SO-10—Visitor Access
>Control Description
Theme
Type
Policy/Standard
Physical and Environmental Security Policy>Implementation Guidance
1. Design and document the requirement for visitor access, maintaining records, escorting, and reviewing access monthly. 2. Ensure visitor access is approved, with an escort. 3. Ensure monthly access reviews are performed. 4. Ensure retention of visitor access for at least a year.
>Testing Procedure
1. Inspect Physical Access Policy to determine whether it contains the requirement for visitor access, maintaining records, escorting. and reviewing access monthly. 2. Obtain and validate evidence that visitor access is approved, with an escort. 3. Obtain and validate evidence of monthly access reviews. 4. Obtain and validate evidence of retention of visitor access for at least a year.
>Audit Artifacts
>Framework Mappings
Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.
Ask AI
Configure your API key to use AI features.