Information Security Management Principles, 3rd Edition

7 PHYSICAL AND ENVIRONMENTAL SECURITY

Information security managers need to have a good appreciation of associated physical security issues and the controls that they might use to make sure there is a seamless information security management system across the whole organisation.

As mentioned in previous chapters, there are three main types of operational control:

Procedural – for example checking references for job applicants.
Product/technical – for example passwords or encryption.
Physical – for example locks on doors and secure cabinets.

Physical and environmental controls are often the ones most overlooked and yet can be the most cost-effective: just physically stopping people from getting into a room can remove, or seriously reduce, ...

Get Information Security Management Principles, 3rd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Information Security Management Principles, 3rd Edition by Andy Taylor, David Alexander, Amanda Finch, David Sutton

7 PHYSICAL AND ENVIRONMENTAL SECURITY

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly