The organization should have a centralized organization/department for the monitoring of all physical and technical security (e.g. cyber security) aspects of the data center. The organization should have policies and procedures in place which should include, but not be limited to:
- Access control and alarm monitoring.
- CCTV monitoring.
- Emergency monitoring.
- Dispatching of security personnel and/or activating communication to the relevant authorities.
- Monitoring of facilities monitoring systems, sensors, and other TCP/IP related equipment.
The organization should ensure that appropriate levels of qualified staff will be present at the security organization/department all times.
