Security Convergence – Integrating Physical and Logical

Integrating physical and logical security systems maximises existing investment, improves risk management and realises tangible security, operational and financial benefits through increased efficiency and synergy.

Integration is being driven by an increasing number of cross-functional cross-business unit risk discussions, and a move away from a disconnected focus on individual elements of the security lifecycle.

Enterprise security roles are changing. Individuals that previously held isolated positions with a narrow logical (IT) or physical security focus are moving to broader based multi-disciplinary roles, working more closely together to manage and minimise risk across the business as a whole. VigilancePro uniquely supports an integrated approach to risk management and information assurance.

Security-convergance-logo-s.png

VigilancePro® integrates logical (IT) security with physical security controls such as door entry systems, CCTV and RFID - as well as biometric devices including fingerprint and vein readers - to significantly enhance the physical security perimeter.

VigilancePro can extend physical entry controls and policies linking them to key information assets ensuring that even if unauthorised physical access is gained, logical access to sensitive data is denied.

Extending logical security and combining logical with physical security controls can provide powerful policy management and enforcement of:

  • visitor and contractor access - and attempted access - to premises
  • entry or attempted entry to computer rooms and data centres
  • access to secure cages or racks within facilities
  • visual monitoring of hosting environments

A full visual audit trail of date and time stamped events is provided with attached supporting evidence from door entry and/or camera systems - which may prove invaluable in the event of hardware tampering or theft. Integration with door entry systems enables:

  • enforcement of ‘low man count’ policies with the option to prevent access to sensitive data, or to certain applications or application functions, if occupancy of a given area drops below pre-determined levels
  • the ability to freeze user sessions if the user leaves a given area to prevent unauthorised access through session hijacking
  • the ability to freeze all workstations in a secure area if the area is empty (overnight, during breaks, or as the result of a building management system fire alarm event)

Events are assigned a severity level. Immediate email (or SMS or pager) alerts can be generated from the VigilancePro Server as soon as a critical or severe event occurs ensuring security staff - including guards - receive timely notification of suspicious or malicious activity.

Solutions Highlights:

  • Physical security integration not required everywhere but essential at ‘high value’ locations
    • data centre / server farm security
    • logistics and distribution centres
    • corridors and key ingress / entry points
  • Create impenetrable integrated physical and logical perimeters
  • Enforce low man count policies – link to physical access control systems
  • Restrict certain operations / actions to specific locations
    • e.g. the console port
  • Require re-authentication for completion of specific actions, transactions or operations
    • linked to any command, keystroke, button or menu option in any application
    • from password re-entry to use of biometric devices
  • Lock workstations if user leaves or on a fire alarm event
  • Screenshot + CCTV + access logs + transaction layer = irrefutable evidence
  • Realise tangible security, operational and financial benefits now
  • Enables a truly holistic approach to securing high value assets, information and IP