After reading this chapter and completing the exercises, you will be able to do the following:
Define the concept of physical security and how it relates to information security.
Evaluate the security requirements of facilities, offices, and equipment.
Understand the environmental risks posed to physical structures, areas within those structures, and equipment.
Enumerate the vulnerabilities related to reusing and disposing of equipment.
Recognize the risks posed by the loss or theft of mobile devices and media.
Develop policies designed to ensure the physical and environmental security of information, information systems, and information-processing and storage facilities.