An Introduction To
Objective: To prevent loss, damage or compromise of assets and interruption to business activities.
Equipment should be physically protected from security threats and environmental hazards.
Equipment siting and protection
Equipment should be sited or protected to reduce the risk of damage from the environment, interference and unauthorised access.
Equipment should be protected from power supply failures or any other supporting utilities that supply the organisation such as water, air conditioning, gas, telecommunications etc.
Power and telecommunication cables should be protected from interception or damage.
Equipment should be correctly maintained in accordance with the manufacturer's instructions.
Security of equipment off-premises
Security procedures and controls should cover the security of equipment used outside an organisation's premises. All off site use of equipment must be authorised.
Secure disposal or re-use of equipment
Any information or licensed software should be totally erased from all equipment prior to disposal.
Removal of property
Organisational hardware, software or information should not be taken off site without prior authorisation.
The Security Practitioner
An Introduction to Information Security