A physical layer

We won’t spend much time here, but physical security is important: locks, mean-looking security guards, cameras, alarms—all the stuff that keeps criminal hands off our precious property.

There’s also a component to physical security dealing with fire suppression, mantraps, and disaster recovery. (Ask any of us with data centers in Manhattan during hurricane Sandy how important DR is!)

Here are a few quick tips from this fantastic reddit thread on setting up a datacenter that apply even if you just have a single server closet:

  • Making sure no one except authorized users are in the [data center] is critical. Keyfobs are good, biometrics are better. A log of access times (both in and out) should be kept.
  • Full time video monitoring with all angles covered.
  • Making sure your racks have individual keys and not one generic lock (HP racks used to be really bad about this).

Even if your workforce is 100% remote and you don’t manage your own data center, your data is stored somewhere, right? Are you confident that Amazon or Rackspace or Google has adequate physical protections in their data centers? Have you asked them about? It’s worth considering.

If you’re looking for more in-depth training on physical security, SANS offers some good-looking courses:

← Go back to the intro