SlideShare a Scribd company logo

10. Process: ocp cfops security and access

Download as PPTX, PDF
S
ssusereb347d

The document outlines the Coromatic Academy's approach to security and access within the Open Compute Project's Critical Facilities Operations Framework, emphasizing the need for tailored processes to protect critical assets. It discusses lessons learned regarding security measures, including remote monitoring versus armed guards, the importance of access control systems, and the need for proper documentation and compliance with regulations. Final notes stress the integration of passive and active protections, efficient management of access logs, and adherence to GDPR for personal data.

Engineering
Related topics:
Facility Management
1 of 11
Download to read offline
1
2
3
4
5
6
7
8
9
10
11
Coromatic Academy Open Compute Project, Critical Facilities Operations Framework Process: Security and Access Rev 2020-08-03 Information classification: Public
Contents • Process overview • Lessons learned / customer experiences • Final notes
SECURITY AND ACCESS OCP Critical Facilities Operations Framework
Site Operations Integration Terms & Conditions OCP CFOPS Delivery model Incidents Work Orders & Projects On-site Access Service Levels Organization KPI Monitoring & Reporting Lifecycle & Financial Mgmt On-site services Security & Access Maintenance In / outdoor FM Site assistance Site Inspection Audits and Compliance Site Management Delivery Support Service Level Mgmt Lifecycle & Financial Mgmt WO & Project Mgmt Monitoring & Reporting Governance and BCP Advisory and Benchmarking Supply Chain and Sourcing Service Desk 24/7 Incident Mgmt Team & Suppliers Capacity Mgmt & Optimization Document Mgmt Compliance Mgmt Service Improvements Asset List Border List Customer Managed Operating Center Source: OCP CFOPS 2019 v1.4
Security and Access MindMap Overview Process Summary The security and access process, procedures and building construction should be appropriate to the assets that they are protecting. This would include critical assets in the primary area as well as site systems in other parts of the net floor area. Perimeter protection A critical facility should be appropriately protected against threats that may break the perimeter. By protecting against external and environmental threats, i.e. man-made or natural disasters, it is focused on ensuring that only designated access points can be used to gain entry to the critical facility. Typical services may include patrolling by guards or CCTV monitoring of different parts of the building and its external premises. Furthermore, the building construction itself may allow for several protective layers or zones which can increase the level of the perimeter protection and further protect against breaches outside the ordinary access control points. Source: OCP CFOPS 2019 v1.4
Lessons learned / Customer experiences “Every time we have US or UK based site Owners ask us to manage their sites, they expect us to have armed on-site guards 24/7. It usually does not take very long to convince them of the cost benefits and reliability of remote security monitoring with scheduled patrols and call-outs, especially when considering the protection classification based on the passive security measures of the building itself and the restrictions on armed security guards…”
Security and Access MindMap Overview Process Summary The security and access process, procedures and building construction should be appropriate to the assets that they are protecting. This would include critical assets in the primary area as well as site systems in other parts of the net floor area. Access control All personnel, visitors and deliveries to the site should be registered and processed according to operational procedures where at least the following should be made: • Verification of identity, i.e. authentication • Verification of authorization • Logging of access Remote monitoring of alarm systems and CCTV is normally used to control access to premises or rooms when a correct authentication has been performed. Appropriate controls are put in place to ensure that access control audit logs cannot be altered, tampered, or deleted, thus destroying evidential integrity. This integrity is generally required to support a potential criminal prosecution because of a security incident. The access control system audit logs should be inspected on a recurring basis. Source: OCP CFOPS 2019 v1.4
Lessons learned / Customer experiences “The importance of separating accountabilities have proven to be a success factor to us: the Site Owner is accountable for authorizing who should be allowed into the premises, while the outsourced Site Access service provider is accountable for authenticating individuals wanting to gain access. This means that if a person is properly authenticated and has the authorization to gain access they will be let in. Otherwise not. By independent reviews of the access logs, it is validated that these procedures are followed diligently. We even have service levels with penalties for this process.”
Final notes • Passive perimeter protection should be complemented by active protection measures • Access control relies on a well managed process for “Team & Suppliers Management” (Staff Register) • On-site works should always include updating and finalizing related documentation and service records • Handling of personal data need to be GDPR compliant
Questions? coromatic.com
10. Process: ocp cfops security and access

