Physical Security
Normally, organizations have standard policies and procedures to protect their facilities, including their data/computer center:
- General management policies and procedures, such as security guards, allowing visitors inside the facility after proper checks, escorting visitors, building access, and surveillance cameras at each and every important location, both outside and inside of the facilities.
- IT security policies and procedures, such as guarding against unauthorized access to restricted areas, control and privileges of system administrators, password policies, remote system access policies, access card privileges, and environmental controls required for the data centers such as temperature, humidity, static, and dust controls.
The next slides describe examples of physical threats based on some of the categories from the previous slide and mention which control(s) to use to address each threat.