Pro audit program · v1.0

Datacentre Access Walkthrough

If you have on-prem racks anywhere, walk the physical security controls — badge access, CCTV, environment, visitor log.

General target area
ISO 27001 framework
6 controls in this program
Cyentrix Cyentrix Trusted Author

Sign in to run → Back to library

About this program

If you have on-prem racks anywhere, walk the physical security controls — badge access, CCTV, environment, visitor log.

Risks addressed

High Ex-employee badge still works
High Server room temperature / smoke not alerted on
Medium Visitor logs not reconciled with actual entries

Controls (6)

Badge access list reviewed monthly
High

Badge access list reviewed monthly

How to test + evidence

Testing procedure: Access list compared against HR list; deviations actioned.

Evidence to collect: Last review report.
CCTV coverage of all entry points
High

CCTV coverage of all entry points

How to test + evidence

Testing procedure: Cameras cover doors + racks; 30+ days retention.

Evidence to collect: CCTV map + retention setting.
Environmental monitoring + alerting
High

Environmental monitoring + alerting

How to test + evidence

Testing procedure: Temp / humidity / smoke alerts to on-call.

Evidence to collect: Monitoring config + last alert.
Visitor escort + sign-in
Medium

Visitor escort + sign-in

How to test + evidence

Testing procedure: Visitors signed in, badged, escorted at all times.

Evidence to collect: Visitor log sample.
Tailgate detection at entry
Medium

Tailgate detection at entry

How to test + evidence

Testing procedure: Anti-tailgate doors / mantrap for sensitive areas.

Evidence to collect: Physical control description.
Annual physical security review
Low

Annual physical security review

How to test + evidence

Testing procedure: Documented walkthrough at least annually with findings + actions.

Evidence to collect: Last review report.