You have been hired as a security consultant to develop

You have been hired as a security consultant to develop a physical security policy that documents the minimum security requirements for Regional Bank that covers its financial system and customer-facing online web service within a single standalone facility with two floors.

Complete the 3- to 4-page table in the Wk 1 Assignment Template for this bank’s facility.

List and prioritize all the physical and endpoint protection security controls documented in NIST SP 800-53a as they apply to the banking facility.

Describe the top 10 physical and endpoint protection prioritized security controls (Column 3).

Justify the reason for the top 10 physical and endpoint protection prioritized security controls (Column 4).

Submit your assignment.

Friendly Financial Institution: Information Security Physical Security Policy

Purpose

The purpose of this policy is to provide guidance for agency personnel, support personnel, and private contractors/vendors for the physical, logical, and electronic protection of Friendly Financial Institution information and systems. All physical, logical, and electronic access must be properly documented, authorized and controlled on devices that store, process, or transmit unencrypted financial information.

Policy

Friendly Financial Institution has chosen to adopt the Physical Security Control principles established in NIST SP 800-53 “Physical and Endpoint Protection,” Control Family guidelines, as the official policy for this domain. The following outlines the 10 prioritized physical security standards that constitute Friendly Financial Institution policy. Each Friendly Financial Institution Business System is then bound to this policy and must develop or adhere to a program plan that demonstrates compliance with the policy related the standards documented.