Question

As you build out a new data center, what physical security measures should you implement?

Answer 1

Data centres are centralized locations containing computing and networking equipment used to provide services like data storage, backup and recovery, data management and networking.

The data centre house the enterprise applications and data, so its protection by a proper security system is critical. Denial of Service, theft of confidential information, data loss and data alteration are some of the common security problem.

Generally, two types of data centre security exist today, which are physical security and virtual security.

Physical Security

These are the set of protocol built in the data centre facilities to prevent the physical damage handling everything ranging from natural disasters to corporate espionage to terrorist attacks.

To prevent physical attacks, safety measures used in data centres are as follows:

1. CCTV security network: Access and location point with ninety days video retention.

2. 24×7×365 security: On – site security staff to respond to potential threats and unauthorized activities. Routine patrol throughout every data centre zone.

3. Biometric technology: Data centre should incorporate biometric technology into their access protocol.

4. RFID asset management: RFID tagging helps to manage and track assets in real time through powerful business intelligence software.

5. Permit only one person to pass through after authentication.

6. Minimization of traffic through dedicated data halls, suites and cages.

7. Multi – factor authentication: Data centres should follow ‘Zero trust’ logical security procedures that require multiple form of identification or authorizations to ensure entry at every access point.

8. Exit procedures: Staff has to be checked while leaving the organization. Facility should have the system to update access lists, collect keys and delete the biometric data of the visitor.

9. Data centre should have SSAE 16 compliant facilities.

10. Data centre should checking the provenance and design of hardware in use.

11. Temperature and humidity has to be monitored regularly.

12. Data centre should have fire prevention with zoned dry pipe sprinkler.

13. Data centre location has to be in natural disaster risk free locations.