These notes are directly copied from my Notion. Please excuse any formatting issues.
- Types of Controls
- Preventative → prevents attacks from happening (tall fences, locked doors, bollards)
- Detective → detects before, during, or after the attack - CCTV, Alarms, etc.
- Deterrent → deter (to make somebody decide not to do something) an attack (guards, dogs, lights, fences)
- Compensating → compensate for other controls that are impossible/costly to implement.
- Administrative → Administrative frameworks (compliance, policies, procedures)
- Perimeter defense
- Fences (Deterrence, Preventative)
- Gates (Deterrence, Preventative)
- Bollards (Preventative)
- Lights (Detective and Deterrence)
- CCTV (Detective, Deterrence)
- Locks (Preventative) → Mechanical (key, combination, magnetic) and Electronic (proximity/RFID, biometric, combination)
- Smart Card (Contact or Contactless)
- Tailgating/Piggybacking
- Mantrap → Room with 2 doors; Door 1 must close completely before Door 2 can be opened.
- Turnstiles (Preventative, Deterrence)
- Motion Detectors (Detective, Deterrence)
- Perimeter alarms
- Walls, Floors, and Ceilings
- Guards (Deterrent, Detective, Preventative, Compensating)
- Dogs (Deterrent, Detective, Compensating)
- Restricted Work Areas and Escorts