NIST 800-171_3.10.1

NIST 800-171

3.10 PHYSICAL PROTECTION

3.10.1

Limit physical access to organizational systems equipment and the respective operating environments to authorized individuals

This requirement applies to employees individuals with permanent physical access authorization credentials and visitors. Authorized individuals have credentials that include badges identification cards and smart cards. Organizations determine the strength of authorization credentials needed consistent with applicable laws directives policies regulations standards procedures and guidelines. This requirement applies only to areas within facilities that have not been designated as publicly accessible.Limiting physical access to equipment may include placing equipment in locked rooms or other secured areas and allowing access to authorized individuals only; and placing equipment in locations that can be monitored by organizational personnel. Computing devices external disk drives networking devices monitors printers copiers scanners facsimile machines and audio devices are examples of equipment.

 

Click here to Start your FREE trial today!

Explainer video

 

What is a Cybersecurity Compliance Framework?

You don’t need to clutter your security and privacy programs with an ever-increasing number of tools as they become more sophisticated. The Lionfish platform offers a one-stop solution to track progress and monitor any framework, from custom-built ones to highly-specialized and in-demand top security and privacy frameworks and certifications.

With the Lionfish platform, every framework is supported with guided scoping, policies, controls, automated evidence collection, and continuous monitoring, ensuring efficient preparation for audits or attestation in minimal time.

The Lionfish platform is compatible with a wide range of security and privacy frameworks, including:

Click here to Start your FREE trial today!

Explainer video