Secure Your IT - Part 1: Asking the Right Questions

What are you doing to physically secure your IT investments & data?

It may sound like a simple question, but it's a very important one which every IT director needs to ask. Physical security is the basis for all other security measures.

This blog post focuses on questions to help you brainstorm on physical security in the first part of a series in preventing theft and destruction. 

Secure Room for IT

  • What critical systems should be stored in a secure room?
  • Is the room structurally sound and free of unwanted environmental conditions such as hot temperatures, high humidity, leaks?
  • Have automatic and manual emergency responses been installed?
  • What kinds of access are provided to the secure room such as doors and windows?
  • How are those access points secured?
  • Who has entry access to the room?
  • Are non-essential items stored in the room?
  • Is there a record of who enters and exits the secure room?
  • Is there an up-to-date log of equipment in the secure room?
  • What policies are in place to ensure repairs to the room and IT equipment are preformed safely?

User Equipment

  • Is there an up-to-date log of current equipment assigned to users?
  • Is the equipment labeled to identify the owner or company?
  • Do you have policies to only allow only authorized user access to particular equipment (user passwords, etc...)
  • Do you have policies for portable equipment that users take out of the office?