it244_r4_appendix_e

Associate Level Material

Appendix E

Physical Security Policy

University of Phoenix

IT/244 Intro to IT Security

Physical Security Policy

Due in Week Five: Outline the Physical Security Policy. Merkow and Breithaupt (2006) state, “an often overlooked connection between physical systems (computer hardware) and logical systems (the software that runs on it) is that, in order to protect logical systems, the hardware running them must be physically secure” (p.165).

Describe the policies for securing the facilities and the policies of securing the information systems. Outline the controls needed for each category as relates to your selected scenario.

These controls may include the following:

Physical controls (such as perimeter security controls, badges, keys and combination locks, cameras, barricades, fencing, security dogs, lighting, and separating the workplace into functional areas)

Technical controls (such as smart cards, audit trails or access logs, intrusion detection, alarm systems, and biometrics)

Environmental or life-safety controls (such as power, fire detection and suppression, heating, ventilation, and air conditioning)

Security of the building facilities

Physical entry controls

FILLIN “”In order to manage proper systems controls, each employee should be required to carry ID badges. This will ensure that the right employees will be accessing sentive documents. It will also allow the company to track entries to the system are authorized users. Other important options to ensure proper secuirty will include mantraps, gates, turntiles and fences.

1.1.2 Security offices, rooms and facilities

FILLIN “”Important physical entry controls should be in a secured envirnment, that is why security offices should be implemented. security measures should be also be put in place to make sure valuable documents are safe. To ensure this some security measures should be implemented. These measures should include facail recognition software for enhance monitoring. Another security tool should be intrusion dectors and photelectric sensors. With all these tools being installed, all the documents that are in the offices will be protected.

1.1.3 Isolated delivery and loading areas

FILLIN “”There are some areas that should be secluded from main offices. these areas include loading and delivery area along with visiting areas. However even though isolated from the main office, security measures should be implemented. These measure should include security camers, that should me the lowest measure installed. Still no unauthorized access should be aloud, that is why all the drivers and visitors should be scanned to ensure the proper security is being done.

Security of the information systems

Workplace protection

FILLIN “”Vital information is a mustfor any companies success, that is why work place protection is a must. For workplace protection all secuirty measure shoud be tested frequently to make sure the system is performing correctly. Securing the workplace with physical and logical secuirty systems of all different kinds is a must.

Unused ports and cabling

FILLIN “”Any iformation technology departments is the team that marks the ports and cables that are used for various purposes. They should be monitored and maintained at all times and should also be secured. This will make sure that the computers in the company do not get accessed by unauthorized users. When it is time to repair the system and other netowrk troubles, the unused ports and cables should be properly secured.

Network/server equipment

FILLIN “”The highest concern for any company for any compnay is making sure all the network and server equipment is secured behind locked doors. Thus making sure the proper measures are being done to ensure security is important. This can be done by installing security camers inside and outside where network and server equipment are being held.

Equipment maintenance

FILLIN “”Equipment maintenance is a must, that is why all devices should be maintained regularly and updates should be up to date along with secuirty patches. To ensure that the system is secure, the hardware should be changed out occasionally.

Security of laptops/roaming equipment

FILLIN “”Security is also a must on all mobile devices. They will also need authentication privilages along with all the wired devices at the company. An effective way to maintain these devies when it comes to security, is the use of biometrics. This along with the use of username and passwords should be installed and used by employees at all times. This will ensure that only the intended users are accessing the device.

References

Cite all your references by adding the pertinent information to this section by following this example.

American Psychological Association. (2001). Publication manual of the American Psychological Association (5th ed.). Washington, DC: Author.

Scalet, S. (n.d.). 19 ways to build physical security into a data center. Retrieved from http://www.csoonline.com/article/220665/19-ways-to-build-physical-security-into-a-data-center