last sync: 2024-Nov-25 18:54:24 UTC

Microsoft Managed Control 1461 - Monitoring Physical Access | Regulatory Compliance - Physical and Environmental Protection

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1461 - Monitoring Physical Access
Id aafef03e-fea8-470b-88fa-54bd1fcd7064
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 0
Built-in Versioning [Preview]
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Physical and Environmental Protection control
Additional metadata Name/Id: ACF1461 / Microsoft Managed Control 1461
Category: Physical and Environmental Protection
Title: Monitoring Physical Access - Detection/Response to Physical Incidents
Ownership: Microsoft
Description: The organization: Monitors physical access to the facility where the information system resides to detect and respond to physical security incidents;
Requirements: Physical access is monitored by implementing security devices and processes at the datacenters. Examples include twenty-four (24) hours a day, seven (7) days a week electronic monitoring of access control, alarm and video systems as well as twenty-four (24) hours a day, seven (7) days a week on site security patrols of the facility and grounds. A Control Room Supervisor is located in the datacenter security operations center at all times to provide monitoring of physical access in the datacenter. CCTV is employed to monitor physical access to the datacenter and the information system. The CCTV is linked to the building alarm monitoring system to provide physical access monitoring of alarm points. Cameras are positioned to monitor perimeter doors, facility entrances and exits, all colocation rows and aisles, all racks, caged areas, high-security areas, shipping and receiving, facility external areas such as parking lots and other areas of the facility. Security officers provide Azure with a security program staffed with highly-trained security officers capable of accomplishing the following: * Ensuring that only those personnel with proper authorization are allowed access to Azure Critical Infrastructure. * Ensuring that personnel and visitors bringing equipment into and out of critical infrastructure facilities follow proper procedures to prevent intentional or unintentional loss. * Constant patrolling allows officers to respond to, observe and report all incidents that may compromise the security at Microsoft. All incidents observed are reported to the Control Room Supervisor. * Identify, escalate, and prevent criminal or unsafe activity, and be familiar with, adhere to, and enforce Azure policies and procedures.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC