Chapter 7: Physical controls

7.1 Physical security perimeters (ISO/IEC 27001, A.7.1)

“Security perimeters shall be defined and used to protect areas that contain information and other associated assets.”

Implementation guidance

Premises that contain business processes, information, services, IT and other assets are vulnerable to unauthorised access and undesirable activities. Persons attempting such activities might work for the organisation, so internal protection should be considered as well as perimeter protection (think pomegranate instead of coconut); this is an example of where the concept of ‘zero trust’ can be productively applied.

Small premises might comprise a single physical location with just one perimeter. Larger premises might ...

Get ISO 27001 Controls - A guide to implementing and auditing, Second edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

ISO 27001 Controls - A guide to implementing and auditing, Second edition by Bridget Kenyon

CHAPTER 7: PHYSICAL CONTROLS

7.1 Physical security perimeters (ISO/IEC 27001, A.7.1)

Implementation guidance

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly