Contact Global Locations
Scoping & Documentation ASV Scanning Contract & Liability Review PCI DSS Gap Analysis Risk Assessment Security Testing Compensating Controls Blackfoot Prioritized Approach Annual Data Security Assessment Payment Processing & Outsourcing
Virtual Security Officer (VSO) Incident Response ISO 27001 Document & Policy Creation Security Awareness Risk Assessment
Infrastructure Security Assessment Web Application Assessment Physical Security Assessment Secure Code Review Data Discovery Wireless Security Assessment Vulnerability Management
Blackfoot Blackbox SME Virtual Security Officer (VSO) Firewall Management Audit Log Management Intrusion Prevention/Detection
PCI DSS Training PA DSS Training Secure Software Development Security Awareness

Physical Security Assessment



In today’s environment, analysis of the physical security of facilities and properties has become an even more critical aspect of an organization’s information security and business continuity planning.

Blackfoot addresses this requirement with a team of skilled experts who are able to blend their experience and expertise to focus on the critical aspects of physical security that impact an organization’s computing environment.

During an onsite assessment, our consultants perform physical inspections of facilities and operations. Blackfoot begins each physical security review by gaining an understanding of the resources being protected and the perceived threat environment. Through interviews and limited reviews of local policies and procedures covering physical security operations, Blackfoot gains an understanding of the level of protection desired and needed in a given location. Armed with this understanding, Blackfoot conducts the review of the facility. Key areas assessed include:

Facility Security

  • Entry points
  • Data center
  • User and sensitive environments
  • Access control and monitoring devices
  • Guard personnel
  • Wiring closets

    • Internal Company Personnel

  • Control and accountability
  • Use of equipment
  • Security procedure compliance
  • Awareness
  • Use of break areas and entry points

    • External Visitor and Contractor Personnel

  • Control and accountability
  • Use of equipment
  • Security procedure compliance
  • Use of break areas and entry points

    • Computer Systems and Equipment

  • Workstations
  • Servers
  • Backup media
  • PDAs
  • Modems and physical access points (visual ID only)

    • Sensitive Information and Data

  • Control
  • Storage
  • Destruction