Network and Computer Policies & Procedures

Physical Access Review Policy

1.0 Overview

The key to ensuring tight security on FAA Systems servers is two-fold, both electronic security through passwords and access control and physical security to the servers themselves. All FAA Systems department members are responsible for keeping tight control over their access control mechanisms on all FAA owned hardware.

2.0 Purpose

The purpose of this policy is to establish standards for physical security audits of access to the FAA Systems secure areas.

3.0 Scope

The scope of this policy includes all physical access tokens which provide entry into FAA Systems secured areas.

4.0 Policy

4.1 General

  • All physical access tokens must be reviewed by the FAA Systems lead worker on a quarterly basis.
  • As electronic security is implemented on the secure areas, a log shall be kept of entry and egress to the FAA secure areas.
  • All access logs shall be reviewed on a semi-annual basis to ensure no unauthorized access has occurred.

5.0 Enforcement

The loss of a physical key will result in rekeying of all affected physical locks. The loss of an electronic access token will result in removal of access to the lost electronic access token.

6.0 Terms and Definitions

Physical Access Token: Any keys which may provide access to FAA Systems secure areas.

Electronic Access Token: Any item which provides access to the electronic security systems on FAA Systems secure areas (e.g. key fobs, UWM ID badges)

7.0 Revision History

  • Eric Skibicki, 2011-12-09