ABSTRACT
Most information security practitioners are experienced in and concentrate on logical issues of computer and telecommunications security while leaving physical security to another department. Physical access controls and protective measures for computing resources are key ingredients to a well-rounded security program. Physical access to facilities, lack of control over visitors, and lack of identification measures may place our workplaces and our employees in danger. Physical security is more important than ever to protect valuable information and even more valuable employees. It must be incorporated into the total information security architecture. The physical security plan must be developed and sold to employees as well as management to be successful. High crime rates could also threaten the computing facility and its inhabitants. It must also be reviewed and audited periodically and updated with improvements developed to support the business of the organization.
