πΌ PE-3 PHYSICAL ACCESS CONTROL
Descriptionβ
The organization: PE-3a. Enforces physical access authorizations at [Assignment: organization-defined entry/exit points to the facility where the information system resides] by; PE-3a.1. Verifying individual access authorizations before granting access to the facility; and PE-3a.2. Controlling ingress/egress to the facility using [Selection (one or more): [Assignment: organization-defined physical access control systems/devices]; guards]; PE-3b. Maintains physical access audit logs for [Assignment: organization-defined entry/exit points]; PE-3c. Provides [Assignment: organization-defined security safeguards] to control access to areas within the facility officially designated as publicly accessible; PE-3d. Escorts visitors and monitors visitor activity [Assignment: organization-defined circumstances requiring visitor escorts and monitoring]; PE-3e. Secures keys, combinations, and other physical access devices; PE-3f. Inventories [Assignment: organization-defined physical access devices] every [Assignment: organization-defined frequency]; and PE-3g. Changes combinations and keys [Assignment: organization-defined frequency] and/or when keys are lost, combinations are compromised, or individuals are transferred or terminated.
Similarβ
Similar Sections (Give Policies To)β
Sub Sectionsβ