Description
Plan the location or site of the facility where the system resides considering physical and environmental hazards; and For existing facilities, consider the physical and environmental hazards in the organizational risk management strategy.
Supplemental Guidance
Physical and environmental hazards include floods, fires, tornadoes, earthquakes, hurricanes, terrorism, vandalism, an electromagnetic pulse, electrical interference, and other forms of incoming electromagnetic radiation. The location of system components within the facility is addressed in PE-18.
Changes from Rev 4
New control in Rev 5.
Compliance Mappings
ISO 27001:2022
A.7.5A.7.8
ISO 27002:2022
7.57.8
COBIT 2019
DSS01
BSI IT-Grundschutz
INF.1INF.2
ANSSI
Hygiene.37SecNumCloud.12.1
FINMA Circular 2023/1
IV.A(28)IV.E(89)IV.E(91)
BIO2
7.57.8
RBI CSF
ITGRCA.18
FISC Security Guidelines
FISC.F5
HKMA TM-E-1
TME1.5.1TME1.6.4
SAMA CSF
3.7
NCA ECC
1-11
UAE IA
T6
CBB TM
TM-10
Qatar NIA
PS
Lloyd's Minimum Standards
PHYS.1
ISO 27799
11.2