Secure areas

Objective: To prevent unauthorised access, damage and interference to business premises and information.

Information processing facilities supporting critical or sensitive business activities should be housed in secure areas.

Physical security perimeter

Physical security protection should be based on defined perimeters.

Physical entry controls

Secure areas should be protected by appropriate access and entry controls.

Securing offices, rooms and facilities

The selection and design of secure areas or areas where sensitive information is processed should be carefully undertaken.

Protecting against external and environmental threats

Physical protection against natural threats such as fire, flood etc as well as threat from man made disasters such as civil unrest, terrorist action etc should be undertaken.

Working in secure areas

Additional personnel controls may need to be implemented to enhance security some areas in addition to those provided by the physical security of the workplace.

Public access, delivery and loading areas

Any access point to the organisation, such as delivery and loading points or any place where unauthorised access could be effected should be secured to prevent unauthorised access.