>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SO-07Physical Access Role Permission Authorization

>Control Description

Initial permission definitions, and changes to permissions, associated with physical access roles are approved by authorized personnel.

Theme

Process

Type

Preventive

Policy/Standard

Physical and Environmental Security Policy

>Implementation Guidance

1. Ensure all physical access to organization data centers have management approval and documentation. 2. Ensure physical access is granted after appropriate approvals.

>Testing Procedure

1 Inspect the physical security system workflow to determine whether requests for physical access require approval. 2 Inspect an approval of authorized personnel, for any initial permission or modifications of permissions, ensure they are associated to physical access roles.

>Audit Artifacts

E-SO-08
E-SO-09

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

ISO 27002:2022
1

7.2

FedRAMP Rev 5
1

PE-03

PCI DSS
6

9.3
9.3.1
9.3.1.1
9.3.2
9.3.3
9.3.4

TX-RAMP
1

PE-3

Ask AI

Configure your API key to use AI features.