2 minute read
SevenLayers of Physical Security for Data Centres
Darren Watkins
Managing Director, VIRTUS Data Centres virtusdatacentres.com
Advertisement
IF YOU’VE EVER TRIED to get into a data centre without prior permission or the correct form of identification, you’ll know how stringent security is. As the keepers of, arguably, one the world’s most valuable assets – data - data centre providers have no bounds when it comes to safeguarding their customers’ priceless infrastructure; the loss of data or system shut-down potentially can cost businesses millions.
Data centre security is about minimising risk and maximising operational uptime. Every data centre should be designed, built and maintained to withstand everything from corporate espionage, to terrorists, to natural disasters, to thieves.
Entry to data centres should be tightly managed with strict procedures to monitor and control visitor access both into and within different areas of the data centre. Not only is the physical security stopping criminals getting in, it is also there to delay their chances of a successful breach.
To achieve gold standard security, there should be seven layers of physical security:
1. A physical barrier
A fence that is a minimum of three metres high (five metres in some places, depending on who or what is located next door)
2. Trembler wire
A wire on top of the fence that will set off an alarm if anyone kicks, climbs or jumps over it
3. Surveillance cameras
CCTV around the perimeter of the building at all entrances and exits as well as at every access point throughout the building. A combination of motion-detection devices, low-light cameras, pan-tilt-zoom cameras and standard fixed cameras is ideal. Footage should be digitally recorded and stored offsite
4. 24/7 security guards
Always have more than one guard - one to man the systems and one or more to do a regular walk around to check the perimeter and the various data halls and plant rooms
5. Vehicle trap
Access to the facility compound, usually a parking area, needs to be strictly controlled either with a gated entry that can be opened remotely by reception or security once the driver has been identified, or with retractable bollards. This measure is to not only prevent unauthorised visitors from driving into the parking area and having a look around, but also to prevent anyone from coming straight into this area with the intention of ramming the building for access
6. Full authentication & access policy control
To get inside, government issued photo ID should be required. Once inspected, they should be given a formal ID card that allows them into different parts of the data centre, depending on whether they are a customer or a visitor. If they are visitors, they should always be accompanied
7. Biometrics
To gain access to the buildings, data floors and individual areas, biometrics should be used as a form of identification to ensure secure, single-person entry Like cyber security, the demands on physical security are increasing as businesses recognise how much of their operations outside of the traditional IT functions are becoming dependent on the data centre. When it comes to the physical security of your data centre, a proven track record and solid experience really matters. Experienced colocation providers will offer a full suite of benefits, including service level guarantees that offer 100 per cent availability of power and cooling, 24/7 physical security and compliance with all the latest ISO certifications for managing critical infrastructure.
