>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

PE-6Monitoring Physical Access

PBMM (P1)
Secret (P1)
Operational

>Control Description

(A) The organization monitors physical access to the facility where the information system resides to detect and respond to physical security incidents. (B) The organization reviews physical access logs organization-defined frequency and upon occurrence of organization-defined events or potential indications of events. (C) The organization coordinates results of reviews and investigations with the organizational incident response capability.

>Supplemental Guidance

Organizational incident response capabilities include investigations of and responses to detected physical security incidents. Security incidents include, for example, apparent security violations or suspicious physical access activities. Suspicious physical access activities include, for example: (i) accesses outside of normal work hours; (ii) repeated accesses to areas not normally accessed; (iii) accesses for unusual lengths of time; and (iv) out-of-sequence accesses.

Related controls: CA-7, IR-4, IR-8

>Profile-Specific Parameters

(B) frequency [at a frequency no longer than monthly]

Ask AI

Configure your API key to use AI features.