More Related Content

PPTX
1. Process: ocp cfops incident mgmt
ssusereb347d
 
PPTX
3. Process: ocp cfops lifecycle and financial mgmt
ssusereb347d
 
PPT
Ocp framework.mind map.2019v1.4
ssusereb347d
 
PPTX
9. Process: ocp cfops team and suppliers mgmt
ssusereb347d
 
PPTX
13. Process: ocp cfops site inspections
ssusereb347d
 
PPTX
14. Process: ocp cfops audits and compliance reviews
ssusereb347d
 
PPTX
15. Process: ocp cfops: site assistance
ssusereb347d
 
PPTX
4. Process: ocp cfops monitoring and reporting
ssusereb347d
 
1. Process: ocp cfops incident mgmt
ssusereb347d
 
3. Process: ocp cfops lifecycle and financial mgmt
ssusereb347d
 
Ocp framework.mind map.2019v1.4
ssusereb347d
 
9. Process: ocp cfops team and suppliers mgmt
ssusereb347d
 
13. Process: ocp cfops site inspections
ssusereb347d
 
14. Process: ocp cfops audits and compliance reviews
ssusereb347d
 
15. Process: ocp cfops: site assistance
ssusereb347d
 
4. Process: ocp cfops monitoring and reporting
ssusereb347d
 

What's hot (20)

PPTX
2. Process: ocp cfops service level mgmt
ssusereb347d
 
PPTX
7. Process: ocp cfops compliance mgmt
ssusereb347d
 
DOCX
4. ocp cfops.monitoring reporting.guideline.2019.5
ssusereb347d
 
PPTX
11. Process: ocp cfops maintenance
ssusereb347d
 
PPTX
5. Process: ocp cfops work orders and project mgmt
ssusereb347d
 
PPTX
6. Process: ocp cfops capacity mgmt and optimization
ssusereb347d
 
PPTX
16. Process: ocp cfops delivery support
ssusereb347d
 
PPTX
8. Process: ocp cfops document mgmt
ssusereb347d
 
PPTX
17. Process: ocp cfops integration
ssusereb347d
 
DOCX
17. ocp cfops.integration.guideline.2019.1
ssusereb347d
 
PPTX
12. Process: ocp cfops indoor outdoor fm
ssusereb347d
 
PPTX
0. ocp cfops flyby
ssusereb347d
 
DOCX
8. ocp cfops.document mgmt.guideline.2019.2
ssusereb347d
 
PPT
IAB Europe Metrics & KPIs Brand Advertiser Bulletin
IAB Europe
 
PDF
RealWinWin Wholesale Rebate Administration Services
RealWinWin, Inc.
 
PDF
Telefonica Case Study
Felipe Scholz
 
PPTX
Visionwaves Knowledge Days - in control dashboards
Ilse Boer
 
PPTX
Generic Presentation EEIS
Jim Thayer
 
PDF
Shared Services_Compliance_credential
Gene Goziker
 
PDF
Revisiting the Four Pillars Supporting an Effective BSA/AML Compliance Program
Rachel Hamilton
 
2. Process: ocp cfops service level mgmt
ssusereb347d
 
7. Process: ocp cfops compliance mgmt
ssusereb347d
 
4. ocp cfops.monitoring reporting.guideline.2019.5
ssusereb347d
 
11. Process: ocp cfops maintenance
ssusereb347d
 
5. Process: ocp cfops work orders and project mgmt
ssusereb347d
 
6. Process: ocp cfops capacity mgmt and optimization
ssusereb347d
 
16. Process: ocp cfops delivery support
ssusereb347d
 
8. Process: ocp cfops document mgmt
ssusereb347d
 
17. Process: ocp cfops integration
ssusereb347d
 
17. ocp cfops.integration.guideline.2019.1
ssusereb347d
 
12. Process: ocp cfops indoor outdoor fm
ssusereb347d
 
0. ocp cfops flyby
ssusereb347d
 
8. ocp cfops.document mgmt.guideline.2019.2
ssusereb347d
 
IAB Europe Metrics & KPIs Brand Advertiser Bulletin
IAB Europe
 
RealWinWin Wholesale Rebate Administration Services
RealWinWin, Inc.
 
Telefonica Case Study
Felipe Scholz
 
Visionwaves Knowledge Days - in control dashboards
Ilse Boer
 
Generic Presentation EEIS
Jim Thayer
 
Shared Services_Compliance_credential
Gene Goziker
 
Revisiting the Four Pillars Supporting an Effective BSA/AML Compliance Program
Rachel Hamilton
 
Ad

Similar to 10. Process: ocp cfops security and access (20)

