An area that is not staffed around the clock must be checked, if necessary, at the end of normal working hours and at random times outside of working hours, except if an intrusion detection system (burglary alarm system) is installed in the area.
The boundary and structures of the area (walls, doors and windows as well as floor and ceiling structures) and/or the routes leading to the area can be equipped with an intrusion detection system (burglary alarm system), if security-classified information is kept in the area and the risk of burglary is assessed as probable.
The system's remote connections and the installation of control devices must be carried out based on a risk assessment with sufficient information security, so that access to the system is only from authorized terminals and networks and that the communication connection and the interfaces of the intrusion detection system are protected so that outsiders do not have access to the transmitted data. The location of the intrusion detection system should be located in the security area protected by it.
The management of the intrusion detection system in the area should be under the organization's own control. Management can be outsourced based on risk assessment and seperation of tasks.
