PE-2 Physical Access Authorization
Last Review: 10/1/22
Statement
WTAMU shall designated an individual(s) with authority for securing physical access to facilities where critical information systems reside.
Applicability
This Control applies to all West Texas A&M locations that house information systems (e.g., data centers, server rooms, networking/telecom closets) considered mission critical or require a higher level of security due to the nature of equipment or data the equipment stores.
Implementation
The designated individual responsible for securing physical access to facilities where information resources reside shall:
- Develop and maintain current a list of personnel with authorized access to the facilities where information systems reside (except for those areas within the facility officially designated as publicly accessible)
- Issue appropriate authorization credentials.
- Review the list and forward results of that review to the CIO or ISO for accuracy twice per year.
- Ensure access is removed from individuals promptly when it is no longer required.