Premises access control
Assign topic to the user
ISO 27001 ACCESS CONTROL POLICY
Define the rules for access to various systems.
Get it now 
ISO 27001 ACCESS CONTROL POLICY
Define the rules for access to various systems.
Get it now
ISO 27001 ACCESS CONTROL POLICY
Define the rules for access to various systems.
Get it now
Answer: Considering ISO 27001, the control of premises access has the objective to protect the physical access both to information and to information processing facilities. This is achieved by considering, according results of risk assessment, applicable legal requirements, and decisions of top management, the definition of security perimeters, entry controls, and protections of rooms and facilities, among other controls.
Regarding individual responsibilities, you can consider terms of:
- guidelines definition and resources provision (top management)
- operation and management of security controls (e.g., technical staff and security officer)
- Compliance with security controls and policies (employees)
These articles will provide you further explanation about access control:
- How to handle access control according to ISO 27001 https://advisera.com/27001academy/blog/2015/07/27/ how-to-handle-access-control-according-to-iso-27001/
- How to protect against external and environmental threats according to ISO 27001 A.11.1.4 https://advisera.com/27001academy/blog/2016/01/25/how-to-protect-against-external-and-environmental-threats-according-to-iso-27001-a-11-1-4/
These materials will also help you regarding access control:
- ISO 27001 Annex A Controls in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
- Free online training ISO 27001 Foundations Course https://advisera.com/training/iso-27001-foundations-course/
Comment as guest or Sign in
Aug 17, 2017