80 likes | 209 Vues
Responsibilities: Physical security Department Basic domains of activities: certifying of physical security technical means methods of using physical security measures (security guards, technical means and special handling arrangements). Certifying of technical means:
E N D
Responsibilities: Physical security Department • Basic domains of activities: • certifying of physical security technical means • methods of using physical security measures (security guards, technical means and special handling arrangements)
Certifying of technical means: Legislation background: NSA Regulation on Certifying Types of technical means: Mechanical protection means, entrance systems, alarm and emergency systems, CCTV systems, electric fire signaling systems, metal detectors, devices of physical destruction of information carriers, devices against passive and active eavesdropping
Certification method: • producer’s request containing review from recognized test room. These test rooms are working in accordance with NSA’S requirements (frequently based on European Standards) and NSA takes part in work of these test rooms. • issuing of the NSA certificate and presentation of the certified technical mean in the List of the Certified Technical Means (available on the http://www.nbu.cz)
Methods of using physical security measures : Legislation background: NSA Regulation on Physical Security (based on C-M (55)15 Final, consulted with NOS NATO, available in English version) and NSA Standards on Physical Security (with refers to the suggestions of the “new C-M(55)15 Final ”)
Methods of using physical security measures : NSA Regulation on Physical Security: Includes definitions of basic concepts, structuring of Security Areas, risk assessment, basic rules for security guards, technical means and special handling arrangements, entrance controlling measures etc. Includes also description of the Physical Security Documentation.
Methods of using physical security measures : NSA Standards on Physical Security: Containing detailed instructions for using all physical security measures. Measures are set as numerical values within the Matrix, which correspond to the sensitivity or criticality levels of the classified information. The Matrix is supported by a menu of physical security measures from which measures can be selected within given constraints.
Activities related to the industrial security: • Consulting problems of using physical security measures • Inaugural inspections of the storage and guarding classified information handled by private companies. These inspection are realized before certifying company by NSA. • Periodical inspections.
Activities related to the army, ministry etc. : • Consulting problems of using physical security measures. • If required, inaugural inspections of the physical security measures and issuing NSA acknowledgement (e.g. for NATO in the case of cipher devices). • Periodical inspections.