Physical Security
Physical security is an important aspect of an overall cybersecurity program.
- Published
- September 01, 2021
Sensitive data can be stored in electronic format and also in physical format such as on paper. If there is no appropriate physical security to protect the that data then criminals can quickly undermine the cybersecurity controls that may be in place. It is therefore important to ensure appropriate physical controls are employed where important information resides.
A company laptop or a smartphone, for instance, should not be left unattended in the back seat of a car, and the same principle applies for information on USB drives or that is printed on a sheet of paper. Anytime a user walks away from their computer, be it on the company premises or elsewhere, they should lock it in order to prevent unauthorized access. Setting auto-lock function, using full disk encryption and if possible purchasing laptops with TPM chips are a number of measures that could reinforce physical security.
Sensitive printed documents should also not be left unattended and when not in use securely stored away.