| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1461 - Monitoring Physical Access | ||
| Id | aafef03e-fea8-470b-88fa-54bd1fcd7064 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this Physical and Environmental Protection control | ||
| Additional metadata |
Name/Id: ACF1461 / Microsoft Managed Control 1461 Category: Physical and Environmental Protection Title: Monitoring Physical Access - Detection/Response to Physical Incidents Ownership: Microsoft Description: The organization: Monitors physical access to the facility where the information system resides to detect and respond to physical security incidents; Requirements: Physical access is monitored by implementing security devices and processes at the datacenters. Examples include twenty-four (24) hours a day, seven (7) days a week electronic monitoring of access control, alarm and video systems as well as twenty-four (24) hours a day, seven (7) days a week on site security patrols of the facility and grounds. A Control Room Supervisor is located in the datacenter security operations center at all times to provide monitoring of physical access in the datacenter. CCTV is employed to monitor physical access to the datacenter and the information system. The CCTV is linked to the building alarm monitoring system to provide physical access monitoring of alarm points. Cameras are positioned to monitor perimeter doors, facility entrances and exits, all colocation rows and aisles, all racks, caged areas, high-security areas, shipping and receiving, facility external areas such as parking lots and other areas of the facility. Security officers provide Azure with a security program staffed with highly-trained security officers capable of accomplishing the following: * Ensuring that only those personnel with proper authorization are allowed access to Azure Critical Infrastructure. * Ensuring that personnel and visitors bringing equipment into and out of critical infrastructure facilities follow proper procedures to prevent intentional or unintentional loss. * Constant patrolling allows officers to respond to, observe and report all incidents that may compromise the security at Microsoft. All incidents observed are reported to the Control Room Supervisor. * Identify, escalate, and prevent criminal or unsafe activity, and be familiar with, adhere to, and enforce Azure policies and procedures. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|