Description
The organization authorizes and controls information system-related items entering and exiting the facility and maintains appropriate records of those items.\n
Supplemental Guidance
The organization controls delivery areas and, if possible, isolates the areas from the information system and media libraries to avoid unauthorized physical access.\n
Changes from Rev 4
Changes control text by removing 'monitors'
Enhancements
(0) None.\n
Compliance Mappings
ISO 27002:2022
7.2
SOC 2 TSC
A1.2
ISO 17799 (legacy)
9.1.69.2.710.7.1
COBIT 4.1 (legacy)
DS12.2