9/11 made terrorism a part of everyday life on a global basis, attacking civilisation as a whole. As a result, the activity of terrorist organisations reduces people’s sense of security even in their everyday lives, by randomly attacking high public density targets with a huge emotional and publicity impact. The states cannot guarantee security through their law enforcement agencies alone, as the sources of danger have multiplied and become more unpredictable. Therefore, it is more important than ever to involve communities, social organisations, economic and market actors in maintaining common security. Private security thus plays by now an extremely important role in completing public order and security. The radicalisation trend within the terrorist organisations results in a growing number of internal terrorism threats. Given that terrorists aim to choose targets with a likely “success” of their acts, it is important to highlight those whose partial, temporary or total downtime entails consequences which would also make other infrastructures inoperative. Those who from these aspects turn to be the most important, and their continuous and well-functioning operation are essential to the operation of other infrastructures, are called critical infrastructures. If we put the above phenomena together, a clear conflict emerges: critical infrastructure protection, although in most cases not state owned, is also a common security issue, protected mostly by private security services, employing people mainly trained for private security tasks. Our article highlights this problem introducing the scientific background, also suggesting a possible solution for evaluation.