SF101 Physical Security - ITPro

Physical Security

Physical Security Definition
  • [i] Physical Security) - (definition:: ) - (subject::

Physical Security Example

There are several categories of physical security, perimeter security (outside of the building), building access control (how to enter the building), and internal security, including data center security.

Perimeter Security

  • Fencing: Acts as a deterrent and defines the boundaries of the secured area.
  • Guards: Monitor CCTV, react to security breaches, and act as a deterrent.
  • Closed-Circuit Television (CCTV): Provides surveillance and records activity for evidence and analysis.
  • Lighting: Illuminates vulnerable areas, deterring potential intruders and aiding surveillance.
  • Signage: Communicates security policies and restricted areas, acting as a deterrent.
  • Bollards and Barricades: Prevent vehicle access to vulnerable areas, protecting against physical attacks.
  • Strategic Landscaping: Using trees and shrubs to obstruct views into windows and sensitive areas.

Building Access Control

  • Keycard Access: Requires authorized personnel to use keycards for entry, limiting access to specific areas.
  • Receptionist/Security Guard: Acts as an access control point, verifying identity and purpose of visitors.
  • Secure Access Vestibules (formerly known as "mantraps"): Double-door systems that control entry and prevent tailgating or piggybacking.
  • Biometric Authentication: Uses unique physical characteristics (fingerprint, iris scan) for authentication, enhancing security.
  • PIN/Card Authentication: Requires a PIN or card swipe for access, adding an extra layer of security.
  • Door Swing Direction: Doors swinging inward provide additional time for response in case of forced entry.

Internal Security

  • Fire Suppression System: Protects equipment and personnel from fire damage, using appropriate fire suppressants.
  • Heating, Ventilation, and Air Conditioning (HVAC): Maintains optimal temperature and humidity levels to prevent equipment damage from condensation, static discharge, or overheating.
  • Locks: Secure server racks and individual servers, preventing unauthorized physical access to critical data.
  • Intrusion Detection Locks: Physical locks with sensors that trigger alarms upon unauthorized access attempts.
  • Kensington Locks: Secure laptops and other portable devices to prevent theft.
  • Privacy Screen Filters: Prevent shoulder surfing and visual eavesdropping, protecting sensitive information displayed on screens.

For employees who work from home, physical security is also very important if they go outside of their home to work at a public space, like a coffee shop or public library.

Organizations need to protect their human capital, as personnel are the reason the organization even exists. Physical security measures help to protect critical data from theft, damage, or unauthorized access. Many regulations require fire safety, building codes, data protection, and personnel projection. These measures are a few of a long list of possible security measures organizations can use.