Abstract: . . .  7.1.3 Securing offices, rooms & facilities What suitable intruder detection systems are installed for this area? The information processing facilities should be physically separated from those managed by 3rd parties. 7.1.4 Working in secure areas Establish the additional controls for Personnel or third parties. Ie should only be aware of activities in a secure area on a needs to know basis. 7.1.5 Isolated delivery and loading areas What controls are in place for the Delivery and Loading areas? Is the access from outside restricted to authorised & identified personnel? Is the external door secured when the Internal door is opened? Who checks the packages for potential hazards before it is moved from the holding area to the point of use? 7.2 Equipment Security Objective: To prevent loss, damage . . .
. . .  iso 17799 1146 E-Business Internal Quality Auditing Checklist Standard: AS/NZS ISO/ IEC 17799: 2001 Auditor: Date: Section / Clause Questions Finding Conforms / Non Conforms OTIR No A. Physical and Environmental Security 7.1 Secure Area Objective: To prevent unauthorised access, damage and interference to business premises and information 7.1.1 Physical Security Perimeter Find out what Security Perimeters have been established to protect information processing facility. I.e. walls 7.1.2 . . .
. . .  activities. Media should be controlled and physically protected. 8.6.1 Management of removable computer media Do the following exist for the management of removable computer media, such as tapes, disks, cassettes and printed reports: 1. If no longer required the previous contents of any re-usable media that are to be removed from the organisation should be erased. 2.Authorisation should be required for all media removed from the organisation and a record of all such removals to maintain an audit trail should be kept. 3. all media should b e stored in a safe, secure environment in accordance with the manufacturers' specification   . . .
--2387,3,398,2142,11935