💼 PE-3 Physical Access Control
- ID:
/frameworks/nist-sp-800-53-r5/pe/03
Stats​
not available
Description​
a. Enforce physical access authorizations at [Assignment: organization-defined entry and exit points to the facility where the system resides] by:
- Verifying individual access authorizations before granting access to the facility; and
- Controlling ingress and egress to the facility using [Selection (one or more): [Assignment: organization-defined physical access control systems or devices]; guards]; b. Maintain physical access audit logs for [Assignment: organization-defined entry or exit points]; c. Control access to areas within the facility designated as publicly accessible by implementing the following controls: [Assignment: organization-defined physical access controls]; d. Escort visitors and control visitor activity [Assignment: organization-defined circumstances requiring visitor escorts and control of visitor activity]; e. Secure keys, combinations, and other physical access devices; f. Inventory [Assignment: organization-defined physical access devices] every [Assignment: organization-defined frequency]; and g. Change combinations and keys [Assignment: organization-defined frequency] and/or when keys are lost, combinations are compromised, or when individuals possessing the keys or combinations are transferred or terminated.
Similar​
- Internal
- ID:
dec-c-f99c727c
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 PE-3 Physical Access Control (L)(M)(H) | 1 | no data | |||
| 💼 FedRAMP Low Security Controls → 💼 PE-3 Physical Access Control (L)(M)(H) | no data | ||||
| 💼 NIST CSF v2.0 → 💼 DE.CM-02: The physical environment is monitored to find potentially adverse events | 28 | no data | |||
| 💼 NIST CSF v2.0 → 💼 PR.AA-06: Physical access to assets is managed, monitored, and enforced commensurate with risk | 44 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 PE-3(1) Physical Access Control _ System Access | no data | ||||
| 💼 PE-3(2) Physical Access Control _ Facility and Systems | no data | ||||
| 💼 PE-3(3) Physical Access Control _ Continuous Guards | no data | ||||
| 💼 PE-3(4) Physical Access Control _ Lockable Casings | no data | ||||
| 💼 PE-3(5) Physical Access Control _ Tamper Protection | no data | ||||
| 💼 PE-3(6) Physical Access Control _ Facility Penetration Testing | no data | ||||
| 💼 PE-3(7) Physical Access Control _ Physical Barriers | no data | ||||
| 💼 PE-3(8) Physical Access Control _ Access Control Vestibules | no data |