The vulnerable elements are data and software, but also hardware (computers, servers, storage devices, cables, etc.).
The guarantee provided by automated systems such as firewalls, antivirus, backup and their revision, must be backed by physical security measures. If there is the possibility of unauthorized physical access to sensitive hardware, such as a company server, the rest of the measures become useless.
Physical security measures are unfortunately one of the most neglected aspects in some companies. However, we must be very careful with this aspect, since an unauthorized person who accesses the system can cause considerable damages: theft of computers, introduction of malicious software on the server, destruction of data, unauthorized transmission and dissemination, etc. On the other hand, turn off a machine that provides a backup service, copy or steal sensitive files, etc. is also an attack of the reliability, confidentiality, integrity and availability of any computerized system.
The new European regulation recommends an impact study. Actually we advise especially organizations that store a large amount of private data, such as agencies, call centers, e-commerces, insurance companies, etc., of the need of implementation of a physicla restrictive system based on access controls. For example, physical access to servers in continuous operation must be protected. Normally located in protected areas, they should be equipped with systems such as security doors, armored doors with fire protection, with user identification (password, code or biometrics). The combination of these measures will depend on the structure of each company. From Ferrimax, pioneers in secure facilities for organizations and data centers, we advise you and give you solutions in the field of physical security adapted to your needs.
