Information resource owners with responsibility over infrastructure equipment shall: a. Monitor physical access to the facility where the information resource resides to detect and respond to physical security incidents; b. Review physical access logs at least monthly and upon occurrence of an actual or potential indication of a security incident; and c. Coordinate results of reviews and investigations with the chief information security officer.
Unauthorized parties have inappropriate physical access to all rooms and offices of a facility.
The organization:
a. Monitors physical access to the facility where the information system resides to detect and respond to physical security incidents;
b. Reviews physical access logs [Assignment: organization-defined frequency] and upon occurrence of [Assignment: organization-defined events or potential indications of events]; and
c. Coordinates results of reviews and investigations with the organizational incident response capability.
The organization has documented standards and procedures to monitor physical access to offices, rooms, data centers, areas containing information systems, and other facilities based on risk. Monitoring includes review of logs and alerts from physical security systems, and cameras.
The state organization monitors physical access to the information system to detect and respond to physical security incidents.
Obtain physical and environmental protection policy; procedures addressing physical access monitoring; physical access logs or records; intrusion alarm/surveillance equipment logs or records and ascertain if :
(I)the organization monitors physical access to the information system to detect and respond to physical security incidents.
(ii)the organization monitors real-time intrusion alarms and surveillance equipment.
