csa domain Flashcards
(319 cards)
What is physical security?
The practice of protecting organizational assets like people, property, and information through a combination of security measures. [cite: 1]
What are some security measures used in physical security?
Security personnel, procedures, technology, and structures. [cite: 1]
What are the origins of physical security?
Early human history, using simple tools like weapons and stones for protection. [cite: 2]
What forms the foundation of a robust physical security program?
Clearly defined objectives and meticulously chosen components. [cite: 3]
What kind of approach is needed for effective physical security?
A well-coordinated, multi-faceted approach utilizing personnel, procedures, technologies, and structures. [cite: 4]
Why is alignment of physical security measures with organizational culture essential?
To avoid internal conflicts and enhance operational efficacy. [cite: 5]
What do physical security professionals do?
Assess security needs, identify internal and external threats, and formulate plans, policies, procedures, and other security measures to mitigate those threats. [cite: 6]
What is the primary objective of protecting personnel?
Ensuring the protection of every staff member from any external or internal threats. [cite: 7]
Give an example of personnel protection in physical security.
Office buildings with secured entrances accessible only through ID cards or biometric systems. [cite: 8]
How do ID cards and biometric systems protect employees?
They enable monitoring and control over who enters or exits, thereby providing physical safety. [cite: 9]
What do companies sometimes employ during non-working hours to deter intrusion?
Security staff for patrolling. [cite: 10]
What types of physical assets require protection?
Office spaces, equipment, machinery, and so on. [cite: 11]
Give an example of protecting physical assets.
A manufacturing plant using CCTV cameras for round-the-clock surveillance of expensive machinery. [cite: 12]
How do CCTV cameras help in protecting physical assets?
Any abnormal activities can be quickly detected and necessary actions taken before significant damage can occur. [cite: 13]
Why is physical access restriction vital for information assets?
It restricts unauthorized access to sensitive data stored physically. [cite: 14]
Give an example of protecting information assets in banks.
Strong safes, fireproof filing cabinets, and electromagnetic shielding. [cite: 15]
What is Business Continuity Management (BCM) in physical security?
Drawing up plans during a crisis to minimize disruption to normal business operations. [cite: 17]
Give an example of BCM for businesses in geologically unstable regions.
Clear evacuation routes, robust emergency response plans, and building retrofitting. [cite: 18, 19]
What are the design concepts for an effective physical security program?
Four D, defense in depth, and balanced protection. [cite: 20]
What is the primary goal of the “Deter” concept in Four D?
To discourage criminal activity before it begins. [cite: 21]
How is deterrence achieved in the Four D concept?
Through visible security measures and proactive strategies. [cite: 22]
What is the purpose of “Detect” if deterrence fails?
To identify potential threats or breaches. [cite: 23]
What does “Detect” involve?
Monitoring systems and procedures to detect unusual activity. [cite: 24]
What is the goal of “Delay” once a threat is detected?
To slow down an attack or breach, giving time for a response force to intervene. [cite: 24]