PPTX
Demystifying CMMC: Real-World Insights from ControlCase Experts
AmyPoblete3
 
PPTX
Compliance
Priyank Hada
 
PPTX
20170912_Identity_and_Access_Management.pptx
Anand Dhouni
 
PDF
Profile_Kishore Sundar
Kishore Sundararaman
 
PDF
Rest Solution : NOC-as-a-service
Christian Torres
 
PDF
Analytical Instrument Qualification - USP chapter 1058 revision
pi
 
PDF
Identity & Access Management for Securing DevOps
Eryk Budi Pratama
 
PDF
Cyber_Management_Issues.pdf
AliAhmed675993
 
PPT
Audit Practice at CipherTechs
Mordecai Kraushar
 
PPTX
711652894-Implementation-Plan-for-TechCorp-s-IAM-Platform.pptx
ss4421531
 
PDF
CYB 102 – Fundamentals of Cyber Security .pdf
Abolarinwa
 
PPT
How much does it cost to be Secure?
mbmobile
 
PPTX
CISM_WK_2.pptx
dotco
 
PPTX
MomentumNI Flash Event 10 Jul 14 - Irish GCSC
Bill McCluggage
 
PDF
Everything You Need to Know About Testing Banking Domain Applications.pdf
flufftailshop
 
PDF
Preparing for Inspections in eTMF
Veeva Systems
 
PDF
How auditable is your disaster recovery program
geekmodeboy
 
PPTX
Vendor Management System - Introduction2
Frank Corris
 
PDF
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Alan Yau Ti Dun
 
PPT
6 service operation
sagaroceanic11
 
Demystifying CMMC: Real-World Insights from ControlCase Experts
AmyPoblete3
 
Compliance
Priyank Hada
 
20170912_Identity_and_Access_Management.pptx
Anand Dhouni
 
Profile_Kishore Sundar
Kishore Sundararaman
 
Rest Solution : NOC-as-a-service
Christian Torres
 
Analytical Instrument Qualification - USP chapter 1058 revision
pi
 
Identity & Access Management for Securing DevOps
Eryk Budi Pratama
 
Cyber_Management_Issues.pdf
AliAhmed675993
 
Audit Practice at CipherTechs
Mordecai Kraushar
 
711652894-Implementation-Plan-for-TechCorp-s-IAM-Platform.pptx
ss4421531
 
CYB 102 – Fundamentals of Cyber Security .pdf
Abolarinwa
 
How much does it cost to be Secure?
mbmobile
 
CISM_WK_2.pptx
dotco
 
MomentumNI Flash Event 10 Jul 14 - Irish GCSC
Bill McCluggage
 
Everything You Need to Know About Testing Banking Domain Applications.pdf
flufftailshop
 
Preparing for Inspections in eTMF
Veeva Systems
 
How auditable is your disaster recovery program
geekmodeboy
 
Vendor Management System - Introduction2
Frank Corris
 
Auditing & Assessing The Risk Of Cloud Service Providers at Auditworld 2015 ...
Alan Yau Ti Dun
 
6 service operation
sagaroceanic11
 
Ad

Recently uploaded (20)

PPTX
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
PDF
R24 SURVEYING LAB MANUAL for civil enggi
MNANDITHACIVILSTAFF
 
PPTX
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
PPTX
M Tech Sem 1 Civil Engineering Environmental Sciences.pptx
ShriNRPrasad
 
DOCX
573137875-Attendance-Management-System-original
AYUSHMANAV
 
PPTX
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
PDF
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
PPTX
UNIT 4 Total Quality Management .pptx
gokuld13012005
 
PDF
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
PDF
composite construction of structures.pdf
AinieButt1
 
PPTX
Welding lecture in detail for understanding
sahilpoonia10
 
PDF
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
PPTX
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
PDF
PPT on Performance Review to get promotions
prashant593122
 
PPTX
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
PPTX
FINAL REVIEW FOR COPD DIANOSIS FOR PULMONARY DISEASE.pptx
rubeshbme
 
PDF
SM_6th-Sem__Cse_Internet-of-Things.pdf IOT
smceramu
 
PPTX
Construction Project Organization Group 2.pptx
vj5agdales
 
PPTX
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
PDF
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 
bas. eng. economics group 4 presentation 1.pptx
kiribakimoses1993
 
R24 SURVEYING LAB MANUAL for civil enggi
MNANDITHACIVILSTAFF
 
Internet of Things (IOT) - A guide to understanding
Davies Chacko
 
M Tech Sem 1 Civil Engineering Environmental Sciences.pptx
ShriNRPrasad
 
573137875-Attendance-Management-System-original
AYUSHMANAV
 
CH1 Production IntroductoryConcepts.pptx
RacemMellouli1
 
Mohammad Mahdi Farshadian CV - Prospective PhD Student 2026
Educational Group Mohammad Farshadian
 
