ICT and information assets
All ICT and information assets must be protected from physical compromise, theft, or tampering at all times.
Mobile devices and hard copy documents are to be securely stored when not in use.
Access to our owned or managed network equipment such as switches, and routers must be strictly controlled. Physical security measures must be in place to prevent casual access.
Unauthorised staff must not tamper with council owned or managed network equipment.
Data centre
Physical security controls which benefit the Data Centre must be engaged at all times. Access must be strictly controlled.
Visits to the Data Centre must have a business purpose. Visitors must be always escorted by authorised staff.
All visitors to the Data Centre must be authorised by Serco (Lincoln).
All entry and egress to the Data Centre must be via the main access point unless there is an emergency.
Data Centre entry and exit must be subject to a documented audit trail.