant unfamiliar faces reflect how they run their business.

7. What if my staff like the current guards but the service is failing?
Individual officers can be excellent while the provider fails around them. You can value the people and still hold the company accountable for staffing, reporting, and supervision.

8. How do I raise concerns without damaging the relationship?
Be specific, factual, and solution-focused rather than accusatory. A provider worth keeping will welcome the feedback; one that gets defensive is telling you something.

9. Will switching vendors leave us exposed during the transition?
Only if it’s done poorly. A properly planned transition with overlap and knowledge transfer keeps coverage continuous, which is the whole point of a risk-managed approach.

10. How often should we formally review our security provider?
At least annually, and more often if problems appear. Regular reviews against agreed KPIs catch erosion early, before it becomes a safety or compliance issue.

A security vendor should make your facility safer and your job easier. When the signs above stack up, the erosion is already underway — and naming it is the first step to fixing it, whether that means a hard conversation or a clean move to a provider that delivers.

Concerned about your current coverage? Request a consultation with our healthcare team.