Contributed February 4, 2002 by Leonie Mahon [Leonie_Mahon@au.adp.com]
E-Business Internal Quality Auditing Checklist
Standard: AS/NZS ISO/IEC 17799:2001
Section / Clause
A. Physical and Environmental Security
Objective: To prevent unauthorised access, damage
and interference to business premises and
7.1.1 Physical Security
Find out what Security Perimeters have been established to
protect information processing facility. I.e. walls
7.1.2 Physical entry
Establish what protected Entry controls have been established to
ensure that only authorised personnel are allowed access
7.1.3 Securing offices,
rooms & facilities
What suitable intruder detection systems are installed for this
The information processing facilities should be physically
separated from those managed by 3rd parties.
7.1.4 Working in secure
Establish the additional controls for Personnel or third parties. Ie
should only be aware of activities in a secure area on a needs to
7.1.5 Isolated delivery
and loading areas
What controls are in place for the Delivery and Loading areas?
Is the access from outside restricted to authorised & identified
Is the external door secured when the Internal door is opened?
Who checks the packages for potential hazards before it is
moved from the holding area to the point of use?
ed February 4, 2002 by Leonie Mahon [Leonie_Mahon@au.adp.com]
Objective: To prevent loss, damage or compromise
of assets and interruption to Business activities.
7.2.1 Equipment sitin