Physical access control to building, offices and other premises

Critical
High
Normal
Low

Secure areas of the organization cannot be accessed unnoticed. The premises are protected by appropriate access control. Only authorized persons have access to the secure areas.

Connected other frameworks and requirements:
F04: Kulkuoikeuksien hallinta
11.1.2: Physical entry controls
ISO 27001
11.1.1: Physical security perimeter
ISO 27001
PR.AC-2: Physical access control
NIST CSF
DE.CM-2: The physical environment monitoring
NIST CSF

Strong authentication for processing or storage areas of highly confidential information

Critical
High
Normal
Low

Access to areas where confidential information is handled or stored should be restricted to authorized individuals through appropriate access control, e.g. using a two-step authentication mechanism such as an access card and a passcode.

Connected other frameworks and requirements:
11.1.1: Physical security perimeter
ISO 27001
11.1.3: Securing offices, rooms and facilities
ISO 27001
PR.AC-2: Physical access control
NIST CSF
DE.CM-2: The physical environment monitoring
NIST CSF
7.1: Physical security perimeters
ISO 27001

Security services in real estates

Critical
High
Normal
Low

Organisation's premises and the operating environments of the equipment are actively protected by security.

Connected other frameworks and requirements:
11.1.1: Physical security perimeter
ISO 27001
PR.AC-2: Physical access control
NIST CSF
DE.CM-2: The physical environment monitoring
NIST CSF
7.1: Physical security perimeters
ISO 27001
7.4: Physical security monitoring
ISO 27001

Camera surveillance in real estates

Critical
High
Normal
Low

Security personnel use camera surveillance to verify unauthorized access, sabotage, or other alarms at the organization's premises.

Connected other frameworks and requirements:
11.1.1: Physical security perimeter
ISO 27001
PR.AC-2: Physical access control
NIST CSF
DE.CM-2: The physical environment monitoring
NIST CSF
7.1: Physical security perimeters
ISO 27001
7.4: Physical security monitoring
ISO 27001
No items found.