UNIT 4 Total Quality Management .pptx
gokuld13012005
 
Digital Logic Computer Design lecture notes
CHINNASUNKAIAH1
 
composite construction of structures.pdf
AinieButt1
 
Welding lecture in detail for understanding
sahilpoonia10
 
Model Code of Practice - Construction Work - 21102022 .pdf
AinieButt1
 
Foundation to blockchain - A guide to Blockchain Tech
Davies Chacko
 
PPT on Performance Review to get promotions
prashant593122
 
KTU 2019 -S7-MCN 401 MODULE 2-VINAY.pptx
VinayB68
 
FINAL REVIEW FOR COPD DIANOSIS FOR PULMONARY DISEASE.pptx
rubeshbme
 
SM_6th-Sem__Cse_Internet-of-Things.pdf IOT
smceramu
 
Construction Project Organization Group 2.pptx
vj5agdales
 
OOP with Java - Java Introduction (Basics)
Rashmi T V
 
July 2025 - Top 10 Read Articles in International Journal of Software Enginee...
sebastianku31
 

10. Process: ocp cfops security and access

  • 1. Coromatic Academy Open Compute Project, Critical Facilities Operations Framework Process: Security and Access Rev 2020-08-03 Information classification: Public
  • 2. Contents • Process overview • Lessons learned / customer experiences • Final notes
  • 3. SECURITY AND ACCESS OCP Critical Facilities Operations Framework
  • 4. Site Operations Integration Terms & Conditions OCP CFOPS Delivery model Incidents Work Orders & Projects On-site Access Service Levels Organization KPI Monitoring & Reporting Lifecycle & Financial Mgmt On-site services Security & Access Maintenance In / outdoor FM Site assistance Site Inspection Audits and Compliance Site Management Delivery Support Service Level Mgmt Lifecycle & Financial Mgmt WO & Project Mgmt Monitoring & Reporting Governance and BCP Advisory and Benchmarking Supply Chain and Sourcing Service Desk 24/7 Incident Mgmt Team & Suppliers Capacity Mgmt & Optimization Document Mgmt Compliance Mgmt Service Improvements Asset List Border List Customer Managed Operating Center Source: OCP CFOPS 2019 v1.4
  • 5. Security and Access MindMap Overview Process Summary The security and access process, procedures and building construction should be appropriate to the assets that they are protecting. This would include critical assets in the primary area as well as site systems in other parts of the net floor area. Perimeter protection A critical facility should be appropriately protected against threats that may break the perimeter. By protecting against external and environmental threats, i.e. man-made or natural disasters, it is focused on ensuring that only designated access points can be used to gain entry to the critical facility. Typical services may include patrolling by guards or CCTV monitoring of different parts of the building and its external premises. Furthermore, the building construction itself may allow for several protective layers or zones which can increase the level of the perimeter protection and further protect against breaches outside the ordinary access control points. Source: OCP CFOPS 2019 v1.4
  • 6. Lessons learned / Customer experiences “Every time we have US or UK based site Owners ask us to manage their sites, they expect us to have armed on-site guards 24/7. It usually does not take very long to convince them of the cost benefits and reliability of remote security monitoring with scheduled patrols and call-outs, especially when considering the protection classification based on the passive security measures of the building itself and the restrictions on armed security guards…”
  • 7. Security and Access MindMap Overview Process Summary The security and access process, procedures and building construction should be appropriate to the assets that they are protecting. This would include critical assets in the primary area as well as site systems in other parts of the net floor area. Access control All personnel, visitors and deliveries to the site should be registered and processed according to operational procedures where at least the following should be made: • Verification of identity, i.e. authentication • Verification of authorization • Logging of access Remote monitoring of alarm systems and CCTV is normally used to control access to premises or rooms when a correct authentication has been performed. Appropriate controls are put in place to ensure that access control audit logs cannot be altered, tampered, or deleted, thus destroying evidential integrity. This integrity is generally required to support a potential criminal prosecution because of a security incident. The access control system audit logs should be inspected on a recurring basis. Source: OCP CFOPS 2019 v1.4
  • 8. Lessons learned / Customer experiences “The importance of separating accountabilities have proven to be a success factor to us: the Site Owner is accountable for authorizing who should be allowed into the premises, while the outsourced Site Access service provider is accountable for authenticating individuals wanting to gain access. This means that if a person is properly authenticated and has the authorization to gain access they will be let in. Otherwise not. By independent reviews of the access logs, it is validated that these procedures are followed diligently. We even have service levels with penalties for this process.”
  • 9. Final notes • Passive perimeter protection should be complemented by active protection measures • Access control relies on a well managed process for “Team & Suppliers Management” (Staff Register) • On-site works should always include updating and finalizing related documentation and service records • Handling of personal data need to be GDPR compliant

Editor's Notes

  • #12: Clear market leader in turnkey data centers and other critical facilities Highly skilled and experienced workforce operating out of 20 locations Unrivalled experience as a full-service provider of turnkey critical facilities solutions Proven international delivery capabilities Strong Nordic customer base across a wide range of industries