UnixTime

Research Note

A.7.1 Audit Checklist

- Confirm physical security perimeters are defined. - Confirm zones are linked to information/assets and risk. - Review perimeter diagrams or zone register. - Walk the perimeter...

On this page

When to use this

Use this checklist during an internal audit of physical security perimeters.

Audit checklist

  • Confirm physical security perimeters are defined.
  • Confirm zones are linked to information/assets and risk.
  • Review perimeter diagrams or zone register.
  • Walk the perimeter and check bypass routes.
  • Check fire exits, emergency routes, shared areas, and reception.
  • Check landlord/building-management access arrangements.
  • Check out-of-hours and lone-working controls.
  • Verify perimeter review records.
  • Interview facilities, reception/security, IT, and zone owners.
  • Record nonconformities, observations, and improvement actions.

Findings table

Zone Expected evidence Observed evidence Gap Finding type Action owner
TBD TBD TBD TBD NC / observation / conforming TBD
  • Iso27001
  • ISO27002
  • Template
  • Audit
  • A7 1

Note Metadata

Aliases: A.7.1 Physical Security Perimeters Audit Checklist

Source: 90 Templates/A.7.1 Audit Checklist.md

Graph-sourced resources

Templates and evidence

Auditor evidence packs

Evidence collections and audit-facing verification material.