physical-security

physical-security Controls

11 controls across 3 frameworks.

CMMC L1

cmmc-mp-1

Sanitize or destroy media containing FCI before disposal or reuse

Media Protection / Media Sanitization

medium 4h

cmmc-pe-1

Limit physical access to systems and facilities to authorized individuals

Physical Protection / Physical Access

high 6h

cmmc-pe-2

Escort visitors and monitor visitor activity in secured areas

Physical Protection / Physical Access

medium 3h

cmmc-pe-3

Maintain audit logs of physical access to secured areas

Physical Protection / Physical Access

medium 3h

cmmc-pe-4

Control and manage physical access devices

Physical Protection / Physical Access

medium 4h

HIPAA

hipaa-ps-1

Implement policies and procedures to limit physical access to electronic information systems and the facilities where they are housed

Physical Safeguards / Facility Access Controls

high 8h

hipaa-ps-2

Specify the proper functions to be performed by workstations that access ePHI and the manner in which those functions are to be performed

Physical Safeguards / Workstation Use

medium 4h

hipaa-ps-3

Implement physical safeguards for all workstations that access ePHI to restrict access to authorized users

Physical Safeguards / Workstation Security

high 6h

NIST CSF

de-cm-2

The physical environment is monitored to detect potential cybersecurity events

Detect / Continuous Monitoring

medium 4h

pr-aa-6

Physical access to assets is managed, monitored, and enforced commensurate with risk

Protect / Identity Management, Authentication, and Access Control

medium 4h

pr-ir-2

Technology assets are protected from environmental threats

Protect / Technology Infrastructure Resilience

medium 4h