💼 PE-3 Physical Access Control
- Contextual name: 💼 PE-3 Physical Access Control
- ID:
/frameworks/nist-sp-800-53-r5/pe/03 - Located in: 💼 PE Physical And Environmental Protection
Description​
a. Enforce physical access authorizations at [Assignment: organization-defined entry and exit points to the facility where the system resides] by:
- Verifying individual access authorizations before granting access to the facility; and
- Controlling ingress and egress to the facility using [Selection (one or more): [Assignment: organization-defined physical access control systems or devices]; guards]; b. Maintain physical access audit logs for [Assignment: organization-defined entry or exit points]; c. Control access to areas within the facility designated as publicly accessible by implementing the following controls: [Assignment: organization-defined physical access controls]; d. Escort visitors and control visitor activity [Assignment: organization-defined circumstances requiring visitor escorts and control of visitor activity]; e. Secure keys, combinations, and other physical access devices; f. Inventory [Assignment: organization-defined physical access devices] every [Assignment: organization-defined frequency]; and g. Change combinations and keys [Assignment: organization-defined frequency] and/or when keys are lost, combinations are compromised, or when individuals possessing the keys or combinations are transferred or terminated.
Similar​
- Internal
- ID:
dec-c-f99c727c
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 PE-3 Physical Access Control (L)(M)(H) | 1 | |||
| 💼 FedRAMP Low Security Controls → 💼 PE-3 Physical Access Control (L)(M)(H) | ||||
| 💼 NIST CSF v2.0 → 💼 DE.CM-02: The physical environment is monitored to find potentially adverse events | 10 | |||
| 💼 NIST CSF v2.0 → 💼 PR.AA-06: Physical access to assets is managed, monitored, and enforced commensurate with risk | 22 |