How to secure a network from physical invasions

Scenarios

When you think of a breach, you'd normally think of hacking, but there are other ways a business can be breached.

One way is to physically attack its premises.

Possible threats range from individuals trying to access reserved areas to drones flying over your facilities.

An organization must be very careful about it.

Careless security guards, network outlets in the waiting area, intruders tailgating through the gates….

It takes a second for a potential intruder to sneak in.

Countermeasures

• Security guards and webcams around the perimeter.
• Server rooms under lock and key, reserved to authorized employees with specific security clearance (biometric locks, even better).
• Electronic security turnstiles and gates. 
• RFID badges for employees and visitors.
• Each visitor must be escorted by an employee.
• Detection of unauthorized devices attached to the network.
• Clean desk policies.
• Darkened glasses at the windows.
• Ban on personal USB drives, especially when found in the parking lot.

These are only some examples, but solutions can be as creative as intruders can get.

Wrap up

Physical security is very important because it guarantees the confidentiality, integrity and availability of your information.

Other than network security, preventing unauthorized physical access to servers and offices is paramount.

No IDS can be of help if an attacker can physically access to your server and mess around with it.

No antivirus can protect you from unauthorized access.

Your best chance is hiring penetration testers for them to test your system.

You might think you're secure and then your security guard can get tricked and let an attacker in.

Sadly, it's not only a movie scenario and it's much more common than you could think.