Young hacker smiling

We hack your software

zero false positives

Expert intelligence + effective automation

REQ.111 Define suitable physical controls

This document contains the details of the security requirements related to the definition and management of access control in the organization. This requirement establishes the importance of defining detective and deterrent physical controls in the periphery of the facilities.

Requirement

The organization must have detective and deterrent physical controls in the periphery of the facilities (lightings, cameras, security workforce, etc).

References

  1. HIPAA Security Rules 164.310(a)(2)(ii): Facility Security Plan: Implement policies and procedures to safeguard the facility and the equipment therein from unauthorized physical access, tampering, and theft

  2. HIPAA Security Rules 164.310(c): Workstation Security: Implement physical safeguards for all workstations that access electronic protected health information to restrict access to authorized users.


Service status - Terms of Use