Security for Information Technology Data Centers

Do you worry about someone stealing or damaging your computer equipment, software or proprietary information because they were able to gain physical access to your data and network center operations?

Whether large or small, data center operations require the presence of outside contractor personnel, in addition to your employees, to provide technical and support services. It is important therefore that your policy and procedures for security of the data center and network operations are appropriate and in effect. The procedures must not only provide authorized persons ease of access to the data center but also intercept and prevent any attempts at access by unauthorized persons.

Anyone who watches TV reads newspapers and periodicals knows that incidents of damage to and theft of computer equipment and information occur. Only naive or irresponsible managers think, "It won’t happen here." Those who have this expressed or unexpressed attitude often find that someone else has used it to their advantage and to the detriment of the business.

Investigations disclose that the perpetrators include persons with authorized business in the data center as well as persons without legitimate presence. The latter have managed entry to the center because they were able to circumvent weak or ineffective security procedures.

Helpful Hints for Security of Data and Network Operations Centers

1. Ensure that the center has good physical security.
2. Conduct background investigations of appropriate scope on employees working in or requiring access to data and network operations centers.
3. Require vendors to conduct comparable investigations on their personnel who work in the same physical environment.
4. Have written policy and procedures that describe controls for access to the center during and after normal business hours.
5. Establish control procedures for removal of equipment and materials from the center.
6. Have consistent inventory controls.
7. Provide written guidance on their individual security responsibilities to employees and third parties authorized to work in the center.
8. Maintain appropriate life safety, fire suppression and environmental control systems in the center.
9. Conduct annual audits of the security program for the center.

To discuss a specific, detailed evaluation of your data and network center operations contact us at 610 896 4433 or by fax 610 896 2134.